Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa
File: 3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa (raw, json)
Hash identifier: bcKNAldjHqBfsv/Q+Ly6D1o3ohbtzg70IudkGUDipiI=
Subject key identifier: FE:AD:18:AA:95:28:12:37:7B:7B:3D:FB:C1:CA:87:3B:69:8A:BE:5D
Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6
Certificate serial: 0F21CC9E56CAFED8ED90A4056A2CE4F21ECE2CD7
Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa
Signing time: Tue 24 Sep 2024 17:12:53 +0000
ROA not before: Tue 24 Sep 2024 17:07:53 +0000
ROA not after: Tue 23 Sep 2025 17:12:53 +0000
asID: 133354
IP address blocks: 103.217.172.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:21:cc:9e:56:ca:fe:d8:ed:90:a4:05:6a:2c:e4:f2:1e:ce:2c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6
Validity
Not Before: Sep 24 17:07:53 2024 GMT
Not After : Sep 23 17:12:53 2025 GMT
Subject: CN=FEAD18AA952812377B7B3DFBC1CA873B698ABE5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:c2:f6:98:3e:e8:33:28:a7:4a:f6:2a:07:
44:a9:4a:c0:db:95:4b:a9:5c:db:80:1b:94:e7:75:
1b:28:77:02:2c:51:c5:42:a9:06:b5:f4:e7:d5:c5:
29:10:3c:ec:c4:0d:2b:c2:05:23:3f:80:9c:30:60:
2c:7f:e0:41:f1:a7:a3:27:c8:52:11:18:a5:d7:c5:
c6:e4:48:5f:e1:d2:02:9c:53:5c:6f:99:67:2f:a9:
cc:01:f2:25:e8:86:7f:43:db:95:ff:d4:43:de:eb:
6d:ac:20:cf:83:06:48:61:52:b2:39:11:79:9c:9e:
1f:8e:06:1e:ce:96:6b:a7:ff:c0:db:73:98:ba:32:
fa:9d:88:d4:a8:a4:8d:1b:34:14:24:80:47:39:8b:
5f:60:ca:61:5f:53:75:78:05:75:0f:89:2e:fb:e7:
37:6a:08:eb:e3:77:ec:1f:e6:dc:3f:b1:63:5a:e5:
4c:91:b0:0b:64:b4:dd:e7:a6:d9:21:48:74:b7:bb:
9a:cd:ae:88:3c:f9:65:fb:d3:6e:75:fa:50:6d:89:
8a:2f:51:aa:b2:ef:e7:de:44:6f:65:ad:40:f8:21:
b9:57:78:c7:d5:47:97:81:8f:b5:11:ce:ed:0a:2d:
4b:7b:02:44:b9:cc:ae:ad:c1:3e:e8:6b:c5:40:d1:
1d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AD:18:AA:95:28:12:37:7B:7B:3D:FB:C1:CA:87:3B:69:8A:BE:5D
X509v3 Authority Key Identifier:
keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.217.172.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:10:d5:78:65:7d:e0:b9:bb:1e:45:29:9e:ed:d5:50:ad:38:
f7:c2:79:c1:08:ea:b7:f0:90:7b:48:ca:47:cf:1c:ab:b0:df:
aa:98:44:cd:be:b2:b4:04:7c:14:cd:e3:e1:37:11:bb:44:89:
be:f2:ee:a9:61:ba:fc:7b:35:81:f3:f8:03:03:6d:50:12:d5:
cd:d9:35:94:d2:1a:66:05:61:0e:67:fd:64:1f:9d:7e:d3:71:
bd:2c:98:88:3d:e8:7a:1f:b1:3c:2e:45:b9:f7:fe:7a:81:52:
64:13:51:db:01:75:5b:be:2b:48:a0:0a:b4:a2:3f:3b:5e:34:
8c:5f:cf:fc:2f:0e:66:1c:a4:1a:26:f9:49:86:9d:08:4c:5c:
c8:2d:63:2b:b1:4d:6b:29:1c:00:70:f6:68:99:21:c7:b3:1b:
c8:7b:a9:f3:38:e1:8b:ae:3e:59:a8:13:f2:dc:bc:8b:e8:d4:
4e:5f:40:ef:2f:a5:3d:88:c0:a0:d9:4b:4c:50:2a:0c:07:5c:
e4:c0:04:e1:be:ef:f8:db:92:fe:90:1a:aa:d3:fa:60:05:a3:
85:ef:67:05:ee:a7:00:f4:b9:57:8d:0e:1f:7d:1f:78:cf:51:
3e:fc:4b:dc:ef:d5:fd:a2:13:15:47:50:59:3b:3a:d9:e4:24:
9b:69:fb:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:36 2025 by rpki-client