Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31302e302f32342d3234203d3e20313331373137.roa
File: 3130332e3131302e31302e302f32342d3234203d3e20313331373137.roa (raw, json)
Hash identifier: StKC3RjUEcb6GVhgx3SU+vMU9RD+LiURtnpuaNC5b5E=
Subject key identifier: 86:6F:F4:AD:52:D9:ED:52:5A:DD:39:7D:78:AA:77:F7:47:31:AD:3F
Certificate issuer: /CN=2FB994CD1282292E6D2907FCECD7F9E472F49985
Certificate serial: 3B3E9BF64838F6A151D60FBA9C54008116FBF039
Authority key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31302e302f32342d3234203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:05:22 +0000
ROA not before: Mon 01 Jul 2024 01:00:22 +0000
ROA not after: Mon 30 Jun 2025 01:05:22 +0000
asID: 131717
IP address blocks: 103.110.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:3e:9b:f6:48:38:f6:a1:51:d6:0f:ba:9c:54:00:81:16:fb:f0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985
Validity
Not Before: Jul 1 01:00:22 2024 GMT
Not After : Jun 30 01:05:22 2025 GMT
Subject: CN=866FF4AD52D9ED525ADD397D78AA77F74731AD3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f8:99:a9:8b:df:11:39:30:17:0e:4c:61:39:
f8:cf:cb:ca:36:53:dd:7e:a6:bb:c1:0e:bb:49:c0:
aa:e8:62:93:f4:52:61:66:3e:ed:a8:38:57:25:6f:
ed:db:e7:0d:c7:a8:b0:6c:38:30:9d:2c:0c:fc:df:
64:30:ea:6c:e4:a8:08:98:db:4e:08:af:5a:90:c6:
83:93:2b:bb:6c:1d:10:b3:a9:fb:bb:35:23:ad:6a:
8c:50:62:50:50:29:7f:2c:e7:6c:84:26:f0:b2:d8:
ab:44:91:51:ad:34:a7:0e:f4:f4:c5:d4:57:ee:7a:
ee:1f:cf:9a:08:55:8e:98:a4:d4:e8:b9:ca:cb:35:
37:e9:f4:c4:f0:7e:bd:d3:62:bc:74:82:cd:74:29:
79:a0:06:31:77:f0:11:77:af:86:dd:f1:c5:02:da:
de:46:15:0c:ef:29:89:c9:13:2b:00:b1:2d:50:84:
ae:04:eb:47:86:dc:f2:03:54:2b:4d:31:ba:1a:8c:
42:ca:6e:25:48:2e:db:70:ff:96:49:a7:5f:ce:ca:
a9:46:1b:bf:eb:75:8f:3c:62:14:d9:b1:a3:7f:b0:
64:40:ec:87:1d:2b:e8:69:76:c0:ba:e5:85:a6:40:
5f:e8:f3:02:4b:88:89:82:de:5a:4c:34:9a:6b:0b:
9c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6F:F4:AD:52:D9:ED:52:5A:DD:39:7D:78:AA:77:F7:47:31:AD:3F
X509v3 Authority Key Identifier:
keyid:2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e31302e302f32342d3234203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.110.10.0/24
Signature Algorithm: sha256WithRSAEncryption
69:66:a1:9d:40:af:e9:29:b2:f0:9b:cb:b2:5a:31:9a:6e:bd:
5e:11:5a:eb:2b:46:10:4f:e0:02:34:a4:17:48:12:1e:ab:51:
