Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d798091e-c1ae-4049-96d2-c4ce37fdc35b/0/3130332e3139302e39342e302f32342d3234203d3e20313530353531.roa
File: 3130332e3139302e39342e302f32342d3234203d3e20313530353531.roa (raw, json)
Hash identifier: ZLit+8UW98ngBL2LPf2rRbdHr7opbJkANqxKGJG/n4c=
Subject key identifier: 76:5E:E5:6C:1F:3F:49:64:8F:52:E2:13:C9:86:E1:4A:B7:76:5A:B2
Certificate issuer: /CN=1EAFFDF76C261A0C9801D9F2B02D5BA14967F3CD
Certificate serial: 68B3B49027CAD1958E63A86E348011EB6CADB3F1
Authority key identifier: 1E:AF:FD:F7:6C:26:1A:0C:98:01:D9:F2:B0:2D:5B:A1:49:67:F3:CD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EAFFDF76C261A0C9801D9F2B02D5BA14967F3CD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d798091e-c1ae-4049-96d2-c4ce37fdc35b/0/3130332e3139302e39342e302f32342d3234203d3e20313530353531.roa
Signing time: Tue 31 Dec 2024 04:00:01 +0000
ROA not before: Tue 31 Dec 2024 03:55:01 +0000
ROA not after: Tue 30 Dec 2025 04:00:01 +0000
asID: 150551
IP address blocks: 103.190.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:b3:b4:90:27:ca:d1:95:8e:63:a8:6e:34:80:11:eb:6c:ad:b3:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EAFFDF76C261A0C9801D9F2B02D5BA14967F3CD
Validity
Not Before: Dec 31 03:55:01 2024 GMT
Not After : Dec 30 04:00:01 2025 GMT
Subject: CN=765EE56C1F3F49648F52E213C986E14AB7765AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:5a:9a:88:df:ce:9a:f0:32:9c:72:47:b8:
13:6c:86:8d:fc:71:4c:9a:ba:f2:f9:81:b8:d8:75:
e6:6f:10:1c:49:1d:a6:eb:6c:03:80:96:fa:1f:6d:
97:83:f3:cb:4f:08:d5:da:3b:22:d9:d7:65:c0:d9:
cf:d2:62:86:5e:95:78:d2:83:11:51:26:e9:22:84:
04:b9:5f:75:ad:20:fb:e0:43:08:d8:a1:47:c1:a8:
30:83:76:71:8e:83:d1:71:39:06:08:85:39:93:ce:
6e:46:48:9b:58:94:96:ce:2a:23:e2:4f:8f:93:3c:
81:88:d8:22:87:5d:dd:df:90:23:ae:88:db:2f:c3:
64:86:c5:7d:f1:f8:8d:12:9f:e3:b9:87:fe:f8:37:
63:78:98:ff:d1:3b:e6:19:ce:a5:c2:26:f1:b5:a7:
87:4c:ed:93:d5:b8:14:d6:0c:61:ca:a7:af:0e:dc:
aa:79:1b:36:c6:fb:3c:86:97:2d:46:21:d7:db:39:
7b:ca:d5:e5:9c:1a:fc:9a:83:a4:62:6d:86:b3:9b:
6b:bb:e4:1c:26:30:e9:10:1b:cd:1f:a8:ce:2f:00:
fb:15:7f:e3:3d:c3:b6:a9:2c:46:9e:4d:44:29:06:
bb:6b:43:0b:cc:b9:a7:d3:ee:23:ec:0e:18:2b:e9:
f9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5E:E5:6C:1F:3F:49:64:8F:52:E2:13:C9:86:E1:4A:B7:76:5A:B2
X509v3 Authority Key Identifier:
keyid:1E:AF:FD:F7:6C:26:1A:0C:98:01:D9:F2:B0:2D:5B:A1:49:67:F3:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d798091e-c1ae-4049-96d2-c4ce37fdc35b/0/1EAFFDF76C261A0C9801D9F2B02D5BA14967F3CD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EAFFDF76C261A0C9801D9F2B02D5BA14967F3CD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d798091e-c1ae-4049-96d2-c4ce37fdc35b/0/3130332e3139302e39342e302f32342d3234203d3e20313530353531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.190.94.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3a:7e:47:a8:e4:6f:03:8d:4e:91:42:aa:68:b5:22:f3:a4:
81:4c:dd:17:ce:28:35:b0:e6:b9:0d:37:95:c3:06:8d:71:7f:
1c:d6:73:40:98:d5:b1:48:80:58:2b:6b:53:18:3d:9b:33:86:
e0:e6:93:34:9d:c3:af:1b:51:e7:f2:29:33:88:3b:ea:03:80:
6b:79:f5:3c:52:af:a9:52:0f:a2:9e:11:56:dc:cf:82:27:b5:
78:80:4e:5e:77:76:ef:44:f3:3c:3b:cb:92:99:9b:bc:15:19:
a6:a9:ae:47:cf:e2:52:b2:49:9e:57:84:49:5b:c7:36:51:90:
b0:95:62:94:95:13:5b:f2:36:b1:ab:05:d1:27:f4:c8:e6:a7:
9e:29:ba:4d:7a:23:97:a7:1f:71:4a:29:2c:20:b1:94:71:d9:
d8:b2:c5:d5:cf:a3:2a:83:d1:df:41:3a:b8:47:90:1b:53:7c:
a3:f4:6b:31:9b:31:2b:14:70:05:b6:68:76:22:81:3e:c4:a5:
de:e0:6d:c6:a5:1a:f3:f9:5b:52:b6:db:05:f5:03:2a:68:3b:
53:3b:8e:c4:77:df:11:83:80:29:43:87:e6:c4:b2:9c:90:31:
a6:34:1a:1f:32:95:6d:24:56:99:0e:7a:0b:cc:2f:aa:21:f6:
2d:a4:0d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:45 2025 by rpki-client