Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231332e302f32342d3234203d3e203338313439.roa
File: 3130332e332e3231332e302f32342d3234203d3e203338313439.roa (raw, json)
Hash identifier: Pd21/yG0jbFVNaEuOcRJLrkcCGUa6hGTvZoLAS1lgpw=
Subject key identifier: C4:E2:8C:C5:F7:70:81:67:24:E2:03:9F:7E:AB:C7:B4:76:70:9A:01
Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Certificate serial: 51283434EF963F5EEFDE92FBEE74CB065EED07EB
Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231332e302f32342d3234203d3e203338313439.roa
Signing time: Tue 17 Sep 2024 00:34:44 +0000
ROA not before: Tue 17 Sep 2024 00:29:44 +0000
ROA not after: Tue 16 Sep 2025 00:34:44 +0000
asID: 38149
IP address blocks: 103.3.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:28:34:34:ef:96:3f:5e:ef:de:92:fb:ee:74:cb:06:5e:ed:07:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Validity
Not Before: Sep 17 00:29:44 2024 GMT
Not After : Sep 16 00:34:44 2025 GMT
Subject: CN=C4E28CC5F770816724E2039F7EABC7B476709A01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ea:09:fc:eb:b5:b2:1c:84:76:21:b9:bb:05:
b8:31:57:74:8d:5e:c3:db:a8:68:b5:32:2a:af:e4:
17:87:62:1d:04:14:a0:70:71:a7:ca:6e:fc:7f:7b:
9f:5c:2c:bd:2b:48:40:53:00:f0:a0:08:cc:d8:f2:
d5:9f:d9:d4:77:9f:52:b7:2a:c6:a7:b7:85:03:11:
f1:98:86:4f:87:68:4e:d8:bb:3a:65:ac:25:77:2f:
2d:31:c2:12:d3:dc:0d:e5:09:cb:73:b1:b2:4c:a4:
b5:a3:5a:ad:70:e4:5f:d9:2a:d4:b7:70:82:f0:98:
b0:49:90:ee:e6:c1:09:5a:15:68:77:20:61:fd:69:
50:81:fb:2a:04:f2:e1:c6:ac:39:2b:0d:1e:3e:2e:
83:2f:d4:5c:ea:b7:04:f4:ef:23:a4:bf:5f:5f:8b:
09:94:59:db:db:92:4e:9a:d5:e1:b5:e9:d9:f8:cf:
92:2d:4d:85:ca:5d:61:93:24:b2:e6:f6:3d:08:50:
6b:0e:35:a0:d8:22:a7:bf:b7:d7:9f:fa:80:b4:ac:
aa:04:b1:f2:e8:78:54:59:14:3e:69:26:78:f9:08:
c9:a3:42:7a:86:92:65:2f:15:3a:b4:8e:e1:fe:50:
88:31:ef:39:21:e1:97:23:b8:ca:13:69:30:46:4b:
21:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E2:8C:C5:F7:70:81:67:24:E2:03:9F:7E:AB:C7:B4:76:70:9A:01
X509v3 Authority Key Identifier:
keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231332e302f32342d3234203d3e203338313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.213.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:d7:0b:6a:67:35:6b:48:63:c8:61:e7:8a:41:33:28:04:1f:
90:f1:42:b7:3c:50:9d:b7:9e:e9:1c:ea:88:e5:7a:85:87:18:
66:6d:62:b5:0f:2d:15:05:ea:44:b4:c6:ff:0d:6b:f1:f1:86:
9c:65:a6:be:f9:26:25:c7:5b:9d:b2:a1:bd:90:ff:79:93:05:
56:48:4d:da:f8:1d:85:ac:67:fc:07:05:45:40:a8:8e:79:fb:
69:8b:0b:f2:b5:81:32:eb:bd:3a:fb:3d:f5:58:bc:b7:4f:98:
04:40:04:e8:c4:ed:f3:ea:9a:65:92:71:e6:a9:dc:f7:7a:a0:
18:25:e2:0c:3b:62:14:78:c5:ec:9d:cc:e5:ab:26:6b:da:f5:
3b:7e:ae:c0:63:a6:8c:bd:cb:35:b6:39:a5:4f:e7:4f:f5:ad:
ba:58:aa:d4:82:b5:a6:5c:c9:f3:1c:77:bc:f4:2d:a1:c6:b2:
c9:aa:4d:17:d7:16:e1:13:ef:12:90:45:ca:ef:01:4c:b1:b2:
4e:aa:d7:1d:4e:7f:7f:03:4e:78:c9:84:91:4c:f2:2f:17:59:
37:de:0a:57:0d:0e:85:9f:a1:3e:67:31:01:53:1e:d7:0f:59:
a8:bc:48:44:82:de:bc:16:53:ab:d3:cf:b4:52:e1:0c:81:6b:
98:3d:78:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:38 2025 by rpki-client