Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6132a740-bd7d-46b8-b10a-a7a703e350f2/0/3130332e38342e3131372e302f32342d3234203d3e20313334363335.roa
File: 3130332e38342e3131372e302f32342d3234203d3e20313334363335.roa (raw, json)
Hash identifier: fsoOWsUyBibaImiYKhZxBHJnOHgYnf/Jgxm4IYhh8Wg=
Subject key identifier: 63:95:78:D2:66:F2:DF:E7:4B:73:A4:8A:9F:72:C4:10:96:54:9B:C7
Certificate issuer: /CN=7701FBF4A9C9B559888F02656447A3AA1963811C
Certificate serial: 2B5AD9F490EE619E0DF46AF6DD204613BDE564EC
Authority key identifier: 77:01:FB:F4:A9:C9:B5:59:88:8F:02:65:64:47:A3:AA:19:63:81:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7701FBF4A9C9B559888F02656447A3AA1963811C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6132a740-bd7d-46b8-b10a-a7a703e350f2/0/3130332e38342e3131372e302f32342d3234203d3e20313334363335.roa
Signing time: Fri 23 Aug 2024 07:00:02 +0000
ROA not before: Fri 23 Aug 2024 06:55:02 +0000
ROA not after: Fri 22 Aug 2025 07:00:02 +0000
asID: 134635
IP address blocks: 103.84.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:5a:d9:f4:90:ee:61:9e:0d:f4:6a:f6:dd:20:46:13:bd:e5:64:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7701FBF4A9C9B559888F02656447A3AA1963811C
Validity
Not Before: Aug 23 06:55:02 2024 GMT
Not After : Aug 22 07:00:02 2025 GMT
Subject: CN=639578D266F2DFE74B73A48A9F72C41096549BC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:1d:04:fe:b8:38:4a:74:53:70:a5:3c:fd:
66:43:5f:d0:78:29:55:9e:15:da:1a:93:51:93:35:
a6:6d:a4:3e:c9:e5:b8:49:3b:44:76:09:95:f0:cb:
67:1a:3c:28:78:8b:02:f0:c1:d6:ad:70:91:11:fb:
c2:a8:65:f8:be:ab:ef:b1:62:d5:25:62:d6:6e:4d:
c8:4c:f6:81:a2:75:8c:e0:e4:89:e2:60:02:36:db:
a4:c1:e9:b6:98:bb:87:97:e7:a3:e0:60:9d:13:73:
a5:6c:48:60:33:37:35:76:13:1a:0a:2d:58:72:bd:
c4:59:8f:ad:87:dc:1b:fa:fb:e1:fb:eb:65:8d:3a:
ca:bc:4b:b3:a4:6e:1d:b8:7d:d3:a9:09:36:06:8e:
3b:72:5b:69:73:33:a5:14:d1:c7:a3:a2:1a:33:ed:
c6:04:b3:7e:16:3b:c4:48:66:be:03:ca:68:3d:3d:
01:3f:7d:89:66:eb:f1:b8:c5:d8:d6:b3:70:e8:45:
93:18:fd:46:91:6e:89:4f:9f:8f:e5:77:ff:ab:00:
70:a1:a9:91:ae:6f:9f:ef:d0:50:f2:51:cb:08:2f:
10:85:5c:a6:84:f7:53:04:79:e1:3e:0c:70:de:bc:
27:20:bd:24:53:88:b6:9f:4d:d9:00:7a:32:4e:d4:
99:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:95:78:D2:66:F2:DF:E7:4B:73:A4:8A:9F:72:C4:10:96:54:9B:C7
X509v3 Authority Key Identifier:
keyid:77:01:FB:F4:A9:C9:B5:59:88:8F:02:65:64:47:A3:AA:19:63:81:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6132a740-bd7d-46b8-b10a-a7a703e350f2/0/7701FBF4A9C9B559888F02656447A3AA1963811C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7701FBF4A9C9B559888F02656447A3AA1963811C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6132a740-bd7d-46b8-b10a-a7a703e350f2/0/3130332e38342e3131372e302f32342d3234203d3e20313334363335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.84.117.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:37:43:29:1e:72:66:6e:c2:b4:2e:45:3d:37:eb:23:dc:5c:
