Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e2036393339.roa
File: 3130332e3132302e36372e302f32342d3234203d3e2036393339.roa (raw, json)
Hash identifier: qvK+skO3QT34G8uQRqHtG6VsmJ/hmuNcrRmSO599EIs=
Subject key identifier: 2F:C4:7A:B4:3D:6F:4E:13:23:83:C6:90:FB:AF:82:99:39:F5:17:8E
Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E
Certificate serial: 69E56B94C228365B6D8EAAC98A0A5487CE2C123A
Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e2036393339.roa
Signing time: Tue 04 Feb 2025 17:00:01 +0000
ROA not before: Tue 04 Feb 2025 16:55:01 +0000
ROA not after: Tue 03 Feb 2026 17:00:01 +0000
asID: 6939
IP address blocks: 103.120.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:e5:6b:94:c2:28:36:5b:6d:8e:aa:c9:8a:0a:54:87:ce:2c:12:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E
Validity
Not Before: Feb 4 16:55:01 2025 GMT
Not After : Feb 3 17:00:01 2026 GMT
Subject: CN=2FC47AB43D6F4E132383C690FBAF829939F5178E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5e:2e:6c:51:34:c6:ea:b1:6c:04:38:08:0f:
1a:dd:b4:ad:2e:8b:f7:2a:4e:98:43:7d:0d:4b:3c:
9b:c0:a0:4a:e0:7a:df:bf:bf:f4:6c:c4:e4:0d:5c:
fd:10:b2:7e:3a:a3:b1:34:0e:05:83:55:46:ca:3c:
99:13:2d:f3:6d:a3:e6:43:ae:b5:86:e9:dd:b4:0d:
9f:8e:4e:96:66:58:fe:0e:d8:bc:6a:7f:4e:c2:df:
d6:bd:9d:00:b5:f2:32:b7:71:c3:ab:46:40:5e:26:
3e:f7:bc:c8:0c:1e:48:41:57:4f:91:b7:36:3b:77:
af:94:51:ec:0c:f8:2c:ca:8a:81:93:d5:16:62:a3:
79:ee:1c:31:9e:c3:e1:9c:25:6a:a6:58:1f:41:85:
47:9a:38:34:6d:c5:bf:ad:1f:7f:de:55:96:dd:4c:
e3:77:aa:50:60:98:9b:a3:d5:15:3c:f2:6e:59:65:
98:23:d2:41:c4:14:71:38:00:7e:ba:91:9f:15:84:
2c:8e:66:e6:71:2a:17:26:ef:26:c6:c9:61:33:88:
81:a6:0d:16:f1:37:a8:27:cf:c1:54:40:0a:94:de:
db:cb:41:f6:40:b1:04:7c:4f:91:d4:28:76:3f:f1:
09:05:c9:15:9f:5e:56:75:dc:94:3c:1f:85:dd:38:
51:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C4:7A:B4:3D:6F:4E:13:23:83:C6:90:FB:AF:82:99:39:F5:17:8E
X509v3 Authority Key Identifier:
keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36372e302f32342d3234203d3e2036393339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.120.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:03:4d:bd:fb:d3:4c:00:4e:66:e3:55:70:6f:94:82:9a:8e:
6f:94:2c:e9:0a:fa:9d:3d:d5:ee:06:b6:d7:af:db:00:29:c0:
b2:5d:95:1f:ad:e0:66:29:ea:79:9c:b8:9b:85:f8:94:6c:09:
50:1f:cd:76:2f:5b:a1:1e:2d:0c:17:88:27:cd:27:d3:4c:88:
c8:e9:f7:ea:5c:e1:18:f0:90:8b:88:f3:91:02:3a:45:cd:fb:
4c:6e:9b:c5:27:ce:b3:e2:84:60:0b:f6:d7:c9:77:35:da:eb:
25:8d:cc:7a:66:83:8b:5e:96:17:8d:9e:5e:ef:4b:6d:1a:59:
02:b8:d8:2c:56:65:73:10:25:6e:60:bc:80:97:36:dc:02:63:
1f:4d:43:10:53:e4:97:b4:da:31:55:61:18:9b:02:e5:d9:d2:
67:08:63:79:f2:c2:ec:dd:4d:da:61:cb:53:fc:b3:51:b6:c0:
60:b6:84:84:a0:fa:5e:76:d8:c9:6f:c9:29:58:da:47:e9:79:
73:81:79:8e:dd:79:6a:93:66:4e:6a:b2:70:2d:7b:fd:ae:fa:
1d:67:4e:28:35:79:60:d0:b1:2c:6b:66:de:0d:72:ed:6c:72:
88:4e:40:48:ea:94:89:89:b2:8b:17:02:b1:80:47:dc:fd:84:
04:0e:d7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:37:44 2025 by rpki-client