Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa
File: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (raw, json)
Hash identifier: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=
Subject key identifier: 2D:A6:BD:25:DA:7D:80:D1:C8:B4:2F:65:53:65:22:F9:22:BB:07:D1
Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77
Certificate serial: 34A5CCF593B5A09AA3DA83C564A428275072CF23
Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa
Signing time: Sun 12 Jan 2025 11:00:02 +0000
ROA not before: Sun 12 Jan 2025 10:55:02 +0000
ROA not after: Sun 11 Jan 2026 11:00:02 +0000
asID: 150257
IP address blocks: 103.30.192.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:a5:cc:f5:93:b5:a0:9a:a3:da:83:c5:64:a4:28:27:50:72:cf:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77
Validity
Not Before: Jan 12 10:55:02 2025 GMT
Not After : Jan 11 11:00:02 2026 GMT
Subject: CN=2DA6BD25DA7D80D1C8B42F65536522F922BB07D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:a4:02:81:09:1e:f4:c9:fa:da:f0:77:19:
8a:ca:a7:32:23:c9:fd:c3:7f:d2:5b:84:1f:1d:22:
1d:c2:9e:32:ca:2b:56:aa:1a:32:0a:d6:a1:7a:85:
d9:4a:18:d2:d4:c7:b5:3e:22:b3:b6:c9:08:06:7d:
19:8f:05:ad:96:12:4d:ec:e1:10:74:5c:65:64:d3:
89:3a:31:a4:00:e4:b5:d1:4c:26:92:9b:a0:02:3b:
36:f6:33:a6:5b:a4:7c:13:ec:58:e2:27:01:db:fb:
69:01:51:91:5a:5b:0c:8a:7f:a0:0a:0e:5c:47:f6:
f9:51:96:8b:a4:5d:c3:cf:38:65:d4:7f:cd:a3:0a:
6c:ba:87:de:39:a1:70:22:df:30:63:77:ce:b6:82:
2b:97:24:c4:fd:13:a5:f0:39:c0:33:df:7a:bf:08:
13:59:14:b1:53:36:7c:38:9f:d1:7f:6f:d1:c5:1c:
8a:e7:61:22:0d:08:8b:c8:ed:82:b6:3f:24:dc:34:
d7:3f:01:28:4c:c5:48:32:1d:8b:67:9f:1f:7e:a1:
84:bd:02:fc:10:2b:6a:57:25:a9:96:50:e2:7a:54:
1b:68:9f:36:23:8e:b4:d3:14:c2:60:3d:d2:52:b5:
d5:7f:d6:91:14:ff:fc:73:dd:57:96:2c:d1:ab:ff:
20:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A6:BD:25:DA:7D:80:D1:C8:B4:2F:65:53:65:22:F9:22:BB:07:D1
X509v3 Authority Key Identifier:
keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.30.192.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:82:e5:03:50:5d:75:39:f4:48:f8:2f:95:79:32:ae:75:e7:
1a:61:2e:ed:74:c4:17:9b:e7:fd:15:d0:79:26:ca:c7:08:11:
1d:c5:7c:30:73:63:2d:03:50:84:55:84:4a:8d:1b:57:8f:5e:
60:bb:4d:18:ee:f1:f6:17:04:99:55:75:6a:05:eb:61:f7:a4:
bf:a6:de:31:11:4a:d6:4d:09:fc:6a:ef:7a:d5:c2:aa:ef:80:
06:c0:4c:ae:3c:8f:6a:ac:04:41:0a:c3:85:0c:5b:4e:04:a3:
98:bd:7a:95:06:57:f3:cb:6f:21:1d:1b:76:dc:0d:29:81:33:
c5:90:6c:0d:f9:69:9b:1e:35:76:13:a0:77:87:1b:a0:06:70:
9d:10:39:82:f6:f8:59:cb:e3:99:1e:1b:c9:f3:08:45:ab:3a:
5b:47:d9:ad:02:04:e8:69:8f:65:e8:be:ce:88:59:99:b8:07:
d1:01:c2:2e:79:de:bb:b5:22:00:48:15:79:5a:9a:62:b0:7e:
32:ab:37:6c:83:6b:de:d1:47:32:7c:91:10:a7:af:d4:b1:ee:
82:ea:39:4e:a7:b0:1d:05:bd:2f:cc:98:05:aa:6f:3f:55:41:
3c:39:2e:5f:27:0d:b0:a3:de:2b:f4:6e:1a:c8:84:d5:2f:8d:
6e:44:af:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:33 2025 by rpki-client