Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230382e302f32342d3234203d3e20313337333331.roa
File: 3130332e3138362e3230382e302f32342d3234203d3e20313337333331.roa (raw, json)
Hash identifier: osK1LH+CWnGRTUqCf4nEoU9W6v8L4uyGyC0Aypk+fxc=
Subject key identifier: 7E:9C:35:17:E4:21:F5:35:76:A8:66:E8:51:00:44:9C:4E:BA:AA:F5
Certificate issuer: /CN=F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64
Certificate serial: 09B3063AA07BD8A31FAF939827F76DE5904729AF
Authority key identifier: F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230382e302f32342d3234203d3e20313337333331.roa
Signing time: Wed 01 May 2024 04:00:00 +0000
ROA not before: Wed 01 May 2024 03:55:00 +0000
ROA not after: Wed 30 Apr 2025 04:00:00 +0000
asID: 137331
IP address blocks: 103.186.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:b3:06:3a:a0:7b:d8:a3:1f:af:93:98:27:f7:6d:e5:90:47:29:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64
Validity
Not Before: May 1 03:55:00 2024 GMT
Not After : Apr 30 04:00:00 2025 GMT
Subject: CN=7E9C3517E421F53576A866E85100449C4EBAAAF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e4:30:25:62:8b:74:6a:c1:65:07:48:c6:bf:
82:12:c0:74:6d:7f:9f:8b:0b:db:07:4e:9c:7a:d6:
18:98:d8:72:a8:ee:98:9c:0c:ac:bf:27:be:1a:b9:
11:d9:40:71:97:14:23:5e:18:36:4e:c0:c9:91:f8:
da:58:3a:ac:7c:c9:61:41:a1:5c:a4:03:9c:48:be:
d9:3b:e4:c4:c3:d6:cd:ea:a1:81:cc:67:24:fe:77:
94:02:23:90:8b:2e:fe:22:a6:42:9b:81:44:a9:0f:
f5:6e:1b:1c:2e:a4:ed:5b:a2:74:1e:af:a0:4c:eb:
39:c4:53:e3:f8:8f:2e:a5:4c:d8:3b:7c:47:83:e7:
ae:cf:95:bc:a4:18:33:2f:7c:ac:e1:2d:c7:59:28:
1a:85:96:a0:d3:66:08:5d:66:02:40:59:ed:2c:81:
10:e6:19:cc:2a:78:13:c8:3d:c7:0a:80:86:5f:34:
a9:68:af:4b:bd:19:62:48:c3:c4:d6:5c:10:8b:30:
bc:97:45:cb:b0:5c:72:a8:47:9f:5c:11:2d:da:7a:
6e:21:99:cc:2f:16:36:fb:b2:c7:91:4b:43:74:47:
a5:21:c3:9a:1d:54:2c:de:c4:64:69:62:0a:7c:a9:
ba:88:a8:28:0d:cf:59:b2:61:e1:b0:b5:1b:d0:8b:
4c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9C:35:17:E4:21:F5:35:76:A8:66:E8:51:00:44:9C:4E:BA:AA:F5
X509v3 Authority Key Identifier:
keyid:F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/3130332e3138362e3230382e302f32342d3234203d3e20313337333331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.208.0/24
Signature Algorithm: sha256WithRSAEncryption
29:ff:89:18:03:b4:b4:eb:c2:dd:6b:54:85:28:68:13:51:e3:
94:30:58:68:03:8f:bf:71:f1:8c:be:52:58:36:8b:dd:c5:8c:
