Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa
File: 3130332e37312e382e302f32342d3234203d3e203535363632.roa (raw, json)
Hash identifier: JK9K79TizKr0Mzpc6GsKln188Fhnc893fnWWFi5WKGk=
Subject key identifier: D2:54:CD:97:F8:EA:A9:C5:D4:7B:11:72:5C:EC:C0:84:E5:DC:1F:19
Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9
Certificate serial: 1C9E2348B67989837C1DE699827026C3DAB6C75F
Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa
Signing time: Tue 14 May 2024 08:02:08 +0000
ROA not before: Tue 14 May 2024 07:57:08 +0000
ROA not after: Tue 13 May 2025 08:02:08 +0000
asID: 55662
IP address blocks: 103.71.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:9e:23:48:b6:79:89:83:7c:1d:e6:99:82:70:26:c3:da:b6:c7:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9
Validity
Not Before: May 14 07:57:08 2024 GMT
Not After : May 13 08:02:08 2025 GMT
Subject: CN=D254CD97F8EAA9C5D47B11725CECC084E5DC1F19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:93:0a:61:a6:d5:01:a9:bb:bc:89:88:9b:97:
e1:de:52:7f:e9:9b:da:52:a7:5d:b3:5d:cd:9e:af:
42:0f:a4:36:b7:78:d7:a7:06:8e:a1:be:c8:ab:2e:
2a:a9:ac:37:4d:86:66:dc:a8:3d:e4:a2:91:7b:ec:
6d:e1:ed:7c:e3:9c:6a:ec:90:96:3f:bb:04:0d:1f:
45:09:c5:b9:39:42:68:3b:f5:b3:3d:1a:72:e4:84:
0f:85:ea:01:c1:fe:34:96:7c:ee:52:ea:b7:07:e3:
fa:e4:82:88:8d:6b:ba:23:c1:53:af:2a:a6:d3:39:
45:5a:97:67:6c:b6:1c:60:1b:d2:dd:de:30:5b:7c:
41:cd:0a:40:01:89:cc:49:c1:7e:a6:d3:fb:54:28:
89:17:6e:41:f6:6f:ad:ce:60:04:d2:bf:7f:e8:bd:
2d:f3:ed:38:8d:0a:82:5d:45:c3:27:09:22:47:dd:
54:69:74:75:82:9b:e3:f5:5d:eb:36:eb:e4:5c:e2:
7a:43:f1:20:4b:8e:4f:b1:8e:f1:b9:bf:04:ff:f5:
70:2c:12:85:08:8a:e1:5c:fc:a7:ec:ab:cf:e1:e0:
f2:9d:b2:f7:21:41:4e:b7:22:21:a4:77:36:0f:7f:
fe:eb:ef:8e:02:2f:b3:81:7a:4e:9b:d0:0d:99:59:
b8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:54:CD:97:F8:EA:A9:C5:D4:7B:11:72:5C:EC:C0:84:E5:DC:1F:19
X509v3 Authority Key Identifier:
keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32342d3234203d3e203535363632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.71.8.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:69:ef:49:7f:21:0e:b2:6c:9b:83:ff:c9:9b:4b:fd:56:f8:
d0:b7:f0:2c:36:d2:fd:a7:c8:02:0a:f9:12:54:82:13:96:e5:
1f:9e:16:ea:93:e8:96:a5:77:1f:5b:60:ba:b6:0b:84:39:26:
33:f3:50:89:39:8c:5c:62:15:a2:2b:7f:b6:ac:8e:0b:a5:a2:
61:74:eb:5d:05:bb:52:77:f0:00:52:74:1a:5d:d3:4e:98:ee:
70:d9:42:62:c7:bf:a5:c2:27:cb:41:8b:18:ad:c6:d3:03:02:
25:bf:bb:a8:b0:d9:ba:f6:25:7a:ac:09:1d:39:4b:1d:22:32:
8a:93:9f:a8:de:67:97:43:2a:ba:93:c2:2d:d6:c4:3f:2a:7d:
98:8b:80:9c:c0:da:b3:1c:08:0d:13:08:6e:6b:62:c3:62:e0:
43:71:88:65:af:4d:d0:01:42:62:b5:c4:7b:6d:c9:56:78:10:
51:3b:eb:43:50:3c:93:ad:9d:38:55:64:1e:2b:32:3e:47:d6:
a3:7c:ed:6f:3d:ea:ab:dc:ab:4e:0a:6e:1f:97:df:6a:f8:c5:
b3:bc:b5:dd:8b:50:95:c9:aa:99:aa:e3:03:51:da:ef:f7:23:
48:cc:5d:a4:77:14:19:4c:b3:63:6c:9b:38:d6:ab:84:9d:d1:
03:37:61:cb
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIUHJ4jSLZ5iYN8HeaZgnAmw9q2x18wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD
NkYzQjJGOTAeFw0yNDA1MTQwNzU3MDhaFw0yNTA1MTMwODAyMDhaMDMxMTAvBgNV
BAMTKEQyNTRDRDk3RjhFQUE5QzVENDdCMTE3MjVDRUNDMDg0RTVEQzFGMTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNkwphptUBqbu8iYibl+HeUn/p
m9pSp12zXc2er0IPpDa3eNenBo6hvsirLiqprDdNhmbcqD3kopF77G3h7XzjnGrs
kJY/uwQNH0UJxbk5Qmg79bM9GnLkhA+F6gHB/jSWfO5S6rcH4/rkgoiNa7ojwVOv
KqbTOUVal2dsthxgG9Ld3jBbfEHNCkABicxJwX6m0/tUKIkXbkH2b63OYATSv3/o
vS3z7TiNCoJdRcMnCSJH3VRpdHWCm+P1Xes26+Rc4npD8SBLjk+xjvG5vwT/9XAs
EoUIiuFc/Kfsq8/h4PKdsvchQU63IiGkdzYPf/7r744CL7OBek6b0A2ZWbgTAgMB
AAGjggItMIICKTAdBgNVHQ4EFgQU0lTNl/jqqcXUexFyXOzAhOXcHxkwHwYDVR0j
BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3
MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz
QjJGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1
ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzODJlMzAyZjMyMzQyZDMy
MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRwgwDQYJKoZIhvcNAQEL
BQADggEBAMNp70l/IQ6ybJuD/8mbS/1W+NC38Cw20v2nyAIK+RJUghOW5R+eFuqT
6Jaldx9bYLq2C4Q5JjPzUIk5jFxiFaIrf7asjgulomF0610Fu1J38ABSdBpd006Y
7nDZQmLHv6XCJ8tBixitxtMDAiW/u6iw2br2JXqsCR05Sx0iMoqTn6jeZ5dDKrqT
wi3WxD8qfZiLgJzA2rMcCA0TCG5rYsNi4ENxiGWvTdABQmK1xHttyVZ4EFE760NQ
PJOtnThVZB4rMj5H1qN87W896qvcq04Kbh+X32r4xbO8td2LUJXJqpmq4wNR2u/3
I0jMXaR3FBlMs2NsmzjWq4Sd0QM3Ycs=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:23 2025 by rpki-client