Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa
File: 3130332e37372e3230342e302f32332d3233203d3e203634323937.roa (raw, json)
Hash identifier: cOnqdPMFYbqbFi/FA6Q7dA8kJTzM3+iE0W1mSgXK4nI=
Subject key identifier: CF:32:48:E8:1D:32:B8:99:C3:9A:A9:A8:41:7B:4E:0A:B8:D7:5C:7A
Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Certificate serial: 152E390549317BD81C5ADF2BC27CBCE4DA83C025
Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa
Signing time: Sun 23 Mar 2025 15:00:00 +0000
ROA not before: Sun 23 Mar 2025 14:55:00 +0000
ROA not after: Sun 22 Mar 2026 15:00:00 +0000
asID: 64297
IP address blocks: 103.77.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:2e:39:05:49:31:7b:d8:1c:5a:df:2b:c2:7c:bc:e4:da:83:c0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Validity
Not Before: Mar 23 14:55:00 2025 GMT
Not After : Mar 22 15:00:00 2026 GMT
Subject: CN=CF3248E81D32B899C39AA9A8417B4E0AB8D75C7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:bc:89:11:d3:35:34:97:27:3b:af:cb:c3:
35:3b:e5:a8:67:cf:68:6b:2a:18:36:d6:bd:f9:13:
45:4f:36:f7:de:fc:60:ba:38:73:dd:1d:e0:7e:02:
6c:06:84:31:c7:2f:a6:67:ca:5b:b5:3d:ec:50:19:
73:4e:f2:d9:85:7e:e7:9f:ea:f7:9a:5c:84:80:d6:
f0:4b:59:91:9d:06:06:ac:f1:fa:3d:46:df:52:86:
bf:a6:0f:53:2f:6f:85:51:eb:c5:5a:67:cf:5b:8c:
67:12:e5:90:50:99:a8:68:e8:06:38:6d:7f:b8:2e:
73:83:b0:13:9f:b0:57:91:06:2a:0b:d3:6b:df:6f:
3d:02:f1:cf:2d:7d:12:27:13:37:c5:8a:8b:e1:5b:
a9:1f:31:b9:03:ab:d2:7e:fb:4d:0d:f0:d8:3f:fb:
74:a6:95:f2:43:2d:32:90:59:85:0d:a4:8d:bd:7a:
19:a4:15:b4:d7:56:23:09:c5:de:b1:5d:cb:96:88:
21:eb:5d:2e:36:02:44:9d:92:75:2d:67:d4:8d:72:
c3:57:f1:7f:27:46:e5:6b:06:40:87:57:49:17:ca:
47:8d:84:7c:6a:94:fe:37:c4:41:87:21:e7:65:f5:
87:87:2a:07:19:76:c3:99:cd:2e:65:6a:23:f1:0d:
4f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:32:48:E8:1D:32:B8:99:C3:9A:A9:A8:41:7B:4E:0A:B8:D7:5C:7A
X509v3 Authority Key Identifier:
keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.77.204.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:7b:25:35:29:14:f8:24:f8:50:29:d7:f3:84:24:11:7a:ba:
db:dc:0d:1a:60:a0:24:93:65:98:b1:d7:e0:a5:28:6b:d1:d2:
f9:5f:8e:ff:19:f1:91:19:1b:70:81:20:11:c9:25:7b:da:c7:
3e:ff:3c:f2:1f:df:5b:74:ee:89:e6:be:cd:36:be:1c:2d:39:
9c:01:5f:e4:4c:bb:84:1d:d3:6d:95:7b:24:0c:49:43:9d:ad:
9c:47:59:e9:7f:01:56:b6:cc:d1:7f:6e:62:c1:fb:1b:c4:2d:
20:1e:a9:c4:8b:67:66:65:33:d7:51:42:4d:ba:4e:1d:df:8a:
47:84:31:ae:b5:4b:a9:f5:f9:c6:b4:47:e9:57:8c:9e:de:4a:
aa:c8:73:1a:00:89:cd:71:e2:32:44:da:70:16:5f:37:5a:05:
4e:26:5d:00:9f:98:dc:1d:0a:0e:4a:cd:97:5b:b0:8f:07:a2:
c3:bf:d2:fb:7f:5d:aa:3c:89:81:32:2b:8a:d7:a8:e4:75:66:
0c:a5:8c:05:af:14:f9:73:80:65:34:00:18:62:99:8b:6e:d6:
6d:c0:86:41:ab:de:2b:a7:61:1c:8f:8d:67:33:a3:85:5b:7e:
d8:02:81:aa:8b:5f:5d:5f:4f:8c:92:7f:68:18:74:86:47:17:
b7:af:92:94
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUFS45BUkxe9gcWt8rwny85NqDwCUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2
MTBBRUM0OTAeFw0yNTAzMjMxNDU1MDBaFw0yNjAzMjIxNTAwMDBaMDMxMTAvBgNV
BAMTKENGMzI0OEU4MUQzMkI4OTlDMzlBQTlBODQxN0I0RTBBQjhENzVDN0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrHryJEdM1NJcnO6/LwzU75ahn
z2hrKhg21r35E0VPNvfe/GC6OHPdHeB+AmwGhDHHL6Znylu1PexQGXNO8tmFfuef
6veaXISA1vBLWZGdBgas8fo9Rt9Shr+mD1Mvb4VR68VaZ89bjGcS5ZBQmaho6AY4
bX+4LnODsBOfsFeRBioL02vfbz0C8c8tfRInEzfFiovhW6kfMbkDq9J++00N8Ng/
+3SmlfJDLTKQWYUNpI29ehmkFbTXViMJxd6xXcuWiCHrXS42AkSdknUtZ9SNcsNX
8X8nRuVrBkCHV0kXykeNhHxqlP43xEGHIedl9YeHKgcZdsOZzS5laiPxDU+7AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUzzJI6B0yuJnDmqmoQXtOCrjXXHowHwYDVR0j
BBgwFoAUp9G9ghE81yDFcq+ZqPspQGEK7EkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
OWRhN2I2YS00ZTFhLTQxZmYtYjhlYi04YzM2NGNkMjY0YjEvMC9BN0QxQkQ4MjEx
M0NENzIwQzU3MkFGOTlBOEZCMjk0MDYxMEFFQzQ5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2MTBB
RUM0OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZGE3YjZhLTRlMWEtNDFmZi1i
OGViLThjMzY0Y2QyNjRiMS8wLzMxMzAzMzJlMzczNzJlMzIzMDM0MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzYzNDMyMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdNzDANBgkqhkiG
9w0BAQsFAAOCAQEALHslNSkU+CT4UCnX84QkEXq629wNGmCgJJNlmLHX4KUoa9HS
+V+O/xnxkRkbcIEgEckle9rHPv888h/fW3Tuiea+zTa+HC05nAFf5Ey7hB3TbZV7
JAxJQ52tnEdZ6X8BVrbM0X9uYsH7G8QtIB6pxItnZmUz11FCTbpOHd+KR4QxrrVL
qfX5xrRH6VeMnt5KqshzGgCJzXHiMkTacBZfN1oFTiZdAJ+Y3B0KDkrNl1uwjwei
w7/S+39dqjyJgTIriteo5HVmDKWMBa8U+XOAZTQAGGKZi27WbcCGQaveK6dhHI+N
ZzOjhVt+2AKBqotfXV9PjJJ/aBh0hkcXt6+SlA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:49:21 2025 by rpki-client