Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa
File: 3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa (raw, json)
Hash identifier: k4Wn7QjCevaLRtjzpZzU9aujDNZ1W8N1HpzN16+qakY=
Subject key identifier: 4A:D5:62:F9:34:57:10:9D:89:CB:3A:A4:59:48:8E:A8:F8:4B:5A:88
Certificate issuer: /CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C
Certificate serial: 6CDC8BF9AB520F9DAD7D5ABF81194F3BC914C4A7
Authority key identifier: B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa
Signing time: Thu 13 Mar 2025 11:02:21 +0000
ROA not before: Thu 13 Mar 2025 10:57:21 +0000
ROA not after: Thu 12 Mar 2026 11:02:21 +0000
asID: 149706
IP address blocks: 103.186.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:dc:8b:f9:ab:52:0f:9d:ad:7d:5a:bf:81:19:4f:3b:c9:14:c4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C
Validity
Not Before: Mar 13 10:57:21 2025 GMT
Not After : Mar 12 11:02:21 2026 GMT
Subject: CN=4AD562F93457109D89CB3AA459488EA8F84B5A88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bf:30:84:ea:b0:50:25:45:9c:f3:d9:36:ef:
ba:ce:e7:5f:de:91:90:42:b8:52:79:59:12:d9:d8:
0f:1c:3a:10:20:4a:01:73:96:b6:30:79:bf:94:e7:
83:88:52:d2:75:e9:0e:24:42:69:cf:7d:97:36:d6:
66:9d:54:0b:c3:ec:2d:a6:76:13:2f:7d:3d:c1:6f:
01:a9:06:9c:34:c8:ad:0b:10:fd:17:fc:f0:cd:ca:
b0:df:87:e6:0e:91:cb:2e:cc:bc:21:fc:cb:e0:0d:
08:e6:25:40:68:c5:c4:fd:d4:90:bd:18:20:a7:f5:
2f:a8:cd:66:3d:07:d3:bd:bf:5d:05:d9:ad:ae:f6:
03:7f:e9:ca:ff:03:5c:11:c8:6a:ea:3f:85:c8:c3:
95:73:dd:3b:f8:17:f6:2c:43:e2:25:78:7d:2c:5f:
cc:46:07:dc:c4:de:59:b7:7c:a1:29:54:58:a5:fe:
57:f6:6f:2e:6d:59:a0:52:f9:7f:91:d9:f1:7d:d1:
b0:e0:e3:67:48:88:74:1d:3e:2b:57:b7:b1:85:d8:
6e:c8:66:22:48:3b:e4:53:41:a6:c6:a3:ac:af:04:
aa:76:32:bc:6b:49:87:30:ab:85:64:0d:7f:52:f5:
11:0c:8c:ec:75:85:c0:b5:6c:54:08:3f:9e:d7:3d:
80:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D5:62:F9:34:57:10:9D:89:CB:3A:A4:59:48:8E:A8:F8:4B:5A:88
X509v3 Authority Key Identifier:
keyid:B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230322e302f32342d3234203d3e20313439373036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.202.0/24
Signature Algorithm: sha256WithRSAEncryption
76:15:95:a2:b1:fb:32:c7:4b:32:32:cf:69:cf:f4:af:49:e6:
ce:6a:11:3e:59:1d:ed:e2:01:c8:4d:90:70:17:3a:89:72:2f:
33:cc:3e:5a:36:88:1a:39:5f:4b:fe:18:54:74:db:3e:2b:50:
f5:64:52:39:c1:81:39:cd:82:f4:85:32:17:3f:4f:ba:77:7c:
d5:ca:54:01:54:d2:57:b7:fd:dc:26:d3:f7:dd:c6:52:ac:53:
fc:58:65:59:a9:b5:39:ed:06:3f:d8:8c:ee:bb:ac:30:a8:9b:
8b:97:7b:9e:9c:7a:79:d8:30:38:66:76:38:73:c1:c6:bf:9c:
9b:9b:4c:42:3f:66:1d:31:5c:eb:cc:c3:e6:83:3e:50:b3:28:
dc:b2:e9:d3:1a:08:58:49:d2:9c:3f:4e:f0:63:41:0b:20:ab:
50:2b:87:56:32:72:01:fc:40:66:a7:07:ef:1d:13:b2:c4:12:
ad:5a:f0:0d:17:7b:00:94:e4:3b:37:14:94:a3:3a:40:b9:c7:
e4:30:a6:0d:b9:cc:8b:d0:fb:28:3f:a9:6c:18:9b:a7:22:3d:
49:cc:09:fb:ea:01:50:01:df:85:b1:3f:f7:47:3d:41:d3:c3:
de:8d:d3:9b:e4:16:3d:b1:b6:44:f6:6e:b9:55:e4:c1:56:05:
c0:53:47:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:19 2025 by rpki-client