Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa
File: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (raw, json)
Hash identifier: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=
Subject key identifier: 61:6B:6E:B7:78:FB:2A:67:C7:A2:3A:8E:1E:2A:44:A5:CC:99:C7:B7
Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675
Certificate serial: 0BF88913A9F843A4E6A3205A81DFC1142A845868
Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa
Signing time: Thu 27 Feb 2025 15:00:07 +0000
ROA not before: Thu 27 Feb 2025 14:55:07 +0000
ROA not after: Thu 26 Feb 2026 15:00:07 +0000
asID: 149703
IP address blocks: 103.186.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:f8:89:13:a9:f8:43:a4:e6:a3:20:5a:81:df:c1:14:2a:84:58:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675
Validity
Not Before: Feb 27 14:55:07 2025 GMT
Not After : Feb 26 15:00:07 2026 GMT
Subject: CN=616B6EB778FB2A67C7A23A8E1E2A44A5CC99C7B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:5b:bd:a2:13:1f:c0:5d:82:17:19:3f:4b:58:
91:88:d2:eb:41:5f:c2:54:a5:6f:0d:9d:c7:11:f2:
2a:ca:de:b0:e5:5d:05:96:a9:a9:c1:9f:fc:93:2c:
85:d7:58:05:0f:58:51:56:d3:94:f7:8d:11:4f:b4:
f0:d6:fd:af:d7:9c:1f:5d:72:2e:d9:0f:29:95:69:
b9:12:2d:4a:b6:23:39:ed:ed:75:30:b7:b9:ca:c5:
da:63:f0:39:6d:3f:ba:86:f5:da:8c:fd:ce:60:7b:
74:fa:5e:f3:9c:a3:40:73:6b:f9:7d:84:9e:e5:cb:
38:d8:3b:5b:79:b4:fc:3e:9b:e7:17:de:e0:8a:5d:
23:f7:1c:15:46:da:19:43:bb:ae:2f:c5:b2:d9:bf:
45:c5:0a:a1:5b:34:31:33:39:6b:e4:5b:cc:a6:10:
00:0d:f5:b4:d7:04:39:3a:da:da:9b:79:63:69:fc:
10:fc:30:25:71:df:04:db:4c:ed:b6:f3:cb:d8:93:
1b:da:8a:5f:1f:19:d8:42:3b:91:a9:95:cc:db:0f:
c2:8b:c9:d7:8f:57:c8:6d:0a:2a:5d:de:bc:26:ab:
24:85:4b:41:cc:18:94:aa:f0:ce:86:9c:91:7e:e4:
2b:e2:e6:46:b0:55:e0:c2:80:17:d1:df:24:b4:98:
3c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6B:6E:B7:78:FB:2A:67:C7:A2:3A:8E:1E:2A:44:A5:CC:99:C7:B7
X509v3 Authority Key Identifier:
keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.167.0/24
Signature Algorithm: sha256WithRSAEncryption
07:a2:ae:a7:6e:ed:b4:93:a0:e7:ce:bf:26:48:f3:54:f2:c9:
78:f2:2a:05:41:2f:5f:e4:df:91:50:96:25:73:fb:3a:49:f2:
23:52:c2:8a:df:54:86:38:c0:da:7d:54:1a:15:41:51:3e:4e:
9e:fa:aa:93:c7:18:c0:44:01:3b:d5:af:e1:5e:49:52:99:ce:
ad:bb:11:89:e6:03:ce:e6:15:de:c3:e1:73:e8:24:ef:1b:ac:
d1:32:d3:cf:f3:fc:c3:36:a6:3a:e6:27:7b:8a:97:ed:e9:89:
67:62:3d:5d:c1:65:fe:6c:05:7b:24:8c:2f:53:0d:30:42:f4:
c7:fa:b4:96:ee:7e:c8:18:f7:4e:ee:43:84:4a:5d:55:f6:7d:
b3:da:4a:57:b5:ac:83:57:6e:82:ae:fa:da:f8:ee:73:a1:1a:
90:ce:17:6d:a5:dc:7f:73:ef:12:b5:25:08:08:fc:2d:e9:1d:
d8:dc:d2:1f:47:01:31:6a:84:a2:b1:ff:09:ab:b2:54:3e:aa:
54:d3:82:e8:19:7e:9a:c0:91:4d:d2:ec:65:be:4e:01:e5:89:
1b:27:98:71:9e:07:cc:8d:4b:5b:81:76:64:34:82:26:c2:6d:
b2:6e:b1:5e:33:6b:3a:56:25:15:e5:b8:7c:a0:93:be:f3:b5:
2b:7c:5d:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:05:44 2025 by rpki-client