Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa
File: 3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa (raw, json)
Hash identifier: 7H0GdHg7L7zkSDLiSxs3CkgDGlREYCGdHWl+JFsGgmA=
Subject key identifier: 13:CA:D2:AE:1D:05:FC:5B:EC:9C:66:57:E3:C5:98:F7:85:FD:F4:45
Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D
Certificate serial: 5D62561839A86A9AFF37EE061204BE0E2F77F507
Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa
Signing time: Thu 26 Dec 2024 17:00:02 +0000
ROA not before: Thu 26 Dec 2024 16:55:02 +0000
ROA not after: Thu 25 Dec 2025 17:00:02 +0000
asID: 141122
IP address blocks: 103.157.192.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:62:56:18:39:a8:6a:9a:ff:37:ee:06:12:04:be:0e:2f:77:f5:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D
Validity
Not Before: Dec 26 16:55:02 2024 GMT
Not After : Dec 25 17:00:02 2025 GMT
Subject: CN=13CAD2AE1D05FC5BEC9C6657E3C598F785FDF445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:be:97:8d:3c:4e:e4:c1:93:12:8d:b7:a9:3b:
c4:a0:0b:07:9a:9c:87:68:0c:c5:b8:5b:c2:6d:c2:
52:05:df:f0:7c:20:96:63:2e:06:b0:46:ef:b0:cd:
ec:85:79:a3:06:81:fc:37:0e:6e:d2:1e:26:32:85:
a0:97:83:3e:33:ac:28:96:77:b0:36:c5:a8:3b:f2:
dd:56:8f:1f:8c:c6:86:4e:c2:e7:2c:03:1e:1d:dc:
17:c4:45:dd:9a:49:6b:36:b6:23:b4:45:75:db:5f:
e5:d7:31:1d:0c:8d:70:cd:71:c8:30:42:4f:13:88:
09:c7:fd:db:15:f9:9a:6a:0c:f1:36:4e:98:6b:60:
67:b5:76:de:0a:fb:13:21:e9:6c:8c:8d:d9:14:e5:
95:43:03:bc:a5:01:a7:34:c6:71:73:02:6b:c1:d1:
a5:33:85:3f:e0:7d:c8:ab:89:9c:31:2e:ed:3c:ae:
fe:ad:c6:1b:b1:24:3e:d3:59:a9:3a:61:1e:53:90:
4f:69:57:64:a6:e9:e7:64:92:5a:e5:58:d0:88:b1:
fe:3b:1a:3f:a5:06:4c:1a:e7:d5:f9:20:31:a1:54:
ce:ad:42:d1:3a:2a:ab:d7:0b:9d:25:be:71:4f:5b:
b3:ae:ad:2f:c7:d7:70:38:c8:f2:0f:bf:5e:47:2d:
86:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CA:D2:AE:1D:05:FC:5B:EC:9C:66:57:E3:C5:98:F7:85:FD:F4:45
X509v3 Authority Key Identifier:
keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32332d3233203d3e20313431313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.157.192.0/23
Signature Algorithm: sha256WithRSAEncryption
96:43:3a:24:de:6d:42:17:00:09:fa:16:9e:30:a7:1a:f3:1b:
c9:fb:52:31:f9:8c:91:17:94:8c:57:e0:24:53:61:25:17:c1:
ed:b4:5d:4d:39:ae:49:be:6f:0c:46:99:92:ee:30:13:e9:bc:
e6:ff:ed:70:a7:43:2e:67:63:e3:72:15:27:27:a2:b6:9c:07:
81:d2:99:fe:d1:09:21:b5:bc:5a:9e:d6:71:7f:77:a0:7e:1e:
c4:79:b7:0a:eb:2a:d0:65:bd:f6:e6:9b:05:97:0f:d8:e4:fa:
4e:63:b1:a2:43:44:53:f6:0c:da:57:7b:6d:97:5b:92:a4:62:
00:d2:36:78:3c:d0:c7:c7:72:00:28:e8:6f:57:97:eb:80:79:
61:3f:76:59:11:1a:25:8c:64:cd:fe:59:57:62:92:72:7b:18:
5b:9f:6b:39:d8:32:d4:8e:2d:a0:82:c0:f6:f5:90:02:76:65:
28:2b:a0:99:d8:68:19:54:10:00:19:e4:f2:69:49:54:6f:78:
06:99:bd:c0:b2:79:29:f5:73:77:9b:4c:b2:e8:b6:0f:99:96:
a8:4a:01:b7:41:66:5e:60:1e:ab:1a:52:2e:1c:da:3b:1c:6a:
8e:7d:8e:c0:f1:18:93:f4:ba:4f:19:da:cc:27:74:a3:35:96:
0f:33:90:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:48 2025 by rpki-client