Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa
File: 3130332e31342e37352e302f32342d3234203d3e20313334363332.roa (raw, json)
Hash identifier: d03ba4w3/cMHa6YrFwbQZXYz0UgEChS2sqo8pZVU9h0=
Subject key identifier: 7A:E6:8B:44:C3:2D:D3:DE:AE:2C:F3:DA:E6:8F:78:42:3D:35:9C:31
Certificate issuer: /CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731
Certificate serial: 4DA77EAB1D5978FCD6E8BD1C91DFCC87AE83F1DB
Authority key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa
Signing time: Fri 01 Nov 2024 03:42:05 +0000
ROA not before: Fri 01 Nov 2024 03:37:05 +0000
ROA not after: Fri 31 Oct 2025 03:42:05 +0000
asID: 134632
IP address blocks: 103.14.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:a7:7e:ab:1d:59:78:fc:d6:e8:bd:1c:91:df:cc:87:ae:83:f1:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731
Validity
Not Before: Nov 1 03:37:05 2024 GMT
Not After : Oct 31 03:42:05 2025 GMT
Subject: CN=7AE68B44C32DD3DEAE2CF3DAE68F78423D359C31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cd:c7:d9:69:30:d2:77:1b:fc:9c:ba:94:4d:
d3:7e:63:06:a9:d2:32:ef:49:51:04:29:0f:22:5c:
df:f9:45:60:ba:a1:53:c2:a8:c9:85:58:da:63:0b:
ee:15:70:32:ea:f1:38:2c:0c:3f:02:50:9f:64:a8:
93:64:7b:f0:fb:2f:a4:d1:18:ec:87:02:da:5f:d6:
7a:5c:59:9a:1e:62:e0:0b:a8:38:f5:e3:a9:6b:6b:
df:17:59:1f:74:5c:7f:c4:f1:a1:dc:3e:a3:17:76:
c4:1f:60:cd:6d:56:af:22:5e:5d:aa:8d:4f:86:51:
ea:b0:c2:5e:43:63:35:96:c0:07:cb:bf:64:ea:36:
be:0f:ea:66:8e:c2:5b:d7:7c:de:50:92:26:30:7f:
60:b2:d7:70:08:5c:60:a7:7c:78:c1:34:84:86:14:
8d:47:f0:89:fd:d1:50:ed:7b:71:d7:b6:6f:73:15:
2f:40:05:d7:9e:4f:f3:7f:db:70:cf:8b:a8:41:8e:
7a:b3:33:ff:fa:a2:bb:d5:c3:e8:6a:e1:97:e6:6d:
68:4e:5a:b1:13:98:31:ad:71:c2:cb:06:51:cf:fb:
f7:3e:cb:c0:26:b7:e0:86:3c:d4:6a:02:b3:3b:38:
2a:f8:7e:a1:28:41:ac:5b:7e:aa:ed:cf:4b:66:a1:
7e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E6:8B:44:C3:2D:D3:DE:AE:2C:F3:DA:E6:8F:78:42:3D:35:9C:31
X509v3 Authority Key Identifier:
keyid:1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/3130332e31342e37352e302f32342d3234203d3e20313334363332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.14.75.0/24
Signature Algorithm: sha256WithRSAEncryption
96:9e:bf:89:89:88:7a:0f:8a:f1:e6:c1:23:77:e5:34:16:71:
a8:bf:c1:36:30:b1:2c:df:6a:fb:a0:dd:48:71:09:c9:58:c3:
c1:79:9a:48:d3:fb:70:14:a0:5d:a3:ba:ae:99:b5:91:fd:e0:
