Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa
File: 3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa (raw, json)
Hash identifier: sLu7RqiRGzYnQBrSMZHIelJFjQSR1Hs3pZgdklGokNI=
Subject key identifier: 68:6B:3C:AD:97:4A:01:C3:4D:EF:09:FE:F9:54:BA:E7:C2:B9:4C:DA
Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D
Certificate serial: 723E5F2CCF8508D385759BD4EE9274161C5EBFEA
Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa
Signing time: Mon 01 Jul 2024 01:05:38 +0000
ROA not before: Mon 01 Jul 2024 01:00:38 +0000
ROA not after: Mon 30 Jun 2025 01:05:38 +0000
asID: 63497
IP address blocks: 103.134.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:3e:5f:2c:cf:85:08:d3:85:75:9b:d4:ee:92:74:16:1c:5e:bf:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D
Validity
Not Before: Jul 1 01:00:38 2024 GMT
Not After : Jun 30 01:05:38 2025 GMT
Subject: CN=686B3CAD974A01C34DEF09FEF954BAE7C2B94CDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:95:b2:d6:0b:c8:cf:45:c1:66:a8:57:52:dc:
16:ef:96:c8:41:b6:74:f4:9c:1c:27:f1:16:4c:42:
e2:22:41:34:9e:d5:1c:5d:4a:62:d2:a0:49:2d:2d:
a3:89:7f:1f:87:7e:83:81:55:b5:c9:0d:ff:d2:de:
05:ec:ae:47:50:65:5d:70:67:74:9b:aa:14:63:71:
3b:0f:36:56:d2:c1:a7:55:8b:c3:11:ba:ed:2f:09:
d8:06:05:ed:51:b4:37:85:20:ed:4f:84:78:67:5b:
eb:00:6f:da:d5:e0:65:e4:ca:cb:8f:d4:47:33:80:
cf:06:2a:bc:f3:c5:7b:3b:d4:95:f2:e5:b0:0c:ed:
51:df:30:14:ad:02:82:29:b6:2a:e7:ef:96:00:2e:
7a:5b:8c:20:2c:b3:ff:4c:84:52:ec:df:96:b1:7c:
37:da:2d:8f:8a:f1:73:7f:d4:98:d7:8b:68:20:20:
20:79:77:21:16:86:ba:3e:cb:32:b7:44:18:d3:c5:
78:df:58:b1:59:1d:e3:7f:13:c6:6a:c4:8b:c4:4f:
59:93:83:6f:41:f5:74:94:0c:09:e3:3d:ef:9d:9d:
b7:fc:64:e4:d7:4e:92:8b:fa:4a:7d:3b:1e:2b:8b:
ac:c6:bb:cd:a2:0e:a2:ac:1b:97:34:4c:a1:82:3f:
83:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6B:3C:AD:97:4A:01:C3:4D:EF:09:FE:F9:54:BA:E7:C2:B9:4C:DA
X509v3 Authority Key Identifier:
keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.104.0/22
Signature Algorithm: sha256WithRSAEncryption
48:24:ba:df:48:4f:28:d4:ca:cc:13:79:c1:0c:c6:bb:d2:d7:
77:46:57:11:90:d0:e2:a4:7c:03:e0:63:af:68:65:d6:3d:49:
98:78:25:ff:2f:f6:59:10:22:b8:e1:8d:bf:72:84:c5:01:fb:
59:16:f6:a8:c0:93:73:63:6a:6d:3a:94:e2:89:3c:45:ae:bd:
e4:7a:16:3a:fe:48:db:6f:46:5b:67:8f:39:b0:4c:7e:5b:09:
c1:b0:a4:54:b0:07:ad:d6:e1:30:eb:94:f7:bc:ed:d6:97:a6:
62:f3:89:89:d1:1e:b2:37:0c:12:9d:7c:b9:c7:27:82:de:b1:
8c:7d:fc:68:0d:37:4a:d3:f1:c9:73:aa:03:ec:4a:c6:b9:a0:
d9:54:be:5b:0d:00:ab:9f:06:cc:61:6a:06:a4:16:90:ff:91:
17:9a:c1:21:1e:a5:63:41:20:4c:82:74:18:41:fa:d7:f6:74:
c4:7b:75:f0:82:e8:91:5e:7a:54:49:fd:9d:eb:eb:db:b3:c4:
c6:01:eb:b8:22:f3:d4:21:35:89:87:ab:d0:19:c7:fc:c5:e0:
d9:97:c6:f9:e2:f1:4d:b7:19:8a:b6:cb:65:9c:af:98:55:b4:
32:ae:c3:c5:d3:7c:82:fa:78:73:31:a0:ff:dc:d7:2e:c9:7e:
c5:8e:5f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:57:43 2025 by rpki-client