Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa
File: 3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa (raw, json)
Hash identifier: DVIrghrEW7VwPIX0cx9PZe/9iJL/OmwC/t6EzXjRAD8=
Subject key identifier: 82:33:9C:98:64:74:CE:5E:6E:1B:03:64:C9:0D:9B:C5:4D:51:D0:2D
Certificate issuer: /CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC
Certificate serial: 3CEC90A5091326CFF33F43F8ADE439BDA8AE874C
Authority key identifier: 2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa
Signing time: Sun 27 Oct 2024 04:00:01 +0000
ROA not before: Sun 27 Oct 2024 03:55:01 +0000
ROA not after: Sun 26 Oct 2025 04:00:01 +0000
asID: 142381
IP address blocks: 103.172.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:ec:90:a5:09:13:26:cf:f3:3f:43:f8:ad:e4:39:bd:a8:ae:87:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC
Validity
Not Before: Oct 27 03:55:01 2024 GMT
Not After : Oct 26 04:00:01 2025 GMT
Subject: CN=82339C986474CE5E6E1B0364C90D9BC54D51D02D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5c:2f:1d:00:45:79:96:25:79:65:5c:c2:4b:
36:60:75:6d:28:49:63:00:8c:77:db:20:dc:9b:c7:
3e:93:05:1c:49:cf:32:c2:c9:e7:87:df:6d:0b:42:
9d:87:42:0a:4a:ae:c9:87:b5:f1:0b:b9:55:1c:7b:
81:d8:a1:a9:7c:65:2f:f1:66:09:09:66:8f:de:ec:
79:f6:28:3a:49:a2:32:9c:4f:6b:8f:84:5a:08:74:
ad:4e:46:ed:32:78:a0:59:f2:85:8a:fa:36:50:fb:
d6:1a:5d:9d:4c:8b:94:5d:a0:d4:f5:cb:4a:9b:d2:
71:14:82:f4:a1:0f:8b:d0:01:31:ac:3c:b0:1a:97:
c4:a5:cf:71:d8:62:2a:49:52:95:4c:a2:9e:00:b0:
ea:d4:38:aa:27:1c:b1:ea:7d:91:bb:ad:6f:4c:f8:
f3:31:62:0e:ba:0d:d5:56:34:6b:a9:d3:e4:4b:21:
97:3e:f2:12:f4:f7:05:c5:fc:c3:d0:e6:e0:4f:f1:
2d:18:30:f9:55:91:74:22:ca:06:4d:7d:21:07:31:
c4:24:0b:c1:05:2f:d5:7e:06:dd:dd:4f:8b:b1:e8:
a1:12:a3:00:88:52:ea:00:34:95:ad:54:93:5e:c0:
29:3c:8b:81:38:68:ed:25:6f:20:3a:be:57:ed:4d:
73:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:33:9C:98:64:74:CE:5E:6E:1B:03:64:C9:0D:9B:C5:4D:51:D0:2D
X509v3 Authority Key Identifier:
keyid:2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.17.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:39:86:3f:99:78:25:c4:28:c4:2f:70:c6:a8:54:94:50:bd:
e3:cd:0e:59:4d:fe:f4:c4:36:58:70:df:5e:9d:4d:71:51:47:
4e:6e:53:c2:30:c9:0d:0e:71:95:f7:d1:a0:5e:87:c4:0d:2d:
d6:5c:6e:3b:02:41:76:10:17:5e:9f:c0:ea:ac:92:81:ff:e2:
78:51:ce:c7:db:e2:ec:ce:e3:80:e3:4b:88:8b:32:a0:e5:c5:
6b:be:99:75:65:c7:36:66:96:47:1d:9a:76:f3:32:a1:29:fb:
c8:18:5f:b5:c0:dc:f1:f0:86:31:7e:c9:a5:42:35:44:cb:79:
d0:fa:98:60:68:55:45:21:ac:83:06:49:b5:1d:33:90:3e:87:
69:f2:87:9d:ec:da:d6:9e:74:fd:e2:d4:42:b0:2f:d6:0c:87:
ff:40:2b:ef:b5:08:25:4e:31:4a:d9:da:51:37:52:8b:df:85:
ed:af:72:5e:13:32:f1:19:fb:cb:88:63:d3:95:d7:44:34:1b:
6e:d4:b5:27:d6:b1:c7:a5:41:5e:c8:eb:a7:07:60:ef:3f:9f:
ba:2d:3c:4e:e7:ec:9f:dd:aa:20:4e:53:2f:0c:c2:56:18:a8:
27:1f:f4:7b:e2:32:2a:fb:94:07:d7:c1:06:da:3b:0d:ab:b6:
2e:d0:fd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:54:34 2025 by rpki-client