Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa
File: 3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa (raw, json)
Hash identifier: BeLsfpL8RzgYNWSnNvLFv9eVxbvW50/eid911Xh0OPs=
Subject key identifier: FA:86:E4:37:9D:06:E0:04:6B:23:92:77:9E:05:36:E9:25:08:E6:24
Certificate issuer: /CN=28E2707085C2950AF9267465A3801841D8077215
Certificate serial: 2CF6319D5B89E598E112BA651FE881CD578DEF4F
Authority key identifier: 28:E2:70:70:85:C2:95:0A:F9:26:74:65:A3:80:18:41:D8:07:72:15
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28E2707085C2950AF9267465A3801841D8077215.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa
Signing time: Tue 17 Dec 2024 04:00:35 +0000
ROA not before: Tue 17 Dec 2024 03:55:35 +0000
ROA not after: Tue 16 Dec 2025 04:00:35 +0000
asID: 149670
IP address blocks: 103.184.66.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:f6:31:9d:5b:89:e5:98:e1:12:ba:65:1f:e8:81:cd:57:8d:ef:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28E2707085C2950AF9267465A3801841D8077215
Validity
Not Before: Dec 17 03:55:35 2024 GMT
Not After : Dec 16 04:00:35 2025 GMT
Subject: CN=FA86E4379D06E0046B2392779E0536E92508E624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f8:13:a3:5f:c4:8b:93:26:db:ec:76:31:3e:
c1:ce:21:c3:90:75:65:0a:61:ee:97:5e:93:f8:58:
e0:81:98:dd:10:96:1b:e6:6f:6a:0a:17:ea:5e:fb:
69:e1:81:44:c1:ed:b3:49:ec:6c:06:a3:a4:73:3c:
4c:a8:f9:c1:c2:2f:19:4f:b0:27:6b:d9:b7:bc:59:
39:7c:81:be:b2:04:10:53:0c:a0:c4:36:65:13:0d:
d9:60:ef:3d:ea:04:d3:b8:66:bd:21:a9:9e:e7:72:
9b:4a:12:a3:22:7a:0f:c6:e1:0b:88:d4:1b:f3:6e:
05:cc:2b:73:a2:17:10:d6:08:ad:26:70:8a:82:2f:
0c:6a:a8:dc:cd:b8:09:2e:ff:3b:e2:55:ef:18:d5:
da:df:cb:ef:8c:03:eb:c0:54:85:fd:e7:83:6f:50:
90:3f:0f:4b:9d:9f:6c:46:45:60:0b:40:fe:fb:f7:
9b:8e:fb:5f:9b:64:2d:e5:32:29:f4:b7:f9:c8:80:
9d:27:6a:67:ef:ad:45:b6:dc:c3:f2:2b:77:b2:a8:
51:b4:86:fe:d3:50:33:23:c5:f4:52:19:f1:1f:52:
7e:24:6a:58:4b:19:37:76:06:a5:44:6d:77:3b:65:
66:c4:5c:2b:53:32:51:87:ce:8c:65:ec:e9:15:fc:
e0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:86:E4:37:9D:06:E0:04:6B:23:92:77:9E:05:36:E9:25:08:E6:24
X509v3 Authority Key Identifier:
keyid:28:E2:70:70:85:C2:95:0A:F9:26:74:65:A3:80:18:41:D8:07:72:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/28E2707085C2950AF9267465A3801841D8077215.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28E2707085C2950AF9267465A3801841D8077215.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.66.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:52:59:33:6c:ab:bd:12:97:90:2d:8e:43:fa:0e:7a:69:18:
