Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa
File: 3130332e332e3231342e302f32342d3234203d3e203338313439.roa (raw, json)
Hash identifier: P0Fuek0y0r48VX6ZLm6FM/n0b+U4fqsoqHFff5P/ei4=
Subject key identifier: 16:F0:F2:C2:F7:FA:BC:EB:E3:DF:BD:9C:E3:EC:FB:CA:99:D5:B3:44
Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Certificate serial: 52C100239258696E790B3E70C244EAF3DDD7E3B8
Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa
Signing time: Tue 17 Sep 2024 00:35:06 +0000
ROA not before: Tue 17 Sep 2024 00:30:06 +0000
ROA not after: Tue 16 Sep 2025 00:35:06 +0000
asID: 38149
IP address blocks: 103.3.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:c1:00:23:92:58:69:6e:79:0b:3e:70:c2:44:ea:f3:dd:d7:e3:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Validity
Not Before: Sep 17 00:30:06 2024 GMT
Not After : Sep 16 00:35:06 2025 GMT
Subject: CN=16F0F2C2F7FABCEBE3DFBD9CE3ECFBCA99D5B344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:96:04:6a:2d:57:79:b6:18:e6:00:dc:13:
ba:46:08:ae:21:08:e0:94:02:3e:11:90:ed:6b:cb:
55:82:89:6a:58:a5:0a:26:4d:e9:53:49:c2:11:48:
a9:f2:64:d2:35:ff:9d:95:e6:7d:f7:fe:fb:e1:14:
e7:37:d9:84:3a:04:8e:00:58:fc:6d:18:35:20:5a:
e0:e5:d7:20:fe:c1:f9:ec:db:4f:3e:32:e7:0f:94:
02:f2:6a:cd:b6:45:b8:ff:37:1c:7f:5d:00:a0:63:
8d:56:b7:ff:ab:b6:71:49:95:33:59:7d:a9:4d:12:
99:9f:cb:e3:9e:9b:e1:95:a4:fc:9a:89:4c:4e:c2:
f4:8a:bc:61:14:a0:39:10:10:86:83:a3:24:f5:8e:
16:0e:76:33:d4:ba:fd:61:93:c0:1f:df:fb:85:fd:
23:f1:cf:89:a0:75:bb:99:ad:06:25:b8:d3:e1:47:
fa:45:67:74:93:7a:9b:21:36:c8:b9:41:63:56:2d:
2f:55:84:8d:08:b0:f1:93:fa:7e:ad:21:e7:54:e5:
d8:a8:4d:5f:fb:8e:37:ab:d5:72:91:09:61:91:80:
b9:18:6b:e1:fa:c8:b4:23:27:e0:7e:11:d5:28:80:
65:17:f8:43:96:13:8c:21:cb:68:a3:92:97:8a:70:
1d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F0:F2:C2:F7:FA:BC:EB:E3:DF:BD:9C:E3:EC:FB:CA:99:D5:B3:44
X509v3 Authority Key Identifier:
keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.214.0/24
Signature Algorithm: sha256WithRSAEncryption
16:14:db:5b:c1:c6:fa:50:de:75:14:6c:1a:a8:a9:01:3f:02:
90:26:52:36:b9:29:22:e6:f0:b8:e9:8c:60:25:95:c6:d0:c1:
dc:15:ec:64:07:ea:9c:87:65:0f:8f:08:12:21:b8:05:65:46:
72:7f:c5:0d:f3:54:05:5c:4a:39:d6:ba:42:fb:5e:35:93:63:
ae:05:69:08:65:a2:9f:cd:57:d1:97:21:5a:c8:7d:33:1d:3c:
c5:95:29:59:7a:43:bb:56:91:6b:70:48:15:54:d6:ad:8e:bf:
87:fe:af:79:bf:73:3b:68:95:22:6c:60:39:bb:5c:a1:85:36:
26:47:52:e3:65:b5:43:b1:ac:02:0c:c1:52:b9:e3:ac:f8:e3:
c6:d9:71:3e:7e:5f:77:21:e3:ac:26:89:e0:2f:8a:4c:44:f0:
d6:34:d8:50:17:c1:07:10:68:9a:86:f4:c4:ef:0d:a6:50:41:
a1:7e:44:76:e2:46:9d:04:95:7d:6b:77:f0:59:91:d0:30:76:
f2:fb:db:e8:f3:fe:b9:30:74:14:bc:01:57:0a:64:15:d6:7e:
57:36:12:b8:4e:84:1b:33:48:8f:43:63:d2:9c:25:6e:5d:4f:
51:fc:05:07:24:52:35:3c:21:1e:d5:eb:4d:32:94:f0:59:e6:
36:73:95:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:15 2025 by rpki-client