Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
File: 3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa (raw, json)
Hash identifier: 7cXszIEC7Z7nD1ldnqKl+8siMGel8w55J7g/+p+W100=
Subject key identifier: 74:95:75:13:FA:40:71:B8:D0:42:D4:25:31:4B:C2:EA:8E:8E:5E:32
Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC
Certificate serial: 035024DF0C65D8E8733DFA102C114D09CF5E2FFF
Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
Signing time: Fri 07 Jun 2024 08:01:01 +0000
ROA not before: Fri 07 Jun 2024 07:56:01 +0000
ROA not after: Fri 06 Jun 2025 08:01:01 +0000
asID: 142389
IP address blocks: 103.172.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:50:24:df:0c:65:d8:e8:73:3d:fa:10:2c:11:4d:09:cf:5e:2f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC
Validity
Not Before: Jun 7 07:56:01 2024 GMT
Not After : Jun 6 08:01:01 2025 GMT
Subject: CN=74957513FA4071B8D042D425314BC2EA8E8E5E32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:ad:8c:12:04:06:c2:60:83:69:9b:15:04:
d0:6d:82:68:87:65:f7:7a:c7:b1:ad:64:8a:0d:56:
f5:7d:9f:1d:25:97:34:e3:2c:0c:15:f7:b2:3e:72:
99:27:ae:1a:aa:24:54:e7:0f:5c:68:b1:c0:34:69:
f8:7b:72:ba:c3:6c:1b:f6:99:cd:af:e8:1e:1f:18:
e9:2b:22:c4:e9:e8:dd:0c:53:96:a3:7f:02:90:0d:
69:d6:ec:3a:02:e7:45:ee:30:58:fa:34:2c:6d:1a:
0d:72:b8:be:b1:98:74:bb:d6:38:a3:ee:a8:b3:74:
6c:11:c6:8f:df:7f:18:e1:3d:45:aa:48:77:d7:74:
0a:f5:d8:9c:b2:56:13:36:25:65:e9:6a:4b:bd:34:
6d:fd:43:a1:da:86:cf:c8:d1:6f:2f:c8:c2:3a:8c:
20:b5:05:22:ab:96:09:e8:e5:4d:ae:82:9d:51:10:
c5:f7:67:77:74:50:13:72:c3:05:8d:0f:06:92:ad:
fc:b9:1b:e3:67:78:9c:5c:e3:6c:be:51:40:9f:8c:
63:b1:5c:47:70:0c:ad:37:1d:8f:23:06:4a:9e:65:
8e:4e:3c:c3:52:7c:66:94:08:47:85:41:bb:e7:4e:
6b:b7:94:ba:3b:49:fe:d8:a4:cf:d4:c2:66:93:0e:
0f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:95:75:13:FA:40:71:B8:D0:42:D4:25:31:4B:C2:EA:8E:8E:5E:32
X509v3 Authority Key Identifier:
keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.144.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:54:35:5f:e0:90:b7:ca:18:b9:c0:cb:0f:de:27:f1:a2:43:
7d:49:7b:dc:8e:47:8d:37:22:38:fc:db:13:36:20:7e:7b:3e:
c2:fb:4c:1a:53:ef:ef:a5:55:4c:1a:f5:25:21:83:cd:12:8c:
32:9d:f0:98:4b:8e:3b:36:b0:4b:97:17:7b:8d:2c:ab:59:70:
cb:a9:be:f6:b1:0f:93:a8:27:77:6f:ca:d7:0f:47:18:8b:e0:
ff:0e:5c:82:76:fd:52:28:af:7f:fc:19:04:08:e5:76:6f:7a:
d3:48:b9:ae:cd:08:41:4a:8a:71:1f:18:e2:18:6d:34:f2:cc:
57:0c:44:fd:b8:ed:35:49:9c:46:c2:c9:bb:53:ea:bc:fc:56:
e4:10:ac:75:52:5f:5a:b6:c5:92:4f:16:cc:8c:88:e5:c4:bd:
48:3e:63:1a:38:83:09:d1:6d:d2:8b:8e:82:bf:80:90:c6:9f:
d4:9a:6b:53:a6:ac:b6:3b:9a:6d:64:a3:e5:a0:7e:04:2e:c5:
a8:a5:29:55:a5:e4:05:c0:cc:a1:9b:ee:5a:56:b8:8b:73:28:
e3:4c:ca:17:be:e1:55:6e:a9:77:fb:33:e8:27:aa:9f:3f:0b:
87:43:48:36:24:38:f5:e8:33:d9:88:cd:1f:79:04:f1:ff:ca:
00:1d:b0:1f
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUA1Ak3wxl2OhzPfoQLBFNCc9eL/8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE
QjU2QUNBQzAeFw0yNDA2MDcwNzU2MDFaFw0yNTA2MDYwODAxMDFaMDMxMTAvBgNV
BAMTKDc0OTU3NTEzRkE0MDcxQjhEMDQyRDQyNTMxNEJDMkVBOEU4RTVFMzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvr62MEgQGwmCDaZsVBNBtgmiH
Zfd6x7GtZIoNVvV9nx0llzTjLAwV97I+cpknrhqqJFTnD1xoscA0afh7crrDbBv2
mc2v6B4fGOkrIsTp6N0MU5ajfwKQDWnW7DoC50XuMFj6NCxtGg1yuL6xmHS71jij
7qizdGwRxo/ffxjhPUWqSHfXdAr12JyyVhM2JWXpaku9NG39Q6Hahs/I0W8vyMI6
jCC1BSKrlgno5U2ugp1REMX3Z3d0UBNywwWNDwaSrfy5G+NneJxc42y+UUCfjGOx
XEdwDK03HY8jBkqeZY5OPMNSfGaUCEeFQbvnTmu3lLo7Sf7YpM/UwmaTDg9NAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUdJV1E/pAcbjQQtQlMUvC6o6OXjIwHwYDVR0j
BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC
MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2
QUNBQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i
YWMzLThmN2M2N2FlMGEwNC8wLzMxMzAzMzJlMzEzNzMyMmUzMTM0MzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4Mzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrJAwDQYJ
KoZIhvcNAQELBQADggEBAIpUNV/gkLfKGLnAyw/eJ/GiQ31Je9yOR403Ijj82xM2
IH57PsL7TBpT7++lVUwa9SUhg80SjDKd8JhLjjs2sEuXF3uNLKtZcMupvvaxD5Oo
J3dvytcPRxiL4P8OXIJ2/VIor3/8GQQI5XZvetNIua7NCEFKinEfGOIYbTTyzFcM
RP247TVJnEbCybtT6rz8VuQQrHVSX1q2xZJPFsyMiOXEvUg+Yxo4gwnRbdKLjoK/
gJDGn9Saa1OmrLY7mm1ko+WgfgQuxailKVWl5AXAzKGb7lpWuItzKONMyhe+4VVu
qXf7M+gnqp8/C4dDSDYkOPXoM9mIzR95BPH/ygAdsB8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:19 2025 by rpki-client