Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/3130332e39322e3233322e302f32332d3233203d3e20313336313132.roa
File: 3130332e39322e3233322e302f32332d3233203d3e20313336313132.roa (raw, json)
Hash identifier: 5yT7jld1qwMjQ1Wxg8xXgEk9H98NQ/9bvOuTLpVK3wE=
Subject key identifier: 49:87:A8:75:1E:AE:66:C3:C2:BB:57:93:D3:41:BB:CA:95:FF:B4:5B
Certificate issuer: /CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F
Certificate serial: 15A4E9EFB6883D4ABA44CC6336C733891D0D1C7B
Authority key identifier: 0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/3130332e39322e3233322e302f32332d3233203d3e20313336313132.roa
Signing time: Mon 17 Mar 2025 08:00:00 +0000
ROA not before: Mon 17 Mar 2025 07:55:00 +0000
ROA not after: Mon 16 Mar 2026 08:00:00 +0000
asID: 136112
IP address blocks: 103.92.232.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:a4:e9:ef:b6:88:3d:4a:ba:44:cc:63:36:c7:33:89:1d:0d:1c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0FAFA39AA3875A4CF63BCF7E873087927B499D2F
Validity
Not Before: Mar 17 07:55:00 2025 GMT
Not After : Mar 16 08:00:00 2026 GMT
Subject: CN=4987A8751EAE66C3C2BB5793D341BBCA95FFB45B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:98:de:ad:65:57:65:5e:20:44:1d:36:a8:6e:
c1:01:eb:62:f8:9f:27:4c:e2:e6:79:91:0e:d0:b5:
ae:c8:6a:a2:d7:8f:ac:11:fa:27:2d:20:6c:32:a8:
44:25:1f:4a:9e:59:26:49:0d:5f:bd:a7:14:32:96:
9b:6d:4f:d3:b1:74:20:05:88:ea:24:8e:db:3b:35:
03:ef:cf:0c:8a:9a:57:c8:fd:85:23:9b:7b:f6:08:
56:48:f6:26:35:2b:29:e6:19:c5:09:44:a7:21:3a:
86:79:2b:4e:ad:c8:57:f0:c2:68:5a:60:ee:56:85:
ca:04:5a:53:c4:a7:d4:ee:07:95:97:35:22:c3:29:
0e:1a:f7:2a:70:c8:cd:e4:00:f6:f1:5e:96:3e:f0:
f3:58:3f:72:62:3a:a9:b5:b2:00:73:60:bd:74:d8:
89:23:74:d5:69:6c:f4:a1:41:ca:b9:3d:b5:a2:7e:
e1:60:04:de:78:98:eb:ce:6d:d5:6a:ed:a6:ff:89:
4a:c9:c5:2b:34:aa:c4:5f:79:8c:d0:5f:c0:ac:ce:
c3:d7:31:44:54:2b:bf:11:a7:fe:67:97:3b:68:2c:
00:87:ac:b0:59:20:c4:69:77:f5:76:1d:7f:86:b2:
d7:bd:4c:38:2b:b1:64:29:9e:3a:f2:78:4c:5e:bc:
38:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:87:A8:75:1E:AE:66:C3:C2:BB:57:93:D3:41:BB:CA:95:FF:B4:5B
X509v3 Authority Key Identifier:
keyid:0F:AF:A3:9A:A3:87:5A:4C:F6:3B:CF:7E:87:30:87:92:7B:49:9D:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FAFA39AA3875A4CF63BCF7E873087927B499D2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/3130332e39322e3233322e302f32332d3233203d3e20313336313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.92.232.0/23
Signature Algorithm: sha256WithRSAEncryption
98:3a:15:5a:4e:a3:74:49:4b:6d:38:8e:dc:e5:47:18:54:f6:
62:f0:46:0d:ff:5f:6f:da:9e:f2:9d:32:e3:dd:6f:47:6f:88:
9e:ba:d9:71:f7:70:58:76:b3:e8:64:61:bf:b1:92:da:0f:c2:
bb:27:6b:87:b6:e2:e8:21:82:62:cc:7e:16:3b:17:ff:af:dc:
18:87:51:10:b6:8c:19:96:39:b2:90:1f:2d:06:ba:4b:e6:b6:
91:93:84:fc:99:29:00:c3:f6:86:11:88:af:2e:49:5e:6d:9e:
20:bd:05:9f:b5:21:9d:1b:21:bb:c6:80:46:f5:14:35:25:d4:
18:54:62:44:6a:64:06:5b:6c:f3:35:f0:1c:cb:a5:a8:a2:6f:
2d:49:9d:1e:71:06:47:61:cd:bc:17:96:4b:e0:e2:ee:08:25:
ba:ad:eb:8e:91:2e:b3:4d:8b:6d:3b:79:bd:a4:32:d5:a4:4b:
b6:b7:55:7f:a0:b9:1a:02:ca:9f:6f:b2:e0:ae:73:41:07:89:
7c:78:dc:1a:36:6b:75:86:0d:cf:98:64:39:13:a1:87:7c:bc:
f1:db:d3:ff:41:b6:de:52:40:84:fd:2c:a1:bf:a6:ce:da:52:
25:92:19:08:0d:13:6e:27:0a:e6:79:fa:a9:c5:18:65:a1:0c:
dd:9e:62:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:34:17 2025 by rpki-client