Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa
File: 3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa (raw, json)
Hash identifier: JzP3prHOgFH/3pcbrciCFSrBpBQbgCsXcDvrDwP8+gk=
Subject key identifier: 9B:C6:46:B3:B9:96:CC:9A:34:52:8A:49:ED:C5:E6:FE:C8:F9:B1:D4
Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Certificate serial: 38DFBD0D860152D854A85E0F143F28EF8102C697
Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa
Signing time: Sat 01 Feb 2025 11:00:01 +0000
ROA not before: Sat 01 Feb 2025 10:55:01 +0000
ROA not after: Sat 31 Jan 2026 11:00:01 +0000
asID: 139417
IP address blocks: 103.138.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:df:bd:0d:86:01:52:d8:54:a8:5e:0f:14:3f:28:ef:81:02:c6:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Validity
Not Before: Feb 1 10:55:01 2025 GMT
Not After : Jan 31 11:00:01 2026 GMT
Subject: CN=9BC646B3B996CC9A34528A49EDC5E6FEC8F9B1D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:2d:c5:f2:97:b6:25:df:50:37:14:be:03:fa:
7b:11:44:5f:9d:59:24:ae:e0:dd:b5:fd:62:d9:19:
ea:92:fc:9d:73:03:8f:d5:d0:56:f1:87:38:4b:4f:
c0:30:a8:c5:51:17:0f:fe:f0:1f:41:f9:43:29:50:
c8:71:49:c1:ef:c8:ae:bc:5a:3a:f3:3f:51:50:f2:
67:6a:83:2b:84:e2:ed:64:0c:73:b7:eb:ee:d4:65:
89:79:59:d2:46:11:ff:a6:e3:6a:f0:de:34:1c:57:
a2:61:8a:bb:32:5d:2b:2b:e2:17:1c:9c:9b:de:a7:
41:59:d3:dd:7d:c7:3b:f5:37:32:fa:bc:5f:4e:64:
64:75:23:29:a5:37:37:2f:ff:ed:e2:bd:80:df:a2:
dc:fc:ea:aa:98:25:fa:6f:ac:a8:2c:c8:1c:5a:87:
61:d9:d8:27:e1:6a:12:39:d8:13:08:6c:73:d5:3b:
37:55:1c:fd:7a:78:ba:54:9b:8b:02:ac:26:97:eb:
28:50:c6:54:1e:6c:42:2c:dd:18:cc:bb:79:5f:41:
22:54:15:30:8b:0c:50:bb:30:9c:24:75:1d:f0:53:
ed:57:7e:d0:d8:83:ff:3f:b9:80:e3:09:a9:87:df:
b2:3f:84:1f:f0:02:60:e0:55:54:08:de:b9:3f:05:
3b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C6:46:B3:B9:96:CC:9A:34:52:8A:49:ED:C5:E6:FE:C8:F9:B1:D4
X509v3 Authority Key Identifier:
keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.138.116.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2f:c3:5d:95:45:f4:63:dc:5c:65:5b:0e:f1:05:df:a4:60:
92:18:41:2e:91:22:5b:50:06:88:a8:09:a2:37:6d:0b:f7:b2:
58:44:b3:83:a9:6d:cb:d8:19:cc:40:83:26:2f:42:e3:32:af:
26:97:5b:9a:63:45:c0:c4:5c:a8:8e:73:81:57:4b:af:3b:a9:
47:b5:45:fc:9e:5e:77:1f:27:9d:95:1e:d7:27:b0:fb:7b:c9:
17:e1:1e:5f:1a:d8:6f:b8:b7:e6:be:28:8b:d0:fd:1d:7a:b0:
68:8f:7d:5d:d3:8d:ba:60:30:a9:7c:29:2b:2b:2f:ac:a8:85:
71:e1:75:12:82:a6:6a:0a:5e:8d:66:9b:9f:3a:a6:4e:a0:23:
57:98:67:2b:cc:c5:81:80:4c:6c:cb:1f:e3:47:bc:ab:a5:83:
20:2e:68:40:af:f9:3c:2e:7b:45:e3:9e:64:db:99:3a:ca:6d:
53:9d:e6:63:38:d2:b2:d2:6d:43:b8:e3:17:11:0f:d1:ec:f4:
0d:bb:4b:42:f1:9d:b2:40:56:be:c8:61:a6:72:cc:a2:be:b4:
c3:8f:8c:df:41:1b:fd:30:ab:64:72:35:49:d1:66:38:96:2e:
00:a1:19:0d:f1:43:2c:bb:80:06:39:7d:42:18:4b:73:3f:86:
ca:58:86:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:49:48 2025 by rpki-client