Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa
File: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (raw, json)
Hash identifier: XyH2IkcIEuDvVJJGBcIvIdi7tMCNJuIdQc60W8BGrOU=
Subject key identifier: 7E:5E:F6:90:7B:EE:80:82:33:AE:2D:DF:8B:2C:D9:3D:0B:48:5B:4A
Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072
Certificate serial: 0B68DC49E857396B83FA9105D4958D027966B01B
Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa
Signing time: Wed 18 Sep 2024 13:00:00 +0000
ROA not before: Wed 18 Sep 2024 12:55:00 +0000
ROA not after: Wed 17 Sep 2025 13:00:00 +0000
asID: 141081
IP address blocks: 103.156.70.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:68:dc:49:e8:57:39:6b:83:fa:91:05:d4:95:8d:02:79:66:b0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072
Validity
Not Before: Sep 18 12:55:00 2024 GMT
Not After : Sep 17 13:00:00 2025 GMT
Subject: CN=7E5EF6907BEE808233AE2DDF8B2CD93D0B485B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cb:dd:cb:9b:64:32:66:ad:f9:bc:8b:5b:e1:
06:eb:c6:46:1e:a3:9e:62:01:88:2c:d4:38:bc:ee:
4c:61:af:81:e6:28:0b:fc:88:24:67:bd:24:40:f2:
61:4f:ba:22:6a:40:68:5d:19:39:5d:db:92:74:ff:
ec:99:ae:a3:bd:0e:8b:65:8d:90:67:e6:a5:bb:7f:
aa:85:5c:d8:1b:11:e7:1e:34:46:ea:30:b6:f4:e4:
77:2b:ab:b8:f5:54:0f:46:eb:7b:de:d5:da:25:11:
7f:86:1d:3f:a7:3e:8d:13:51:56:67:b3:da:f3:e0:
4c:60:f3:7e:9a:de:87:13:26:38:9b:39:c7:0b:cc:
74:2b:5a:71:2e:e5:02:cc:1e:09:b4:8f:a5:50:70:
92:a8:13:54:05:f8:b2:8e:27:36:e1:80:63:45:1e:
35:a0:0b:1d:bf:63:40:4a:9c:d3:c3:85:1a:d5:5c:
ff:a1:13:b7:3c:4a:1b:36:54:77:94:4f:76:dd:da:
d4:cc:8e:e2:b5:b7:e6:93:ef:ee:6f:8f:25:d7:28:
7a:71:ca:cb:a1:b8:1a:fc:f0:6d:cc:d2:d8:8a:f7:
86:0c:f4:e0:39:53:18:cb:2b:f3:28:9b:16:a9:e9:
15:99:69:46:66:b3:11:3e:55:53:33:d8:05:b4:ed:
6a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5E:F6:90:7B:EE:80:82:33:AE:2D:DF:8B:2C:D9:3D:0B:48:5B:4A
X509v3 Authority Key Identifier:
keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.70.0/23
Signature Algorithm: sha256WithRSAEncryption
65:d8:b1:a0:77:52:52:e0:45:ab:37:76:28:e5:71:69:c1:1d:
a0:75:aa:f4:a2:6a:88:c9:71:be:8f:f2:a3:c2:de:f7:8b:88:
73:00:44:f9:f0:fb:66:c2:03:34:57:f6:5a:be:7c:b8:40:47:
42:25:1e:b4:31:3f:7d:71:0c:63:b0:db:72:cd:9d:67:41:33:
6f:29:0e:3f:28:ef:eb:67:be:c0:fc:40:c6:dd:d1:e6:28:38:
9e:fc:2e:59:4c:6f:c7:d2:43:89:63:39:53:2a:e4:3c:ed:3b:
db:0a:93:04:5c:0d:ee:c0:6a:f7:56:a7:d4:ac:d3:3e:30:c4:
b7:4d:70:27:79:e7:cd:ba:cf:54:70:3d:cd:c2:99:6d:08:4d:
e2:f5:00:6d:3a:1d:08:ca:44:04:e8:e9:68:7e:b8:3b:d5:7d:
7b:42:bc:b4:62:1e:a5:80:80:73:99:9c:0e:ec:f2:32:0c:85:
56:dd:56:7a:a3:f2:31:70:db:8c:c8:98:7b:ae:5a:15:3c:2f:
24:67:fc:c2:e8:ef:55:83:11:a7:be:ee:ca:64:bd:af:1c:b1:
d0:0b:06:71:2f:bd:17:ad:02:39:02:13:38:7e:17:7f:85:41:
41:6a:d9:0e:68:b8:7f:a0:99:09:22:dd:b1:1d:32:56:33:64:
5b:b2:74:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:33:14 2025 by rpki-client