Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/63635e25-8599-48ae-bdcb-e323dfc896ec/0/3130332e3134392e33342e302f32342d3234203d3e203234353334.roa
File: 3130332e3134392e33342e302f32342d3234203d3e203234353334.roa (raw, json)
Hash identifier: ojZj7Wb0FBggpx1qoMKEQ4y4llf8TivjR+QLGf4S/Ho=
Subject key identifier: A7:07:CB:C5:73:0E:FA:63:83:49:94:9C:B4:5A:7A:68:5F:45:6F:C8
Certificate issuer: /CN=AEA11BA0E9BE134F2AF5C9C69EB1FF585E4F3AB7
Certificate serial: 46E25FEBAB526BA80395A814439D3ED2E00678AB
Authority key identifier: AE:A1:1B:A0:E9:BE:13:4F:2A:F5:C9:C6:9E:B1:FF:58:5E:4F:3A:B7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEA11BA0E9BE134F2AF5C9C69EB1FF585E4F3AB7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/63635e25-8599-48ae-bdcb-e323dfc896ec/0/3130332e3134392e33342e302f32342d3234203d3e203234353334.roa
Signing time: Fri 28 Mar 2025 10:02:23 +0000
ROA not before: Fri 28 Mar 2025 09:57:23 +0000
ROA not after: Fri 27 Mar 2026 10:02:23 +0000
asID: 24534
IP address blocks: 103.149.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:e2:5f:eb:ab:52:6b:a8:03:95:a8:14:43:9d:3e:d2:e0:06:78:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AEA11BA0E9BE134F2AF5C9C69EB1FF585E4F3AB7
Validity
Not Before: Mar 28 09:57:23 2025 GMT
Not After : Mar 27 10:02:23 2026 GMT
Subject: CN=A707CBC5730EFA638349949CB45A7A685F456FC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:56:e8:a2:37:8d:de:cf:58:34:9a:97:ab:3a:
88:6c:a0:5b:b0:52:82:59:1d:39:07:d1:d1:d9:8c:
c3:33:ca:90:3a:0e:48:1b:f6:c1:a6:80:2a:97:97:
9b:29:02:84:18:96:e6:eb:76:ab:5c:ef:de:34:7a:
da:76:00:84:65:26:4f:e2:a0:93:8f:57:de:ab:ce:
ff:87:60:c0:52:54:9d:0d:61:b4:ab:89:4c:76:5a:
6e:fc:4a:96:51:8a:24:42:32:33:81:43:e2:70:43:
bc:6b:78:3e:68:f7:4f:b5:96:da:d0:a6:e9:14:62:
34:81:dd:d4:00:77:a9:46:21:10:13:26:ed:8f:78:
ce:90:9a:49:68:37:a6:ce:13:0e:7d:c3:8d:f2:05:
37:27:4c:58:93:39:cc:99:82:20:df:da:3a:01:63:
cb:f4:d8:8d:49:e7:de:2e:a7:61:c7:0a:87:d1:9d:
52:16:bd:bd:9d:1a:5b:0a:82:78:64:66:44:28:27:
be:a9:fb:1e:da:52:95:54:58:e6:e5:c9:a8:8b:08:
aa:a4:f9:40:22:68:4a:24:01:8d:b9:34:2e:d8:19:
64:88:3c:a1:ef:78:86:78:96:90:9e:03:20:17:85:
7f:91:9c:e8:6a:73:0a:88:5f:a5:b3:ff:d4:a0:74:
85:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:07:CB:C5:73:0E:FA:63:83:49:94:9C:B4:5A:7A:68:5F:45:6F:C8
X509v3 Authority Key Identifier:
