Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa
File: 3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa (raw, json)
Hash identifier: Z1HM4GcTx4KcKCpM72/PPyVhWETpNnJYgpZsqohktAo=
Subject key identifier: E5:59:F6:46:74:04:2D:EB:E2:F1:43:62:79:56:40:76:A8:A2:84:F5
Certificate issuer: /CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796
Certificate serial: 57BA716961C780130EF10DE499D2B5D8F9ECB2F2
Authority key identifier: 0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa
Signing time: Mon 01 Jul 2024 01:05:03 +0000
ROA not before: Mon 01 Jul 2024 01:00:03 +0000
ROA not after: Mon 30 Jun 2025 01:05:03 +0000
asID: 140463
IP address blocks: 103.153.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:ba:71:69:61:c7:80:13:0e:f1:0d:e4:99:d2:b5:d8:f9:ec:b2:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A1DE6FD88BB9EF4E349C1774DA926E423264796
Validity
Not Before: Jul 1 01:00:03 2024 GMT
Not After : Jun 30 01:05:03 2025 GMT
Subject: CN=E559F64674042DEBE2F1436279564076A8A284F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:88:f6:ce:26:32:b1:52:53:96:ab:c1:95:83:
f0:b9:80:70:6f:86:45:7b:b8:4e:5e:e0:65:32:a3:
33:34:44:87:87:b0:71:d0:5f:bc:bc:69:a3:ee:43:
6a:84:2f:d4:fc:b8:39:6f:dd:ee:d0:66:d9:1c:4c:
86:89:70:df:a1:4d:eb:b5:7d:14:d7:ec:1e:1d:ba:
8d:cb:36:b6:fa:26:1f:7b:a7:0b:01:60:67:fd:3c:
ed:92:3d:61:69:8c:5e:aa:93:f1:f3:40:ca:d0:73:
28:0d:3e:8a:c6:38:5f:4a:b9:9c:e3:d1:26:aa:d1:
a0:3b:2e:77:4a:79:cb:86:55:93:97:c2:35:00:dc:
b1:70:a3:27:86:02:3b:dd:8a:28:07:ed:01:da:fe:
9b:aa:da:dc:26:82:9f:c1:ee:02:c7:02:bc:6e:e6:
c3:91:2d:1b:d1:fb:77:20:5f:a4:ad:3d:be:bf:de:
83:41:b2:d2:ae:e6:60:99:be:46:4d:f8:13:0b:80:
97:d4:89:f9:3a:0e:88:8e:b4:6b:aa:c2:c6:a7:c0:
19:3a:d4:34:a0:38:81:9a:d1:55:e2:87:a0:cc:92:
c8:7f:ec:ea:0b:52:53:40:15:7d:ea:a2:41:bb:76:
eb:a4:ab:fb:01:7c:4a:fc:51:17:4d:a8:33:bd:2a:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:59:F6:46:74:04:2D:EB:E2:F1:43:62:79:56:40:76:A8:A2:84:F5
X509v3 Authority Key Identifier:
keyid:0A:1D:E6:FD:88:BB:9E:F4:E3:49:C1:77:4D:A9:26:E4:23:26:47:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/0A1DE6FD88BB9EF4E349C1774DA926E423264796.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DE6FD88BB9EF4E349C1774DA926E423264796.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.131.0/24
Signature Algorithm: sha256WithRSAEncryption
85:18:b3:75:ea:9e:55:30:77:e4:10:aa:c0:49:9c:db:8b:fa:
73:c5:b0:ec:04:4e:d0:5c:30:28:db:ab:fc:bc:fc:95:d3:df:
90:39:0b:53:e6:f7:f7:4a:27:b1:81:2e:00:ac:15:24:c9:a3:
9a:99:b5:70:50:5d:a2:00:eb:30:e3:02:33:49:92:71:d0:2a:
cc:16:61:e0:3d:c6:dd:8a:e3:b1:d5:ea:02:38:4d:d8:e9:32:
d1:39:f6:38:be:b9:36:7f:92:8a:ce:08:bb:22:f9:9b:f7:13:
d5:89:6b:2c:e4:10:5f:8d:c3:bd:3d:dc:45:f1:8b:81:07:24:
24:9e:bd:98:55:0b:5c:70:4a:1d:7a:3f:33:12:46:ee:bb:f7:
90:1a:ff:f1:b1:9f:66:9c:4e:0b:d0:ee:1b:c5:2c:d7:86:90:
04:a3:ff:74:30:d9:bb:ed:93:37:d5:67:bd:ee:ae:f3:bf:85:
7b:35:48:7e:cd:37:1d:e1:4d:17:60:22:cf:47:cf:0f:11:2b:
d9:4d:38:56:75:f4:0f:78:2c:57:e4:25:eb:ff:af:27:22:fa:
4b:ef:60:f8:a5:6f:6d:7f:2d:7d:e8:f8:41:5b:a1:36:32:4f:
5c:ca:60:33:cf:df:c7:e8:cc:91:1b:1c:da:40:fd:1b:22:0c:
ec:cf:fb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:11 2025 by rpki-client