9a:63:9e:c0:88:4c:81:21:8b:a5:7a:a1:d2:64:65:23:fc:a9:
1f:15:de:7d:00:58:d9:6b:93:0a:a1:c2:6b:e9:d6:d9:0b:fc:
f1:21:5b:43:85:29:7b:56:f5:c4:af:ed:46:03:7f:ea:65:cd:
30:23:b4:f8:5f:d6:2e:41:3c:0c:43:22:12:98:23:bf:c6:b5:
6e:eb:8b:0a:02:9c:ce:07:8f:f9:ff:c2:32:bb:1e:c4:c3:73:
99:e2:a3:c7:d9:b7:87:27:cd:e4:d4:10:2e:3f:f0:e9:b7:48:
5d:07:ac:fb:be:5e:b4:7e:27:90:45:f9:ba:bb:6f:01:6b:ea:
7f:5b:5e:4d:ce:db:91:91:51:60:54:18:b9:ee:4f:71:c8:71:
28:d6:ea:e4:df:9b:5a:21:28:22:80:88:cf:c8:39:35:69:88:
45:0b:cc:5c:c0:43:88:34:70:17:06:78:21:4c:95:a0:cf:2d:
22:cd:cf:84:e7:67:31:1e:0a:88:d3:9c:3c:53:f7:e0:96:a3:
35:36:65:b5
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUTad+qx1ZePzW6L0ckd/Mh66D8dswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5
MjdFQzczMTAeFw0yNDExMDEwMzM3MDVaFw0yNTEwMzEwMzQyMDVaMDMxMTAvBgNV
BAMTKDdBRTY4QjQ0QzMyREQzREVBRTJDRjNEQUU2OEY3ODQyM0QzNTlDMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzcfZaTDSdxv8nLqUTdN+Ywap
0jLvSVEEKQ8iXN/5RWC6oVPCqMmFWNpjC+4VcDLq8TgsDD8CUJ9kqJNke/D7L6TR
GOyHAtpf1npcWZoeYuALqDj146lra98XWR90XH/E8aHcPqMXdsQfYM1tVq8iXl2q
jU+GUeqwwl5DYzWWwAfLv2TqNr4P6maOwlvXfN5QkiYwf2Cy13AIXGCnfHjBNISG
FI1H8In90VDte3HXtm9zFS9ABdeeT/N/23DPi6hBjnqzM//6orvVw+hq4ZfmbWhO
WrETmDGtccLLBlHP+/c+y8Amt+CGPNRqArM7OCr4fqEoQaxbfqrtz0tmoX4NAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUeuaLRMMt096uLPPa5o94Qj01nDEwHwYDVR0j
BBgwFoAUHupxtMcKR9U74yBP4sSM75J+xzEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
MDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMC8xRUVBNzFCNEM3
MEE0N0Q1M0JFMzIwNEZFMkM0OENFRjkyN0VDNzMxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMUVFQTcxQjRDNzBBNDdENTNCRTMyMDRGRTJDNDhDRUY5MjdF
QzczMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNlLWY0NGEtNGNmYy1i
ZjU2LWQ5OWEwOTJkNzMxNC8wLzMxMzAzMzJlMzEzNDJlMzczNTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzMzNDM2MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcOSzANBgkqhkiG
9w0BAQsFAAOCAQEAlp6/iYmIeg+K8ebBI3flNBZxqL/BNjCxLN9q+6DdSHEJyVjD
wXmaSNP7cBSgXaO6rpm1kf3gmmOewIhMgSGLpXqh0mRlI/ypHxXefQBY2WuTCqHC
a+nW2Qv88SFbQ4Upe1b1xK/tRgN/6mXNMCO0+F/WLkE8DEMiEpgjv8a1buuLCgKc
zgeP+f/CMrsexMNzmeKjx9m3hyfN5NQQLj/w6bdIXQes+75etH4nkEX5urtvAWvq
f1teTc7bkZFRYFQYue5PcchxKNbq5N+bWiEoIoCIz8g5NWmIRQvMXMBDiDRwFwZ4
IUyVoM8tIs3PhOdnMR4KiNOcPFP34JajNTZltQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:39:03 2025 by rpki-client