e5:d3:c6:bb:6f:9a:38:bb:15:87:0d:2c:e5:f7:7b:50:04:89:
4e:c4:cb:00:6c:c3:72:87:32:95:03:8b:8a:46:18:80:03:f9:
cb:47:cb:57:80:df:7c:91:d0:42:7b:ab:d8:de:f4:26:5e:62:
ca:e3:5e:6e:d7:16:04:2c:f2:99:a2:50:c8:fb:76:cd:5b:f0:
04:a6:c8:20:98:db:33:7e:0d:b8:cd:90:da:36:ff:89:89:72:
ca:61:2a:5b:f3:6b:06:85:a9:a7:56:c0:3b:00:3c:ff:96:d1:
6f:af:bf:bb:3c:25:6a:7b:61:37:92:7d:58:65:96:9a:b1:fc:
a6:48:bf:f6:3a:ac:a8:7e:09:1b:5f:34:ab:23:a1:7f:f1:9d:
30:80:65:eb:f2:73:d2:28:60:c9:eb:c1:2d:56:1b:18:ba:34:
4f:86:5d:db:f0:1c:29:94:6e:37:6f:a3:77:ee:fe:a8:ab:dd:
42:05:97:ac:fb:8b:dc:a3:01:c9:d2:08:20:c0:dc:98:9b:1d:
d3:1c:c9:84:b7:35:e6:a8:13:ab:0c:ad:0b:67:b7:fa:d3:80:
71:29:9e:d7
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUCbMGOqB72KMfr5OYJ/dt5ZBHKa8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjcwMDdGRkRBNjZBOTlENzU4OERBOTNGRkFGMjZCREU1
N0IzQ0E2NDAeFw0yNDA1MDEwMzU1MDBaFw0yNTA0MzAwNDAwMDBaMDMxMTAvBgNV
BAMTKDdFOUMzNTE3RTQyMUY1MzU3NkE4NjZFODUxMDA0NDlDNEVCQUFBRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC05DAlYot0asFlB0jGv4ISwHRt
f5+LC9sHTpx61hiY2HKo7picDKy/J74auRHZQHGXFCNeGDZOwMmR+NpYOqx8yWFB
oVykA5xIvtk75MTD1s3qoYHMZyT+d5QCI5CLLv4ipkKbgUSpD/VuGxwupO1bonQe
r6BM6znEU+P4jy6lTNg7fEeD567PlbykGDMvfKzhLcdZKBqFlqDTZghdZgJAWe0s
gRDmGcwqeBPIPccKgIZfNKlor0u9GWJIw8TWXBCLMLyXRcuwXHKoR59cES3aem4h
mcwvFjb7sseRS0N0R6Uhw5odVCzexGRpYgp8qbqIqCgNz1myYeGwtRvQi0xBAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUfpw1F+Qh9TV2qGboUQBEnE66qvUwHwYDVR0j
BBgwFoAU9wB//aZqmddYjak/+vJr3lezymQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
OWE5ZTgzNS1mM2ExLTRjMzYtYjQ3ZC02ZjJmNzFlYjhhYTQvMC9GNzAwN0ZGREE2
NkE5OUQ3NTg4REE5M0ZGQUYyNkJERTU3QjNDQTY0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjcwMDdGRkRBNjZBOTlENzU4OERBOTNGRkFGMjZCREU1N0Iz
Q0E2NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTllODM1LWYzYTEtNGMzNi1i
NDdkLTZmMmY3MWViOGFhNC8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnutAwDQYJ
KoZIhvcNAQELBQADggEBACn/iRgDtLTrwt1rVIUoaBNR45QwWGgDj79x8Yy+Ulg2
i93FjOXTxrtvmji7FYcNLOX3e1AEiU7EywBsw3KHMpUDi4pGGIAD+ctHy1eA33yR
0EJ7q9je9CZeYsrjXm7XFgQs8pmiUMj7ds1b8ASmyCCY2zN+DbjNkNo2/4mJcsph
KlvzawaFqadWwDsAPP+W0W+vv7s8JWp7YTeSfVhllpqx/KZIv/Y6rKh+CRtfNKsj
oX/xnTCAZevyc9IoYMnrwS1WGxi6NE+GXdvwHCmUbjdvo3fu/qir3UIFl6z7i9yj
AcnSCCDA3JibHdMcyYS3NeaoE6sMrQtnt/rTgHEpntc=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:26 2025 by rpki-client