Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa
File: 3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa (raw, json)
Hash identifier: I90vNVHR98Ns9EbFWsBOyXpypkK4ezCBsQ4Nw555WdU=
Subject key identifier: 30:31:80:29:EF:A1:C5:47:E6:58:D0:2B:0E:62:B7:B4:88:63:C2:D7
Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A
Certificate serial: 43C31553A2E9C9105391F948528D83EC4D160F34
Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa
Signing time: Thu 26 Sep 2024 16:00:00 +0000
ROA not before: Thu 26 Sep 2024 15:55:00 +0000
ROA not after: Thu 25 Sep 2025 16:00:00 +0000
asID: 140456
IP address blocks: 103.96.146.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:c3:15:53:a2:e9:c9:10:53:91:f9:48:52:8d:83:ec:4d:16:0f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A
Validity
Not Before: Sep 26 15:55:00 2024 GMT
Not After : Sep 25 16:00:00 2025 GMT
Subject: CN=30318029EFA1C547E658D02B0E62B7B48863C2D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f1:8b:77:a9:e3:27:aa:4f:75:4e:f7:1a:48:
9b:20:14:80:7a:4e:6c:a9:52:ad:64:b1:89:5a:d0:
9f:76:c7:49:2f:cf:d8:bf:81:53:f4:dd:88:55:0b:
28:82:99:ce:77:05:80:b6:f1:be:91:e8:8a:6f:77:
59:7e:c8:81:f9:f1:80:95:bf:d0:30:9c:a2:e3:8a:
76:00:e6:1f:05:78:76:e4:f4:b5:04:16:49:77:2f:
7b:27:f2:38:43:3a:fb:fb:e6:e3:9d:aa:b7:34:5d:
9b:21:23:54:d2:69:81:b1:ab:d0:d4:73:48:57:5f:
e6:8a:61:47:61:e5:63:55:c4:67:be:99:b9:dd:66:
c3:73:b1:fe:2b:55:7b:42:b3:dd:68:57:af:19:2d:
42:a3:56:a0:8d:87:66:07:31:db:57:47:10:0d:a3:
2b:4b:a6:11:8b:2b:58:89:84:a9:7e:a3:03:87:7b:
c0:ab:c4:c0:ef:0b:61:5f:c4:6c:1e:00:3c:3a:f6:
87:af:07:4e:c0:d4:7d:64:ce:78:bf:43:a9:8c:c1:
cd:07:b1:b5:8b:64:0e:aa:b9:1f:48:bf:a3:e5:b3:
ba:fc:f0:4a:31:7b:1c:6d:e8:50:88:b6:f5:65:85:
94:fa:74:68:ac:f8:74:68:ab:54:f9:63:b2:ed:97:
c5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:31:80:29:EF:A1:C5:47:E6:58:D0:2B:0E:62:B7:B4:88:63:C2:D7
X509v3 Authority Key Identifier:
keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.96.146.0/23
Signature Algorithm: sha256WithRSAEncryption
41:4f:38:5a:2e:1c:83:02:88:40:4b:4b:41:51:29:20:00:22:
cc:02:43:e3:5b:45:ed:53:91:87:de:96:3c:d1:52:81:f1:f1:
29:e6:53:2d:c5:87:ab:b5:29:f3:f6:ae:76:10:73:22:51:36:
4d:13:68:74:c5:2a:16:8f:3f:59:16:08:2d:21:9a:90:83:e4:
6c:1c:5b:7d:c4:57:10:d2:a7:9a:c4:03:07:e3:76:8c:4e:d1:
b1:35:57:c9:2f:74:55:70:f8:97:70:b0:ef:c7:85:ee:24:f9:
75:04:5a:28:29:82:35:26:3a:e3:66:e0:51:17:43:e3:2a:b2:
34:2c:fe:7c:d8:27:3a:78:db:01:47:d2:f8:8c:a5:ad:d5:1f:
f0:bd:61:df:5b:af:12:ac:c4:78:7e:ab:e3:d9:46:a7:93:c2:
01:68:ef:aa:28:6e:67:e2:2e:4a:e5:48:f2:f0:d2:07:ea:06:
fd:33:f4:be:b4:bf:7f:cc:9a:a2:9d:24:9b:af:57:6f:0c:b8:
35:a0:34:54:1c:ca:22:38:05:dc:84:74:e1:be:9d:4f:82:e2:
41:26:7b:22:6a:6a:61:2c:48:40:33:48:f6:db:ac:ff:ca:52:
55:e7:7c:42:3c:b0:e8:4f:2f:dc:e3:bd:41:f6:3e:5c:0d:62:
7a:3e:c6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:26:33 2025 by rpki-client