Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231322e302f32342d3234203d3e203338313439.roa
File: 3130332e332e3231322e302f32342d3234203d3e203338313439.roa (raw, json)
Hash identifier: /U2DsLQr7uA8EIwbodsYQetUO3Ny7lYL3Uha8uDkG/c=
Subject key identifier: 60:0F:B9:8C:72:B3:78:98:7C:EE:C9:2F:DC:BA:37:92:CA:4F:ED:4D
Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Certificate serial: 3103AE2BDE0E7ACBC148F51ED6F692EE59F16F7E
Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231322e302f32342d3234203d3e203338313439.roa
Signing time: Tue 17 Sep 2024 00:32:34 +0000
ROA not before: Tue 17 Sep 2024 00:27:34 +0000
ROA not after: Tue 16 Sep 2025 00:32:34 +0000
asID: 38149
IP address blocks: 103.3.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:03:ae:2b:de:0e:7a:cb:c1:48:f5:1e:d6:f6:92:ee:59:f1:6f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Validity
Not Before: Sep 17 00:27:34 2024 GMT
Not After : Sep 16 00:32:34 2025 GMT
Subject: CN=600FB98C72B378987CEEC92FDCBA3792CA4FED4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ac:ea:d5:fa:bc:c0:ea:55:e9:40:ad:5a:e1:
d9:ef:9d:79:ea:e2:9f:b6:f8:64:fc:5c:df:34:40:
1e:67:cc:e2:a1:33:66:78:76:39:ed:87:c4:d2:83:
5d:3c:c7:6d:fb:8f:74:bd:48:d1:b4:6b:60:79:2f:
26:0c:4b:57:a6:ca:aa:9a:80:9a:79:c0:1a:9e:07:
83:2d:6e:e9:c5:ba:33:ad:40:8b:82:46:93:7b:79:
da:7d:40:ea:9b:39:b6:1f:af:3d:d8:e3:cb:85:82:
ec:a1:d1:c9:51:ee:65:75:90:32:d6:dc:ed:68:e3:
7b:28:fc:8e:5f:34:89:40:ca:5c:ab:bd:1b:22:4e:
37:3a:74:88:f1:29:d6:3a:4c:d2:e2:eb:e2:5c:e2:
97:85:e9:5d:43:19:d6:8a:65:2e:ac:ae:76:0c:b2:
45:da:ea:31:b4:06:fb:bf:0d:c9:a5:90:be:81:c8:
e1:63:09:dc:fe:11:e0:3f:dd:f2:c5:2c:b4:bd:96:
96:60:e2:29:13:d8:7a:f7:37:a4:db:88:a3:6c:ff:
da:37:36:b5:3f:f0:54:f6:7c:94:af:9b:79:a4:90:
f7:f7:71:04:a4:71:8b:a2:8c:23:af:92:51:16:c4:
81:45:f8:f5:d5:2b:77:65:69:76:73:4c:2c:95:15:
31:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0F:B9:8C:72:B3:78:98:7C:EE:C9:2F:DC:BA:37:92:CA:4F:ED:4D
X509v3 Authority Key Identifier:
keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231322e302f32342d3234203d3e203338313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.212.0/24
Signature Algorithm: sha256WithRSAEncryption
06:29:52:ca:90:97:c0:b8:c5:60:3d:dc:6a:49:4f:4f:01:28:
50:8e:c8:88:55:61:96:db:60:97:b5:c8:6b:46:6a:4d:7a:4e:
df:74:92:e6:33:0d:17:50:23:db:49:ea:7f:35:5c:96:f0:9d:
03:cd:fc:53:50:db:07:77:85:33:a6:0c:9a:5d:2e:3c:fc:e0:
03:71:89:4f:af:e0:99:ad:97:c2:1e:6f:5b:66:12:39:e9:09:
e9:46:56:c8:8b:10:a6:11:40:ee:69:5c:21:2c:c1:4d:35:64:
cf:8f:7a:2d:87:b1:3e:b9:08:83:e7:94:49:8f:91:d0:2c:8b:
59:0f:c6:86:91:c5:af:ae:12:bf:24:53:a4:86:8f:6a:1c:6c:
c9:56:5f:a4:5e:3a:36:86:71:ce:13:f0:d0:ed:81:4d:b9:38:
c3:14:b3:54:94:be:6f:35:05:17:ee:46:4f:36:a0:70:64:f1:
c9:cf:81:00:cc:4e:45:1c:8f:c4:c7:15:cb:39:5c:0d:9c:f0:
28:72:43:e5:77:8a:9a:0a:7c:6e:04:75:b9:69:85:78:40:ec:
c2:d5:f3:af:0c:0b:35:19:67:5b:0e:93:c9:28:42:b1:82:b0:
3e:2f:8a:36:d4:e2:ef:b2:79:3c:09:40:95:e0:3d:ff:89:8c:
9f:70:7c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:50:13 2025 by rpki-client