Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa
File: 3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa (raw, json)
Hash identifier: KPo4wuLbGzX/6ydQMeGG4vRz99frNxB88+YZBW4aDp8=
Subject key identifier: 88:B3:18:D6:AC:19:35:2B:A5:D7:78:E6:A3:EE:81:4E:D6:0C:AE:47
Certificate issuer: /CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036
Certificate serial: 7A51521FA636532DC4BFD785313173325C2C9DB6
Authority key identifier: 23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa
Signing time: Fri 31 May 2024 12:00:00 +0000
ROA not before: Fri 31 May 2024 11:55:00 +0000
ROA not after: Fri 30 May 2025 12:00:00 +0000
asID: 149689
IP address blocks: 103.185.252.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:51:52:1f:a6:36:53:2d:c4:bf:d7:85:31:31:73:32:5c:2c:9d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036
Validity
Not Before: May 31 11:55:00 2024 GMT
Not After : May 30 12:00:00 2025 GMT
Subject: CN=88B318D6AC19352BA5D778E6A3EE814ED60CAE47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:b5:32:69:58:48:01:40:ff:62:34:e2:38:84:
76:1d:86:12:1c:98:b9:c3:7b:95:a3:ab:80:a0:54:
bc:c6:e4:7d:99:16:53:9b:b1:a8:1a:13:c3:ee:53:
e2:03:06:b7:88:f8:78:32:ef:c1:79:ce:e3:d6:21:
63:2f:85:30:eb:af:5d:52:bf:08:6b:6d:fc:75:44:
36:da:4c:d5:ff:88:d3:04:8d:7d:b5:32:5a:b2:1e:
0b:61:73:d6:0d:f5:be:9f:f4:54:b7:f0:f3:4d:41:
49:59:fd:e7:71:f8:36:03:47:8b:c9:ea:2f:89:c5:
f2:a5:b2:63:24:a7:76:9b:d7:b1:88:b6:db:3e:85:
2b:ab:4f:23:98:86:5c:3c:40:41:04:34:18:79:c9:
0b:72:c3:d1:8c:6a:be:dc:6b:49:ff:5d:77:56:50:
76:c9:d8:2b:e0:25:7b:2a:34:03:a9:bc:5c:1c:ec:
3b:2f:fe:69:e4:6e:bc:6d:48:67:72:c7:cf:8a:8c:
f6:0b:84:36:65:d3:53:77:ed:b0:76:b7:7f:fb:8a:
61:a5:0d:c0:ba:a3:8c:de:2f:d1:f4:59:34:9b:53:
a3:d4:a4:24:fa:54:ba:74:dd:fc:97:ee:2e:66:b4:
89:66:8b:2b:cd:35:97:e9:15:2c:ac:ba:0f:c6:ed:
ba:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B3:18:D6:AC:19:35:2B:A5:D7:78:E6:A3:EE:81:4E:D6:0C:AE:47
X509v3 Authority Key Identifier:
keyid:23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.185.252.0/23
Signature Algorithm: sha256WithRSAEncryption
88:bc:af:ee:88:7f:fa:12:ea:0c:22:64:87:bd:91:4d:ff:b1:
a8:39:02:89:bd:92:32:49:b0:c7:c2:58:39:6f:1e:64:4f:b4:
af:47:a9:f6:18:16:4c:40:07:fe:15:25:36:03:74:17:f7:84:
50:7a:54:b0:ff:32:b8:22:ea:f6:d3:1d:b0:00:31:a8:6f:90:
bf:62:66:6a:f2:01:d2:42:2d:86:49:1d:29:e7:7a:64:20:32:
21:57:3c:a6:2a:ce:7d:e3:0e:c7:12:cd:cc:b4:6d:6f:07:14:
b2:9b:7d:6a:ae:10:2e:9f:a3:65:86:b7:7a:fb:b7:36:82:59:
be:66:36:1f:2e:34:0c:5c:ba:53:4f:85:ea:9e:86:4c:35:dd:
e2:f2:e4:d7:8a:fc:c3:ad:70:95:ee:f5:f1:05:bb:6f:57:71:
32:47:a5:26:cf:d2:19:93:81:d5:03:99:ca:b1:89:09:1c:fe:
25:ef:99:87:ba:97:97:1a:da:7e:60:e2:60:4b:d7:b3:ad:24:
82:ce:0d:0d:2e:3e:1c:36:e6:ad:96:bf:fc:30:ac:3d:34:cf:
14:ad:a7:f0:65:ff:95:07:62:aa:8b:7b:6f:9b:9a:2b:af:05:
6e:05:07:2e:41:82:78:3d:b6:80:8e:2e:f6:61:c3:47:a3:06:
5e:10:b4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:37:16 2025 by rpki-client