4d:84:45:06:db:51:75:73:d5:f8:ec:48:32:25:03:ca:ee:57:
23:5f:e7:ce:55:4b:c3:a7:bd:7a:66:e4:07:b6:a0:a1:e2:84:
39:30:8d:87:70:80:62:db:54:2b:22:e8:f8:24:e0:96:37:81:
5f:12:de:6d:ef:d5:b1:13:58:e5:8d:04:59:ce:32:06:61:65:
64:d8:87:b7:f3:ea:88:27:fb:37:3c:bf:78:f1:5f:19:16:47:
7a:9c:d7:86:22:cf:8d:5e:99:77:ac:c3:a2:34:3f:8f:c6:e7:
3c:61:54:30:18:5f:0f:76:99:19:6f:f4:d2:27:bd:da:ff:7c:
ec:66:b1:cf:03:d3:fe:94:fa:9b:93:14:10:03:07:e9:16:c1:
31:a0:3b:3f:bd:19:0c:7a:41:96:49:c8:4b:ec:7a:6d:da:fd:
d0:2f:da:83:4d:07:07:99:d2:71:49:54:92:63:f5:54:4b:77:
e1:e3:80:d5:cc:2d:3b:07:a5:86:4e:31:46:83:9e:97:32:ac:
a0:e9:8f:ed:1c:5a:79:c4:70:f9:4e:bd:f8:4c:62:6a:3a:1c:
f7:2b:ed:41:a8:6e:44:fc:a4:bb:fb:60:09:77:01:4b:a9:ab:
9d:ca:b0:81
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIULPYxnVuJ5ZjhErplH+iBzVeN708wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjhFMjcwNzA4NUMyOTUwQUY5MjY3NDY1QTM4MDE4NDFE
ODA3NzIxNTAeFw0yNDEyMTcwMzU1MzVaFw0yNTEyMTYwNDAwMzVaMDMxMTAvBgNV
BAMTKEZBODZFNDM3OUQwNkUwMDQ2QjIzOTI3NzlFMDUzNkU5MjUwOEU2MjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr+BOjX8SLkybb7HYxPsHOIcOQ
dWUKYe6XXpP4WOCBmN0Qlhvmb2oKF+pe+2nhgUTB7bNJ7GwGo6RzPEyo+cHCLxlP
sCdr2be8WTl8gb6yBBBTDKDENmUTDdlg7z3qBNO4Zr0hqZ7ncptKEqMieg/G4QuI
1BvzbgXMK3OiFxDWCK0mcIqCLwxqqNzNuAku/zviVe8Y1drfy++MA+vAVIX954Nv
UJA/D0udn2xGRWALQP7795uO+1+bZC3lMin0t/nIgJ0namfvrUW23MPyK3eyqFG0
hv7TUDMjxfRSGfEfUn4kalhLGTd2BqVEbXc7ZWbEXCtTMlGHzoxl7OkV/ODBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU+obkN50G4ARrI5J3ngU26SUI5iQwHwYDVR0j
BBgwFoAUKOJwcIXClQr5JnRlo4AYQdgHchUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
NDQ2OWVlOS04MTRlLTQ1N2EtYmIxMy1hNWM0YjZmMWI1YWYvMC8yOEUyNzA3MDg1
QzI5NTBBRjkyNjc0NjVBMzgwMTg0MUQ4MDc3MjE1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjhFMjcwNzA4NUMyOTUwQUY5MjY3NDY1QTM4MDE4NDFEODA3
NzIxNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NDY5ZWU5LTgxNGUtNDU3YS1i
YjEzLWE1YzRiNmYxYjVhZi8wLzMxMzAzMzJlMzEzODM0MmUzNjM2MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7hCMA0GCSqG
SIb3DQEBCwUAA4IBAQDEUlkzbKu9EpeQLY5D+g56aRhNhEUG21F1c9X47EgyJQPK
7lcjX+fOVUvDp716ZuQHtqCh4oQ5MI2HcIBi21QrIuj4JOCWN4FfEt5t79WxE1jl
jQRZzjIGYWVk2Ie38+qIJ/s3PL948V8ZFkd6nNeGIs+NXpl3rMOiND+Pxuc8YVQw
GF8PdpkZb/TSJ73a/3zsZrHPA9P+lPqbkxQQAwfpFsExoDs/vRkMekGWSchL7Hpt
2v3QL9qDTQcHmdJxSVSSY/VUS3fh44DVzC07B6WGTjFGg56XMqyg6Y/tHFp5xHD5
Tr34TGJqOhz3K+1BqG5E/KS7+2AJdwFLqaudyrCB
-----END CERTIFICATE-----
Generated at Wed Apr 9 05:50:34 2025 by rpki-client