Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa
File: 3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa (raw, json)
Hash identifier: zDZwxuMGR35WnwSzgL1ngFAfXt4osMkxDGuH+wx6iCo=
Subject key identifier: E7:CA:5C:60:E8:D6:1D:C0:63:65:9A:45:84:E1:68:AD:72:6D:A9:32
Certificate issuer: /CN=CC8AB1F3D177B771E1F70EDDE67F26E5854C0708
Certificate serial: 4E5060491C3A6DA134F6C3C5FA529FE87D91EF06
Authority key identifier: CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa
Signing time: Thu 06 Mar 2025 07:00:00 +0000
ROA not before: Thu 06 Mar 2025 06:55:00 +0000
ROA not after: Thu 05 Mar 2026 07:00:00 +0000
asID: 141624
IP address blocks: 103.160.18.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:50:60:49:1c:3a:6d:a1:34:f6:c3:c5:fa:52:9f:e8:7d:91:ef:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC8AB1F3D177B771E1F70EDDE67F26E5854C0708
Validity
Not Before: Mar 6 06:55:00 2025 GMT
Not After : Mar 5 07:00:00 2026 GMT
Subject: CN=E7CA5C60E8D61DC063659A4584E168AD726DA932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:87:84:d0:0d:b4:80:a1:67:90:e7:f8:d9:3d:
d6:14:f3:9e:32:f9:7c:56:4e:7c:b1:7c:50:48:15:
c1:49:4e:a8:7c:43:4b:e9:68:b6:32:c6:bf:50:cf:
88:f1:7c:90:2f:e6:2f:b2:3c:a1:2c:d9:93:63:2f:
5f:25:c4:2f:de:ea:4a:70:28:4f:25:0c:d1:3e:41:
42:61:ab:05:29:19:8f:50:22:be:c5:c7:27:b8:53:
e3:87:64:d6:ce:fe:d6:1d:ba:ee:4e:f8:c8:5d:4d:
8b:02:c4:ee:2d:ee:db:e4:5d:fa:d4:cf:50:a3:ef:
2b:74:50:2a:d0:d9:d8:6b:32:10:a3:14:40:37:93:
18:0e:50:a6:58:a2:b7:bf:28:b8:50:ed:99:05:d7:
bf:c3:57:51:58:dc:35:d8:e0:2c:12:4d:c9:11:ac:
7d:54:6e:27:d3:c5:88:11:e5:f0:11:84:64:12:c0:
88:bb:39:79:dc:47:9b:3b:4d:d2:c8:72:a2:2a:f3:
2f:e1:52:db:d1:55:b2:ae:95:22:9d:32:d1:fb:b8:
92:16:f4:a5:41:d8:21:47:f3:31:96:95:93:7f:22:
bb:2c:c4:0f:36:62:77:33:eb:32:d0:be:4a:8c:a8:
5b:29:a0:8a:2a:9a:e4:5d:21:47:59:80:96:7f:ee:
4f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CA:5C:60:E8:D6:1D:C0:63:65:9A:45:84:E1:68:AD:72:6D:A9:32
X509v3 Authority Key Identifier:
keyid:CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.18.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:14:b2:bd:0f:d0:ab:ae:4b:3d:3d:55:c9:69:fb:52:c8:fe:
da:c7:df:b9:b2:ca:2d:5f:8a:0c:1c:e3:e8:b1:c4:77:0d:f0:
51:81:34:e3:9c:81:d9:ac:e8:fe:c2:c6:7d:5b:09:c2:f0:b0:
11:19:8b:d8:a3:1f:f1:f2:60:cc:4a:99:3a:6d:a0:1b:cb:40:
eb:af:47:ef:90:37:82:c1:8c:fc:1e:0f:28:34:56:19:cb:7d:
61:df:74:d1:4a:5d:37:97:69:bc:6e:51:29:ed:fd:60:2e:50:
f6:d4:30:ca:24:1b:04:6e:5f:39:ff:a9:58:27:e0:6c:05:f5:
0e:28:67:90:ba:69:04:f9:67:0e:af:b9:56:c0:db:65:dd:c2:
9a:f0:78:bb:c2:7e:0c:33:1d:0a:43:4f:11:36:3a:d7:6d:16:
f8:9b:10:dd:fb:1b:1f:ed:2e:99:87:0c:26:eb:27:4e:4d:40:
03:63:b0:9a:23:5e:3b:e8:ad:c8:39:11:8d:01:ea:d2:5b:69:
eb:0e:84:a3:5f:ee:f6:56:eb:15:fc:7c:66:32:f0:98:09:bb:
5d:68:74:d4:6f:a8:c1:f2:4d:f5:a6:87:34:2a:f4:26:bf:10:
8a:75:bc:3b:1c:32:4f:38:23:4d:fb:54:27:c2:03:1f:89:35:
43:66:0d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:26:57 2025 by rpki-client