Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37342e302f32342d3234203d3e203436303631.roa
File: 3130332e32342e37342e302f32342d3234203d3e203436303631.roa (raw, json)
Hash identifier: bikfKb1C7cQAEY1CyyouPcQSs6oSuCD6TbZ1wF/jE50=
Subject key identifier: 28:88:94:6A:57:84:E1:ED:54:02:28:74:9C:90:2A:97:CB:17:E3:D1
Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647
Certificate serial: 3263DE9D57C341C2FC93883A50018766B9A3C541
Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37342e302f32342d3234203d3e203436303631.roa
Signing time: Wed 02 Oct 2024 16:00:02 +0000
ROA not before: Wed 02 Oct 2024 15:55:02 +0000
ROA not after: Wed 01 Oct 2025 16:00:02 +0000
asID: 46061
IP address blocks: 103.24.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:63:de:9d:57:c3:41:c2:fc:93:88:3a:50:01:87:66:b9:a3:c5:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647
Validity
Not Before: Oct 2 15:55:02 2024 GMT
Not After : Oct 1 16:00:02 2025 GMT
Subject: CN=2888946A5784E1ED540228749C902A97CB17E3D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3e:f8:da:25:81:5d:49:c1:70:54:41:e6:76:
70:2c:15:45:39:78:1e:46:b9:59:82:ad:42:91:ec:
95:99:24:b8:80:3d:bc:a6:30:27:8c:8b:f7:12:9f:
a5:bf:e4:29:bf:78:dd:a3:d8:39:1a:0a:0b:de:a3:
74:f1:87:b6:0d:10:85:2f:32:86:b8:b0:a9:b1:43:
23:b5:9d:6c:6c:3a:5f:9b:11:e1:46:3b:6c:d5:a7:
ca:5d:91:f6:d9:e4:be:8d:3b:51:0e:62:45:2b:1a:
f1:3b:56:26:f7:ea:4b:1b:0b:1d:df:2f:ed:00:61:
18:f0:47:5f:df:b3:10:17:a7:7b:6c:fa:00:b3:e7:
08:ab:06:27:d0:d9:58:a6:99:f6:70:16:68:a4:2d:
9b:1b:18:f0:52:f1:72:8a:b7:3b:72:25:49:84:f7:
c9:3c:d8:0b:10:79:a7:4c:b7:18:a4:8a:5b:78:d2:
db:be:2b:52:64:bd:8d:78:35:ed:67:fc:c5:f0:6c:
9f:e8:2f:45:9b:ed:a3:70:7f:0a:f3:0f:ca:bc:1c:
6a:bd:13:df:3c:06:91:56:42:4c:98:5b:e7:c6:a6:
b5:ae:e7:96:c9:4d:22:7b:5c:6d:aa:a3:dc:54:06:
87:4f:35:7a:8c:3e:b0:b4:06:7e:ef:ee:88:23:82:
12:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:88:94:6A:57:84:E1:ED:54:02:28:74:9C:90:2A:97:CB:17:E3:D1
X509v3 Authority Key Identifier:
keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3130332e32342e37342e302f32342d3234203d3e203436303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.24.74.0/24
Signature Algorithm: sha256WithRSAEncryption
77:7a:f3:27:1c:24:02:dc:53:3a:bd:ac:d2:3a:57:3a:55:4a:
fc:03:c3:7c:83:af:45:61:48:ac:1e:fa:22:11:c6:21:ef:6d:
18:c9:d3:14:18:9c:4d:73:14:c4:20:f1:ad:43:31:49:f7:27:
50:ea:22:c6:e4:29:f7:0b:60:dd:84:f5:f0:e2:ba:73:7e:c5:
c9:2a:90:70:a7:c6:44:2b:59:2e:3d:47:5d:7c:c5:14:05:8b:
cb:1d:59:b1:e4:72:d9:65:0a:fb:d2:a7:e8:e6:f6:1d:44:89:
49:ae:d8:b5:6f:25:3d:1e:09:b7:20:5f:0b:83:05:cf:06:0e:
b9:ce:a9:48:0d:02:71:23:01:f9:a0:e3:2b:ad:8d:73:da:3c:
bd:8e:87:1c:2f:32:a5:54:60:10:97:b5:d0:da:13:2f:aa:1b:
f8:92:31:82:f4:49:29:c4:2c:9f:27:08:fa:72:a4:15:64:c9:
6d:ed:5c:3a:e4:bc:1d:a9:ea:1f:b1:1b:61:af:b3:5a:9a:7a:
5c:d2:d7:f2:48:25:e6:02:61:96:ca:12:5a:20:14:26:00:bf:
ad:3b:44:00:95:05:1d:78:35:fe:87:01:31:0d:6d:5a:94:44:
4d:7f:b9:e0:18:ab:7f:79:79:7e:8a:76:34:83:80:00:13:1c:
8e:1f:33:b9
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUMmPenVfDQcL8k4g6UAGHZrmjxUEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3
RjY4QTY0NzAeFw0yNDEwMDIxNTU1MDJaFw0yNTEwMDExNjAwMDJaMDMxMTAvBgNV
BAMTKDI4ODg5NDZBNTc4NEUxRUQ1NDAyMjg3NDlDOTAyQTk3Q0IxN0UzRDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOPvjaJYFdScFwVEHmdnAsFUU5
eB5GuVmCrUKR7JWZJLiAPbymMCeMi/cSn6W/5Cm/eN2j2DkaCgveo3Txh7YNEIUv
Moa4sKmxQyO1nWxsOl+bEeFGO2zVp8pdkfbZ5L6NO1EOYkUrGvE7Vib36ksbCx3f
L+0AYRjwR1/fsxAXp3ts+gCz5wirBifQ2VimmfZwFmikLZsbGPBS8XKKtztyJUmE
98k82AsQeadMtxikilt40tu+K1JkvY14Ne1n/MXwbJ/oL0Wb7aNwfwrzD8q8HGq9
E988BpFWQkyYW+fGprWu55bJTSJ7XG2qo9xUBodPNXqMPrC0Bn7v7ogjghLNAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUKIiUaleE4e1UAih0nJAql8sX49EwHwYDVR0j
BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw
OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4
QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i
OWY4LWQ2ZTc3YjI5YmNjNi8wLzMxMzAzMzJlMzIzNDJlMzczNDJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGEowDQYJKoZIhvcN
AQELBQADggEBAHd68yccJALcUzq9rNI6VzpVSvwDw3yDr0VhSKwe+iIRxiHvbRjJ
0xQYnE1zFMQg8a1DMUn3J1DqIsbkKfcLYN2E9fDiunN+xckqkHCnxkQrWS49R118
xRQFi8sdWbHkctllCvvSp+jm9h1EiUmu2LVvJT0eCbcgXwuDBc8GDrnOqUgNAnEj
Afmg4yutjXPaPL2OhxwvMqVUYBCXtdDaEy+qG/iSMYL0SSnELJ8nCPpypBVkyW3t
XDrkvB2p6h+xG2Gvs1qaelzS1/JIJeYCYZbKElogFCYAv607RACVBR14Nf6HATEN
bVqURE1/ueAYq395eX6KdjSDgAATHI4fM7k=
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:00:07 2025 by rpki-client