f7:47:35:a5:fc:23:d2:4f:c5:85:c4:b5:63:c5:c7:4e:93:1a:
05:75:58:f5:7e:83:ed:34:fa:a7:c1:9f:50:7a:5e:a0:1c:3c:
a4:2b:9c:25:74:3c:14:86:da:52:a0:9c:97:ae:21:88:3f:0a:
f1:b5:ec:66:37:fb:e5:79:21:85:13:e1:b7:07:63:24:74:50:
3b:2d:9c:77:74:0e:8b:44:64:9c:69:8e:dc:d2:15:49:a7:f0:
6c:74:0a:c2:cd:c4:0e:33:bf:ae:d3:e7:99:66:71:b2:95:38:
30:32:6e:81:d4:1c:0c:55:2c:f6:87:5e:04:29:64:88:8c:63:
1e:75:de:81:6a:9a:36:7a:c6:7e:ec:56:a5:26:99:6b:e2:58:
94:79:0c:ab:13:e8:fd:a9:4d:2d:fd:4a:46:d4:c3:6c:ef:6f:
0a:a5:7f:06:7b:14:3c:ee:a5:4f:bc:53:50:d4:f1:b1:38:58:
2b:f7:aa:d7:60:31:e6:0e:ee:e8:45:e5:aa:6b:82:28:32:4f:
f7:70:10:60:c4:0b:fd:d4:a8:fd:1a:bc:d8:18:da:86:67:b2:
df:bd:bd:36:b0:15:be:28:3f:08:d6:74:32:d1:b4:46:c5:dd:
84:a9:b7:d5
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUK1rZ9JDuYZ4N9Gr23SBGE73lZOwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzcwMUZCRjRBOUM5QjU1OTg4OEYwMjY1NjQ0N0EzQUEx
OTYzODExQzAeFw0yNDA4MjMwNjU1MDJaFw0yNTA4MjIwNzAwMDJaMDMxMTAvBgNV
BAMTKDYzOTU3OEQyNjZGMkRGRTc0QjczQTQ4QTlGNzJDNDEwOTY1NDlCQzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Cx0E/rg4SnRTcKU8/WZDX9B4
KVWeFdoak1GTNaZtpD7J5bhJO0R2CZXwy2caPCh4iwLwwdatcJER+8KoZfi+q++x
YtUlYtZuTchM9oGidYzg5IniYAI226TB6baYu4eX56PgYJ0Tc6VsSGAzNzV2ExoK
LVhyvcRZj62H3Bv6++H762WNOsq8S7Okbh24fdOpCTYGjjtyW2lzM6UU0cejohoz
7cYEs34WO8RIZr4Dymg9PQE/fYlm6/G4xdjWs3DoRZMY/UaRbolPn4/ld/+rAHCh
qZGub5/v0FDyUcsILxCFXKaE91MEeeE+DHDevCcgvSRTiLafTdkAejJO1Jm5AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUY5V40mby3+dLc6SKn3LEEJZUm8cwHwYDVR0j
BBgwFoAUdwH79KnJtVmIjwJlZEejqhljgRwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MTMyYTc0MC1iZDdkLTQ2YjgtYjEwYS1hN2E3MDNlMzUwZjIvMC83NzAxRkJGNEE5
QzlCNTU5ODg4RjAyNjU2NDQ3QTNBQTE5NjM4MTFDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzcwMUZCRjRBOUM5QjU1OTg4OEYwMjY1NjQ0N0EzQUExOTYz
ODExQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMzJhNzQwLWJkN2QtNDZiOC1i
MTBhLWE3YTcwM2UzNTBmMi8wLzMxMzAzMzJlMzgzNDJlMzEzMTM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1R1MA0GCSqG
SIb3DQEBCwUAA4IBAQA8N0MpHnJmbsK0LkU9N+sj3Fz3RzWl/CPST8WFxLVjxcdO
kxoFdVj1foPtNPqnwZ9Qel6gHDykK5wldDwUhtpSoJyXriGIPwrxtexmN/vleSGF
E+G3B2MkdFA7LZx3dA6LRGScaY7c0hVJp/BsdArCzcQOM7+u0+eZZnGylTgwMm6B
1BwMVSz2h14EKWSIjGMedd6Bapo2esZ+7FalJplr4liUeQyrE+j9qU0t/UpG1MNs
728KpX8GexQ87qVPvFNQ1PGxOFgr96rXYDHmDu7oReWqa4IoMk/3cBBgxAv91Kj9
GrzYGNqGZ7Lfvb02sBW+KD8I1nQy0bRGxd2EqbfV
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:43 2025 by rpki-client