Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e203438343635.roa
File: 3130332e3134372e3131342e302f32342d3234203d3e203438343635.roa (raw, json)
Hash identifier: 9CXlJMGB7RbCSbz4yAVHg0gxAoOKIuDCGk9V2ZNRStQ=
Subject key identifier: CE:0D:37:66:E6:AF:F0:87:D6:29:77:EE:47:EC:7C:4B:6E:E0:FC:88
Certificate issuer: /CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74
Certificate serial: 17958245DFFBEB64A53C76E3FB51133CC5ACCE2C
Authority key identifier: CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e203438343635.roa
Signing time: Mon 15 Jul 2024 02:49:13 +0000
ROA not before: Mon 15 Jul 2024 02:44:13 +0000
ROA not after: Mon 14 Jul 2025 02:49:13 +0000
asID: 48465
IP address blocks: 103.147.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:95:82:45:df:fb:eb:64:a5:3c:76:e3:fb:51:13:3c:c5:ac:ce:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74
Validity
Not Before: Jul 15 02:44:13 2024 GMT
Not After : Jul 14 02:49:13 2025 GMT
Subject: CN=CE0D3766E6AFF087D62977EE47EC7C4B6EE0FC88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:07:fc:60:56:7c:e5:71:e6:39:1c:c8:47:0f:
ad:03:d6:59:2f:8d:6e:04:9b:23:04:6d:4e:65:91:
ec:ac:8c:3d:e4:f1:86:4b:3c:7f:ba:db:59:74:25:
62:28:40:36:20:22:89:af:1f:04:e4:10:4f:e5:f3:
36:e5:f6:34:5e:d4:da:4e:6d:e9:27:29:8a:71:2e:
d6:c8:32:34:c6:a1:6c:f2:17:8f:16:8b:16:59:4a:
5b:4a:d9:cb:72:3a:cb:21:f3:35:24:bf:5d:2d:7e:
d8:3b:8c:95:39:cd:7f:6c:87:de:18:e8:1c:98:ad:
a0:88:39:21:62:34:f1:97:fe:dd:2e:de:48:3b:54:
22:cd:fd:a0:30:e0:83:cb:e9:74:0e:fd:39:79:f1:
07:d0:20:04:6e:80:74:88:29:78:60:67:18:54:22:
c6:c9:7c:17:15:a7:12:de:ed:88:4d:be:b4:a8:49:
df:5f:52:89:55:e1:77:68:16:0a:33:f5:8d:a5:86:
7b:fe:e8:6a:e4:2f:06:db:05:0b:74:27:8b:38:95:
b7:ec:51:96:d7:1d:3f:ad:20:7a:90:a0:f1:42:0e:
28:27:30:c2:37:80:d6:a6:1a:97:ee:63:04:d3:ec:
51:08:f9:61:85:1d:e2:59:2a:bf:4c:61:92:05:6e:
92:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0D:37:66:E6:AF:F0:87:D6:29:77:EE:47:EC:7C:4B:6E:E0:FC:88
X509v3 Authority Key Identifier:
keyid:CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32342d3234203d3e203438343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.114.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c1:b4:cf:68:d9:7c:e8:59:7d:50:30:25:25:39:2f:b7:62:
54:12:e5:50:a2:25:28:f9:01:f0:33:f9:71:78:f5:bd:cc:83:
12:68:94:89:85:71:a4:27:f2:56:ac:d1:ca:b9:dc:11:26:af:
25:0b:1c:5e:44:34:7c:fd:1a:0c:0a:e8:4c:23:28:d5:cc:06:
e4:4d:97:8f:af:c9:cf:3b:b0:95:24:61:3e:17:1e:e0:8c:39:
68:57:a1:3b:31:1f:5e:15:5d:d1:99:92:a4:c2:c2:b8:a3:9f:
05:fd:50:6c:8d:d5:65:a4:b8:40:51:bc:7a:a4:4d:8f:5e:34:
5d:3e:54:ef:51:39:8d:48:75:fd:6b:37:19:4e:66:06:43:07:
78:e0:16:79:80:23:09:3b:52:19:cc:6c:b3:d0:cb:fa:48:57:
f3:ff:f2:ae:c5:f3:83:43:d8:0f:66:77:22:dd:2d:a1:bd:c8:
65:bb:b4:2e:5c:3c:63:f1:16:56:7c:9c:7c:41:d0:32:ce:3a:
3f:3e:98:4b:b3:02:4d:9b:f4:db:ab:fb:f6:72:c3:42:7d:e0:
89:90:1c:94:8b:e6:6e:f1:41:97:17:df:3c:bf:ce:d6:00:a1:
3b:d8:76:54:3d:75:e5:2b:ef:7b:23:0e:f8:18:77:b8:87:43:
ab:a2:3a:02
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUF5WCRd/762SlPHbj+1ETPMWsziwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFE
NUIyM0E3NDAeFw0yNDA3MTUwMjQ0MTNaFw0yNTA3MTQwMjQ5MTNaMDMxMTAvBgNV
BAMTKENFMEQzNzY2RTZBRkYwODdENjI5NzdFRTQ3RUM3QzRCNkVFMEZDODgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkB/xgVnzlceY5HMhHD60D1lkv
jW4EmyMEbU5lkeysjD3k8YZLPH+621l0JWIoQDYgIomvHwTkEE/l8zbl9jRe1NpO
beknKYpxLtbIMjTGoWzyF48WixZZSltK2ctyOssh8zUkv10tftg7jJU5zX9sh94Y
6ByYraCIOSFiNPGX/t0u3kg7VCLN/aAw4IPL6XQO/Tl58QfQIARugHSIKXhgZxhU
IsbJfBcVpxLe7YhNvrSoSd9fUolV4XdoFgoz9Y2lhnv+6GrkLwbbBQt0J4s4lbfs
UZbXHT+tIHqQoPFCDignMMI3gNamGpfuYwTT7FEI+WGFHeJZKr9MYZIFbpK3AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUzg03Zuav8IfWKXfuR+x8S27g/IgwHwYDVR0j
BBgwFoAUzTKB/Idajdln5+g81A8QatWyOnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
NjhjYzA1OS01ZTZjLTQ1MDEtYjg5NC0xNGE4MmQxOGQyMWUvMC9DRDMyODFGQzg3
NUE4REQ5NjdFN0U4M0NENDBGMTA2QUQ1QjIzQTc0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFENUIy
M0E3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2OGNjMDU5LTVlNmMtNDUwMS1i
ODk0LTE0YTgyZDE4ZDIxZS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NyMA0GCSqG
SIb3DQEBCwUAA4IBAQCTwbTPaNl86Fl9UDAlJTkvt2JUEuVQoiUo+QHwM/lxePW9
zIMSaJSJhXGkJ/JWrNHKudwRJq8lCxxeRDR8/RoMCuhMIyjVzAbkTZePr8nPO7CV
JGE+Fx7gjDloV6E7MR9eFV3RmZKkwsK4o58F/VBsjdVlpLhAUbx6pE2PXjRdPlTv
UTmNSHX9azcZTmYGQwd44BZ5gCMJO1IZzGyz0Mv6SFfz//KuxfODQ9gPZnci3S2h
vchlu7QuXDxj8RZWfJx8QdAyzjo/PphLswJNm/Tbq/v2csNCfeCJkByUi+Zu8UGX
F988v87WAKE72HZUPXXlK+97Iw74GHe4h0OrojoC
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:57:30 2025 by rpki-client