Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa
File: 3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa (raw, json)
Hash identifier: mcyagvywDhFYxC9mjPanY2s5lpKa+0hAXlf4jFVn9eM=
Subject key identifier: 85:51:27:90:EA:07:F3:87:AA:87:03:C0:08:F7:3A:4A:C3:9A:5E:CE
Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8
Certificate serial: 7E9AE00B4E37DC7D58C5CD7CBA89FA7722A6459D
Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa
Signing time: Fri 21 Jun 2024 17:00:01 +0000
ROA not before: Fri 21 Jun 2024 16:55:01 +0000
ROA not after: Fri 20 Jun 2025 17:00:01 +0000
asID: 147124
IP address blocks: 103.175.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:9a:e0:0b:4e:37:dc:7d:58:c5:cd:7c:ba:89:fa:77:22:a6:45:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8
Validity
Not Before: Jun 21 16:55:01 2024 GMT
Not After : Jun 20 17:00:01 2025 GMT
Subject: CN=85512790EA07F387AA8703C008F73A4AC39A5ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:22:5f:d7:ed:f9:f9:b0:d2:48:ac:99:13:88:
de:a3:b2:77:3e:7a:80:cf:76:82:ae:8b:61:cf:65:
e7:01:45:4f:b2:dd:02:1d:09:24:85:48:70:63:1a:
0b:40:ee:25:de:d0:bf:d4:ae:06:9f:57:e5:cd:bb:
39:52:cd:d2:86:30:e9:fb:ac:62:6a:23:1b:48:1d:
18:26:16:cf:64:5c:12:11:0d:b2:3b:1a:a9:ea:53:
6d:df:f4:fd:c5:25:dc:36:5f:a5:d1:86:e1:a7:f1:
e1:1b:24:dc:0b:1d:16:56:64:40:2c:a2:22:c2:96:
0a:bd:9f:b7:a8:1e:09:50:87:82:7a:4b:d0:f2:06:
7a:4b:ca:cc:bd:c0:7a:2b:87:b1:61:06:d3:40:8d:
21:9a:f1:55:d1:6a:c0:a9:95:b9:78:ac:03:c2:70:
11:f8:5b:45:99:a2:d7:43:6b:53:93:a7:34:86:cd:
c3:71:41:54:19:c6:38:4d:37:04:3b:9a:ae:52:a3:
f7:15:a9:bd:25:7c:cc:29:94:2f:8d:d0:ac:47:b6:
d4:8b:19:88:b1:7a:f0:63:c5:24:30:b7:b8:4a:7b:
a0:96:83:79:62:87:d5:0b:ef:74:67:75:3b:e6:4c:
9e:99:e8:fd:52:45:08:0d:64:60:81:bf:d0:8c:af:
35:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:51:27:90:EA:07:F3:87:AA:87:03:C0:08:F7:3A:4A:C3:9A:5E:CE
X509v3 Authority Key Identifier:
keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.207.0/24
Signature Algorithm: sha256WithRSAEncryption
79:08:fe:4c:8f:d6:ff:07:3b:ce:10:69:a5:54:46:1a:62:02:
f7:fb:cf:4a:81:43:11:e4:b5:93:ed:7b:0a:52:ea:93:e1:8c:
6f:91:d6:45:0e:ae:85:d0:03:69:b5:1d:0a:c9:e4:b1:12:dc:
38:16:14:be:3e:93:f3:34:fd:94:72:dd:44:60:72:13:64:0e:
22:67:2f:b8:db:02:e1:4a:5a:d4:a9:96:42:3a:7a:31:60:23:
6d:03:2c:79:0b:11:2d:f1:7c:b3:b4:f9:92:56:cb:ce:b4:66:
51:99:a5:ee:cf:8f:b6:54:21:bf:eb:75:06:09:ee:0f:6d:0d:
95:08:b6:b7:2b:80:97:73:eb:aa:c8:fe:fa:95:cf:f4:fc:4c:
cb:7c:aa:09:70:07:db:db:ef:72:6b:8c:b1:db:34:54:22:79:
1c:0f:f0:a5:dc:bf:01:e7:20:a4:13:1a:aa:0c:60:bc:6b:24:
5a:fd:dc:bf:36:95:24:da:87:87:51:c7:68:c3:27:7d:89:26:
e0:7c:4a:a8:1e:43:db:aa:e5:16:46:53:8f:d1:8f:b1:f0:21:
61:91:cd:0f:db:25:45:84:83:e6:dd:db:ca:ae:6a:1e:03:72:
53:92:67:7a:37:51:46:d9:1b:b2:81:3d:38:9b:08:23:6f:55:
01:33:c4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:51:59 2025 by rpki-client