2b:ca:f0:cd:cf:ff:da:8d:0a:b4:67:a6:1f:fc:7e:98:1c:cd:
66:89:d8:4a:66:e1:fc:51:cf:99:12:6b:1f:5f:49:a2:87:d1:
6a:b9:55:09:b6:18:03:e9:e5:69:f4:e2:9f:32:9f:f1:68:fb:
36:a6:20:c8:4c:87:e1:96:62:ad:2a:a4:66:b3:8c:cb:e6:4f:
0f:12:82:7a:c4:b1:94:99:68:5b:49:2c:ae:27:70:f4:53:dd:
08:c5:f3:dd:c5:86:6a:8f:7d:5f:0b:3b:42:20:28:60:8c:e6:
58:5a:d7:0f:6a:72:08:20:cd:99:6a:17:38:95:67:71:84:30:
3d:24:6b:7d:2b:e0:f5:2a:bb:18:05:60:70:d0:93:c2:59:38:
50:f1:32:44:df:17:75:8a:20:cb:23:5f:ed:7f:9a:67:64:3e:
e5:f5:6a:d5:f7:f6:aa:40:85:a2:38:73:9a:e1:1f:82:0a:9a:
5d:86:5e:a4:b7:59:03:d5:02:bb:e8:35:cd:10:02:97:9d:ff:
37:8c:d2:17:48:20:36:7b:c5:bd:5b:f2:38:e0:9a:c2:5c:3c:
22:70:34:04
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUOz6b9kg49qFR1g+6nFQAgRb78DkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3
MkY0OTk4NTAeFw0yNDA3MDEwMTAwMjJaFw0yNTA2MzAwMTA1MjJaMDMxMTAvBgNV
BAMTKDg2NkZGNEFENTJEOUVENTI1QUREMzk3RDc4QUE3N0Y3NDczMUFEM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI+Jmpi98ROTAXDkxhOfjPy8o2
U91+prvBDrtJwKroYpP0UmFmPu2oOFclb+3b5w3HqLBsODCdLAz832Qw6mzkqAiY
204Ir1qQxoOTK7tsHRCzqfu7NSOtaoxQYlBQKX8s52yEJvCy2KtEkVGtNKcO9PTF
1Ffueu4fz5oIVY6YpNToucrLNTfp9MTwfr3TYrx0gs10KXmgBjF38BF3r4bd8cUC
2t5GFQzvKYnJEysAsS1QhK4E60eG3PIDVCtNMboajELKbiVILttw/5ZJp1/OyqlG
G7/rdY88YhTZsaN/sGRA7IcdK+hpdsC65YWmQF/o8wJLiImC3lpMNJprC5z1AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUhm/0rVLZ7VJa3Tl9eKp390cxrT8wHwYDVR0j
BBgwFoAUL7mUzRKCKS5tKQf87Nf55HL0mYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZGE3NzNkZC05NWFhLTQ0N2UtOTkzZC00Y2Y0YTEyNzNiMzEvMC8yRkI5OTRDRDEy
ODIyOTJFNkQyOTA3RkNFQ0Q3RjlFNDcyRjQ5OTg1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMkZCOTk0Q0QxMjgyMjkyRTZEMjkwN0ZDRUNEN0Y5RTQ3MkY0
OTk4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkYTc3M2RkLTk1YWEtNDQ3ZS05
OTNkLTRjZjRhMTI3M2IzMS8wLzMxMzAzMzJlMzEzMTMwMmUzMTMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ24KMA0GCSqG
SIb3DQEBCwUAA4IBAQBpZqGdQK/pKbLwm8uyWjGabr1eEVrrK0YQT+ACNKQXSBIe
q1EryvDNz//ajQq0Z6Yf/H6YHM1midhKZuH8Uc+ZEmsfX0mih9FquVUJthgD6eVp
9OKfMp/xaPs2piDITIfhlmKtKqRms4zL5k8PEoJ6xLGUmWhbSSyuJ3D0U90IxfPd
xYZqj31fCztCIChgjOZYWtcPanIIIM2Zahc4lWdxhDA9JGt9K+D1KrsYBWBw0JPC
WThQ8TJE3xd1iiDLI1/tf5pnZD7l9WrV9/aqQIWiOHOa4R+CCppdhl6kt1kD1QK7
6DXNEAKXnf83jNIXSCA2e8W9W/I44JrCXDwicDQE
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:27:03 2025 by rpki-client