Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa
File: 3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa (raw, json)
Hash identifier: JI3pjhPmyInlzEtZ8PXbjRWk78z+cy0q6o/inypVTws=
Subject key identifier: 00:38:BE:13:A8:E8:2D:FB:70:01:92:92:1D:7F:7C:78:56:00:3C:8F
Certificate issuer: /CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E
Certificate serial: 4571881C4CB231B9858B780E69643140DA2089BA
Authority key identifier: 43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa
Signing time: Sun 03 Nov 2024 15:00:01 +0000
ROA not before: Sun 03 Nov 2024 14:55:01 +0000
ROA not after: Sun 02 Nov 2025 15:00:01 +0000
asID: 136107
IP address blocks: 103.233.102.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:71:88:1c:4c:b2:31:b9:85:8b:78:0e:69:64:31:40:da:20:89:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E
Validity
Not Before: Nov 3 14:55:01 2024 GMT
Not After : Nov 2 15:00:01 2025 GMT
Subject: CN=0038BE13A8E82DFB700192921D7F7C7856003C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:69:5c:f7:6d:04:c3:97:ac:44:50:29:fd:d7:
0e:50:e4:19:fd:19:ec:86:5a:63:6c:db:e1:3b:b8:
af:97:50:96:8f:31:f6:c5:28:30:5c:7c:4a:8e:38:
de:19:33:33:86:c1:8a:1f:cc:19:11:b2:21:34:55:
84:d1:13:47:9e:1c:fe:8e:90:1f:48:44:eb:08:98:
1a:db:8e:c9:36:f7:c7:71:18:35:20:17:c4:af:7a:
0c:25:23:fc:3b:57:7b:77:e2:52:cf:fe:95:e5:e3:
6a:4c:ff:80:20:c7:1c:19:bc:64:1b:e4:e5:38:7d:
e8:2b:3c:1f:a8:91:0d:a2:b2:a2:90:ec:45:10:ac:
cb:33:e5:dc:ae:b5:7b:81:da:7e:11:ee:5f:4f:ba:
d8:a4:35:8d:26:3a:a0:bf:b6:91:bb:84:47:9e:da:
ee:b3:ff:b2:f9:2e:84:de:f7:2d:90:4e:5a:f7:52:
bc:fa:25:31:56:d4:7d:32:24:a9:b6:fb:df:96:e2:
a7:aa:08:6c:8a:aa:cf:8c:28:dd:77:dd:93:f1:19:
aa:66:fe:3b:c1:6c:b0:45:09:fe:3b:dc:a7:a0:7c:
f3:4c:29:fd:d8:53:23:ca:e8:e3:25:5f:ba:15:06:
ae:90:dd:3c:05:cf:18:99:a3:ce:92:db:5a:be:5d:
7e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:38:BE:13:A8:E8:2D:FB:70:01:92:92:1D:7F:7C:78:56:00:3C:8F
X509v3 Authority Key Identifier:
keyid:43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.233.102.0/23
Signature Algorithm: sha256WithRSAEncryption
47:45:e2:82:66:e2:bc:3e:98:c4:6c:55:d6:ce:07:7e:35:e1:
67:18:a6:78:f2:1c:fb:0b:03:2b:ab:15:ab:6c:9e:c9:33:21:
1c:65:50:ab:1c:ee:28:7c:d1:5e:5f:e3:02:f6:ce:e2:9a:c3:
23:b2:03:18:85:f8:54:14:01:99:a5:e4:92:d8:31:26:72:f2:
7d:80:63:20:68:d8:87:ac:31:b4:0a:59:12:70:6a:55:9d:9f:
2d:ce:4f:f0:5f:9c:45:4e:67:a4:fe:64:04:56:aa:20:10:a3:
44:92:0d:37:fa:55:ba:5a:2d:db:04:d7:ff:7d:5e:4e:9f:1d:
e9:f8:3a:1f:9f:c3:37:e1:c2:9a:09:fd:5a:e0:ce:0f:3e:06:
be:37:8f:83:b7:06:89:fc:46:8a:16:df:71:8c:b1:8e:49:ab:
69:dc:99:64:4c:b4:e2:c6:59:7a:89:3c:61:95:92:c5:a2:de:
0c:56:81:38:40:f3:b4:5a:80:20:da:22:49:5a:0f:e3:29:0e:
ee:4e:28:db:c9:e9:f8:c3:a3:21:2c:c9:46:ba:79:5a:ad:69:
9d:a6:57:cd:ad:7c:3b:31:bd:57:85:14:e9:cb:71:8b:7e:9f:
35:15:5d:bd:1d:13:65:c6:69:3b:ef:e4:ae:02:58:2d:63:37:
8f:eb:e6:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:51:23 2025 by rpki-client