Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa
File: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (raw, json)
Hash identifier: OJOE/7q58wvHc3CR/aklsOVCRBylBzz1DBZTUwMunAw=
Subject key identifier: 94:26:18:BB:CD:DB:DF:85:DB:59:71:2F:5D:BD:A0:D8:B7:C4:F4:E0
Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Certificate serial: 648BDCAC292F2ACC8B85B315A01890FA1CB589D4
Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa
Signing time: Wed 27 Nov 2024 03:01:38 +0000
ROA not before: Wed 27 Nov 2024 02:56:38 +0000
ROA not after: Wed 26 Nov 2025 03:01:38 +0000
asID: 136878
IP address blocks: 103.105.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:8b:dc:ac:29:2f:2a:cc:8b:85:b3:15:a0:18:90:fa:1c:b5:89:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Validity
Not Before: Nov 27 02:56:38 2024 GMT
Not After : Nov 26 03:01:38 2025 GMT
Subject: CN=942618BBCDDBDF85DB59712F5DBDA0D8B7C4F4E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ac:ab:a2:c3:49:57:1b:e2:e5:d6:2a:f1:76:
45:5d:e7:b6:8a:d0:f7:09:d7:2a:6e:aa:88:37:a9:
b5:7f:da:2d:26:89:39:29:ac:14:50:fa:e2:16:15:
31:07:5c:13:ea:7c:75:34:9c:a2:e5:c2:a4:9e:f5:
00:2d:d1:f8:55:85:e4:96:5c:c6:eb:05:52:63:67:
70:95:62:d8:23:d3:9f:ad:e1:f8:54:fe:ec:54:1a:
9f:f4:ea:39:2e:bf:fe:db:44:3c:16:46:ca:aa:58:
df:53:2b:36:32:6a:b3:b7:19:45:23:76:1c:89:f5:
53:6d:00:b7:96:de:ff:61:07:13:8e:fa:b1:50:1f:
fe:9b:c3:3a:86:2e:4a:50:13:46:cf:75:5d:10:e0:
5a:d3:6d:da:bd:d5:f7:57:64:de:a9:4c:a3:89:b4:
1a:92:9e:03:cc:4b:26:23:35:36:31:ee:1e:54:a8:
0d:cc:c3:cb:66:52:3d:8f:29:d0:86:2b:6f:fe:4b:
b7:1a:5b:b2:6a:84:ce:e2:dc:af:f8:9a:89:1d:ef:
97:ae:d8:9d:19:cd:e7:9c:f8:15:fc:28:5a:4e:71:
9e:b8:f2:c6:3e:f6:7e:a1:7a:d0:5f:15:c2:7f:4a:
e4:70:6e:7c:a3:b0:ca:5b:5b:b6:b8:bb:a3:f5:35:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:26:18:BB:CD:DB:DF:85:DB:59:71:2F:5D:BD:A0:D8:B7:C4:F4:E0
X509v3 Authority Key Identifier:
keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.105.195.0/24
Signature Algorithm: sha256WithRSAEncryption
98:80:d3:54:6c:24:5c:72:f2:3a:1b:b2:6e:82:f9:71:fa:76:
52:6a:cd:18:c2:87:3d:57:b6:20:9d:be:7f:00:7b:0b:c8:88:
41:31:08:65:98:48:ed:cc:c1:fa:b1:3c:e1:59:6b:5a:03:7b:
c1:53:38:13:27:db:48:cf:34:9e:4f:be:71:3e:46:95:3c:86:
f4:71:3b:1b:fc:15:26:e1:5b:8c:99:8e:99:18:74:a3:29:1b:
30:74:28:d3:ff:5f:67:f4:6a:30:1b:bc:aa:bc:92:23:15:e2:
2b:29:aa:63:c3:f3:ef:ce:a8:2f:16:cd:d9:c4:44:49:76:23:
84:7e:43:94:c1:0d:b6:91:b2:14:20:86:5b:bb:d5:c1:d8:ec:
b1:bf:c0:e9:2b:b0:a5:f5:3e:f7:83:7d:f1:32:ec:7a:4f:ea:
66:a9:ce:dc:68:b0:66:21:d1:7b:ef:57:8c:b4:cd:38:34:2c:
37:25:1e:5d:c0:08:4e:e3:6c:a9:50:28:97:e9:cc:c2:64:8a:
46:19:a1:de:84:06:57:79:1c:29:8d:27:c7:d4:9d:e7:50:f8:
58:d9:36:be:89:ad:7d:15:6e:1f:28:97:39:e1:46:a7:99:6a:
75:ef:bb:fd:a6:3d:34:6d:cc:3c:8c:d7:1b:16:37:1a:d9:d5:
be:f2:34:ad
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUZIvcrCkvKsyLhbMVoBiQ+hy1idQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0
NzQyNDRCMTAeFw0yNDExMjcwMjU2MzhaFw0yNTExMjYwMzAxMzhaMDMxMTAvBgNV
BAMTKDk0MjYxOEJCQ0REQkRGODVEQjU5NzEyRjVEQkRBMEQ4QjdDNEY0RTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCarKuiw0lXG+Ll1irxdkVd57aK
0PcJ1ypuqog3qbV/2i0miTkprBRQ+uIWFTEHXBPqfHU0nKLlwqSe9QAt0fhVheSW
XMbrBVJjZ3CVYtgj05+t4fhU/uxUGp/06jkuv/7bRDwWRsqqWN9TKzYyarO3GUUj
dhyJ9VNtALeW3v9hBxOO+rFQH/6bwzqGLkpQE0bPdV0Q4FrTbdq91fdXZN6pTKOJ
tBqSngPMSyYjNTYx7h5UqA3Mw8tmUj2PKdCGK2/+S7caW7JqhM7i3K/4mokd75eu
2J0Zzeec+BX8KFpOcZ648sY+9n6hetBfFcJ/SuRwbnyjsMpbW7a4u6P1NVvzAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUlCYYu83b34XbWXEvXb2g2LfE9OAwHwYDVR0j
BBgwFoAUvV1Gtb/nLyqhGIqQlrEOAUdCRLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
OTI0ZmE5YS1lNWYzLTQyNjUtOWUxZC04NGU0NTM1OTYxZDAvMC9CRDVENDZCNUJG
RTcyRjJBQTExODhBOTA5NkIxMEUwMTQ3NDI0NEIxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0NzQy
NDRCMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MjRmYTlhLWU1ZjMtNDI2NS05
ZTFkLTg0ZTQ1MzU5NjFkMC8wLzMxMzAzMzJlMzEzMDM1MmUzMTM5MzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM3Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnacMwDQYJ
KoZIhvcNAQELBQADggEBAJiA01RsJFxy8jobsm6C+XH6dlJqzRjChz1XtiCdvn8A
ewvIiEExCGWYSO3MwfqxPOFZa1oDe8FTOBMn20jPNJ5PvnE+RpU8hvRxOxv8FSbh
W4yZjpkYdKMpGzB0KNP/X2f0ajAbvKq8kiMV4ispqmPD8+/OqC8WzdnEREl2I4R+
Q5TBDbaRshQghlu71cHY7LG/wOkrsKX1PveDffEy7HpP6mapztxosGYh0XvvV4y0
zTg0LDclHl3ACE7jbKlQKJfpzMJkikYZod6EBld5HCmNJ8fUnedQ+FjZNr6JrX0V
bh8olznhRqeZanXvu/2mPTRtzDyM1xsWNxrZ1b7yNK0=
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:32:11 2025 by rpki-client