Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa
File: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (raw, json)
Hash identifier: yblUfrf5SIh1ilGvgnHlCA4piWC1NnXyvHb/63k5VZg=
Subject key identifier: B8:A0:C1:93:60:FA:58:4B:DD:43:59:DD:7D:91:4C:8D:F7:F4:44:6B
Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0
Certificate serial: 69E0CDD2EE448A9F9015239534FCF0016AA2D7E5
Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa
Signing time: Mon 01 Jul 2024 01:02:30 +0000
ROA not before: Mon 01 Jul 2024 00:57:30 +0000
ROA not after: Mon 30 Jun 2025 01:02:30 +0000
asID: 133811
IP address blocks: 103.52.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:e0:cd:d2:ee:44:8a:9f:90:15:23:95:34:fc:f0:01:6a:a2:d7:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0
Validity
Not Before: Jul 1 00:57:30 2024 GMT
Not After : Jun 30 01:02:30 2025 GMT
Subject: CN=B8A0C19360FA584BDD4359DD7D914C8DF7F4446B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:12:e1:af:94:e0:4b:ef:3d:5e:a5:a5:35:11:
03:8a:0c:60:49:2d:f0:34:41:86:2e:99:e4:52:cb:
ad:29:14:1f:22:4d:90:ab:42:94:60:95:05:b1:30:
ec:e2:8c:36:b3:d6:e5:b5:76:df:8a:3f:dd:e8:90:
19:41:c6:2e:48:56:a6:33:41:3b:e9:36:3e:f8:05:
5b:4e:35:fd:97:0c:3a:2d:1f:74:b0:37:d2:d5:c8:
63:89:d9:e4:b1:f6:16:1b:aa:b5:c9:95:55:e5:0d:
18:83:74:fb:bd:c9:89:5f:e2:36:cf:0a:4c:06:27:
fc:a9:2a:1d:1a:23:27:ac:5c:1a:16:8e:7e:0d:b1:
76:d0:a5:95:9f:2c:08:c3:2c:33:36:71:6f:36:80:
63:69:f0:6b:5e:94:3f:fa:1e:88:ba:e4:e6:2a:48:
82:12:a6:10:f0:08:de:b3:c5:2c:62:75:78:a3:99:
b6:9f:5c:c2:cb:0c:c2:e8:f2:2f:44:6a:9b:40:77:
ae:0a:bc:e6:e8:ed:73:8f:50:07:bd:a9:e7:c9:d1:
d9:13:b0:af:10:3f:01:62:fc:37:37:39:db:16:12:
08:b2:c6:8f:eb:b9:16:27:7e:d4:e8:c3:6b:9d:4e:
ef:44:a3:7c:df:c6:d9:38:4b:ae:d0:db:5c:7e:77:
83:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A0:C1:93:60:FA:58:4B:DD:43:59:DD:7D:91:4C:8D:F7:F4:44:6B
X509v3 Authority Key Identifier:
keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.52.17.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8e:01:fe:a9:4f:d5:ea:e8:08:b4:3f:15:39:ba:e8:56:6b:
0b:75:f4:78:77:50:8b:58:8b:da:2e:16:7f:3a:95:a3:37:01:
2d:dc:0a:41:c4:c5:0e:6c:cc:95:70:f5:6b:09:3d:c1:8f:0f:
82:1c:d1:47:aa:ad:6f:6b:cf:b4:0e:c7:e1:0d:ed:f1:b4:d3:
54:a5:f1:45:d8:e7:d1:0d:3d:8d:a3:f0:6d:ae:43:8d:3c:0b:
e9:e2:5c:16:2a:37:d4:ea:65:02:39:b0:ec:65:1b:cb:07:4c:
c4:17:65:e5:a0:94:e7:1d:35:1b:55:dc:4d:ff:dc:92:ff:7f:
27:23:00:fb:19:e0:35:ed:b0:14:8e:8d:ec:80:c7:01:2c:15:
14:6d:bd:af:1d:32:7b:52:6b:90:e9:36:23:3a:94:44:59:24:
6f:1a:cf:50:03:74:f3:9d:a9:45:b6:d7:73:dd:95:f5:c9:54:
87:0a:fe:bb:0c:d9:1e:b1:01:56:e6:af:8b:3e:c4:48:2a:c1:
49:d4:95:88:c7:0b:ee:8e:30:62:85:69:8b:77:f6:0d:f3:67:
a7:fc:87:fa:54:e1:c3:db:32:64:4b:ca:ed:d0:89:05:cc:77:
49:f7:61:ea:35:48:df:7c:69:63:38:05:59:5e:af:22:63:fe:
09:2c:d9:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:44 2025 by rpki-client