Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/3130332e3134382e3130302e302f32332d3234203d3e20313339393838.roa
File: 3130332e3134382e3130302e302f32332d3234203d3e20313339393838.roa (raw, json)
Hash identifier: lGN1rdaCl5aXrposBbXJyZDSRAHwOJHZSSN67w6M/PQ=
Subject key identifier: 9F:24:0E:A7:64:23:31:96:81:2D:E8:54:14:0F:3B:A2:84:BE:4F:27
Certificate issuer: /CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55
Certificate serial: 490F2991879815C9B787BE84CA4B7FDA1271FEAB
Authority key identifier: 53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/3130332e3134382e3130302e302f32332d3234203d3e20313339393838.roa
Signing time: Tue 13 Aug 2024 09:02:45 +0000
ROA not before: Tue 13 Aug 2024 08:57:45 +0000
ROA not after: Tue 12 Aug 2025 09:02:45 +0000
asID: 139988
IP address blocks: 103.148.100.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:0f:29:91:87:98:15:c9:b7:87:be:84:ca:4b:7f:da:12:71:fe:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55
Validity
Not Before: Aug 13 08:57:45 2024 GMT
Not After : Aug 12 09:02:45 2025 GMT
Subject: CN=9F240EA764233196812DE854140F3BA284BE4F27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5d:51:4d:61:d8:0a:4b:cf:d9:b0:6b:0d:0a:
90:bf:25:b6:41:27:70:11:e4:da:0b:4c:ff:1f:36:
02:54:7c:50:98:28:e9:0b:9f:58:67:34:41:cd:20:
10:64:ba:3d:66:38:35:c1:6c:b4:67:fa:e1:88:fb:
8c:45:05:90:87:29:e6:cc:c8:cf:35:43:af:b7:86:
e3:12:c0:f2:7f:a4:37:79:90:b6:59:50:df:2f:4f:
07:2d:51:f1:39:26:7f:4e:9b:db:14:f5:aa:92:16:
83:81:48:f0:65:32:33:d1:88:27:f5:f4:64:cc:ef:
bf:6c:53:f3:5f:9b:ff:b2:7c:a5:00:da:64:16:e3:
44:a9:53:d8:7b:d2:cc:62:c1:7c:7d:3d:d9:49:b5:
3b:3b:f2:07:8f:aa:9d:f8:30:94:31:b2:9d:ed:c7:
6f:b9:89:19:2c:e5:76:aa:52:bc:70:81:8f:64:34:
ef:cf:1a:a8:49:b2:4b:18:f7:83:3a:60:b8:c4:fd:
2e:e6:30:e2:5b:ad:ad:10:3a:51:87:6e:68:1e:28:
9e:8a:4c:2c:c1:a2:d8:e8:65:a9:40:6b:43:ac:f5:
ff:7d:ef:6b:d4:c9:f9:9d:e9:d0:48:d2:ad:bc:6e:
26:59:f0:f1:68:b5:a8:53:d8:73:a1:c9:6b:48:bc:
5d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:24:0E:A7:64:23:31:96:81:2D:E8:54:14:0F:3B:A2:84:BE:4F:27
X509v3 Authority Key Identifier:
keyid:53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/3130332e3134382e3130302e302f32332d3234203d3e20313339393838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.100.0/23
Signature Algorithm: sha256WithRSAEncryption
62:77:e9:5c:7d:81:8e:4c:d1:ff:39:25:00:5d:69:8f:dc:26:
2e:ae:44:08:2a:1e:d1:ab:3d:1a:59:c3:8c:19:36:2b:62:ac:
27:7d:34:0e:80:76:24:42:74:0e:f7:e3:76:9d:a7:59:d7:42:
6a:d2:d7:34:cf:8c:e4:c4:17:73:04:0b:15:c8:8e:6e:e2:a3:
83:17:d8:06:a6:7f:c8:a2:26:60:2f:e7:8f:bd:9e:e1:19:23:
de:1e:04:69:b9:06:75:c9:aa:49:e2:ee:a3:84:a4:a0:2d:ae:
ad:5a:94:15:8c:17:22:89:37:f0:1a:c7:4c:b9:98:6a:0f:85:
39:1d:9e:e3:e5:6e:f2:08:84:2f:a0:6e:e7:b8:cf:88:04:6d:
c7:51:ba:cd:7f:82:86:a6:db:79:9f:c1:fc:68:d6:a2:ae:34:
41:87:02:a8:76:ff:b3:ae:bc:3a:38:84:64:86:95:b1:23:24:
6f:69:d6:8f:fa:11:66:3e:6a:66:0a:a0:47:2f:b4:68:91:90:
01:1c:27:bb:04:7b:0e:53:d4:4f:5d:ec:64:ff:94:2d:96:76:
e7:14:7c:d0:ad:02:a3:f2:ae:b8:4e:52:c5:81:fa:89:ac:14:
35:22:ce:8b:c6:20:72:78:04:95:10:e2:cf:61:d2:78:3b:fb:
0e:bb:b9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:25:06 2025 by rpki-client