keyid:AE:A1:1B:A0:E9:BE:13:4F:2A:F5:C9:C6:9E:B1:FF:58:5E:4F:3A:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/63635e25-8599-48ae-bdcb-e323dfc896ec/0/AEA11BA0E9BE134F2AF5C9C69EB1FF585E4F3AB7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEA11BA0E9BE134F2AF5C9C69EB1FF585E4F3AB7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63635e25-8599-48ae-bdcb-e323dfc896ec/0/3130332e3134392e33342e302f32342d3234203d3e203234353334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:20:39:e4:46:1b:86:60:a3:ce:68:3b:7e:8f:62:3c:a9:79:
3c:1d:ad:c8:98:90:64:42:2f:ca:e5:ad:4c:09:17:f8:b9:88:
dc:d2:84:6f:e4:96:d3:31:13:15:62:d2:0d:43:97:30:f2:7d:
14:74:e7:40:f0:e7:82:87:3b:09:f8:db:e0:f1:ae:7b:e3:93:
e3:63:c7:be:28:fb:50:c4:f8:51:76:44:25:f4:10:94:6b:ce:
26:3b:af:d2:f1:08:f1:4f:95:ad:0b:c2:d7:00:46:fa:74:48:
35:a4:6e:2d:90:ac:73:65:44:d2:d3:f6:39:9b:9b:07:7e:ca:
79:de:b5:5c:28:ab:ac:ef:96:10:88:cd:08:f2:1e:53:ea:cb:
c8:9a:eb:28:fb:f6:0c:a3:c9:aa:67:7b:1c:8b:a0:bf:c1:23:
10:59:b0:e2:36:88:8c:c5:33:02:16:ad:7e:0e:d5:36:35:84:
7a:fc:5e:4c:40:fe:ad:68:cd:4c:58:09:6d:eb:74:46:b5:c2:
9a:39:b9:e9:a4:c5:ca:a6:20:3d:7c:ff:ef:c8:0a:52:32:c2:
70:ec:c2:d6:cf:7d:99:a9:22:3e:b1:0a:72:bf:cc:c2:0c:33:
c2:ca:f9:62:64:88:2f:b8:8e:ec:a0:c0:1a:c2:91:92:81:51:
fa:94:38:b5
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIURuJf66tSa6gDlagUQ50+0uAGeKswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUVBMTFCQTBFOUJFMTM0RjJBRjVDOUM2OUVCMUZGNTg1
RTRGM0FCNzAeFw0yNTAzMjgwOTU3MjNaFw0yNjAzMjcxMDAyMjNaMDMxMTAvBgNV
BAMTKEE3MDdDQkM1NzMwRUZBNjM4MzQ5OTQ5Q0I0NUE3QTY4NUY0NTZGQzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVuiiN43ez1g0mperOohsoFuw
UoJZHTkH0dHZjMMzypA6Dkgb9sGmgCqXl5spAoQYlubrdqtc7940etp2AIRlJk/i
oJOPV96rzv+HYMBSVJ0NYbSriUx2Wm78SpZRiiRCMjOBQ+JwQ7xreD5o90+1ltrQ
pukUYjSB3dQAd6lGIRATJu2PeM6QmkloN6bOEw59w43yBTcnTFiTOcyZgiDf2joB
Y8v02I1J594up2HHCofRnVIWvb2dGlsKgnhkZkQoJ76p+x7aUpVUWOblyaiLCKqk
+UAiaEokAY25NC7YGWSIPKHveIZ4lpCeAyAXhX+RnOhqcwqIX6Wz/9SgdIXdAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUpwfLxXMO+mODSZSctFp6aF9Fb8gwHwYDVR0j
BBgwFoAUrqEboOm+E08q9cnGnrH/WF5POrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MzYzNWUyNS04NTk5LTQ4YWUtYmRjYi1lMzIzZGZjODk2ZWMvMC9BRUExMUJBMEU5
QkUxMzRGMkFGNUM5QzY5RUIxRkY1ODVFNEYzQUI3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUVBMTFCQTBFOUJFMTM0RjJBRjVDOUM2OUVCMUZGNTg1RTRG
M0FCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjM1ZTI1LTg1OTktNDhhZS1i
ZGNiLWUzMjNkZmM4OTZlYy8wLzMxMzAzMzJlMzEzNDM5MmUzMzM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVIjANBgkqhkiG
9w0BAQsFAAOCAQEAKiA55EYbhmCjzmg7fo9iPKl5PB2tyJiQZEIvyuWtTAkX+LmI
3NKEb+SW0zETFWLSDUOXMPJ9FHTnQPDngoc7Cfjb4PGue+OT42PHvij7UMT4UXZE
JfQQlGvOJjuv0vEI8U+VrQvC1wBG+nRINaRuLZCsc2VE0tP2OZubB37Ked61XCir
rO+WEIjNCPIeU+rLyJrrKPv2DKPJqmd7HIugv8EjEFmw4jaIjMUzAhatfg7VNjWE
evxeTED+rWjNTFgJbet0RrXCmjm56aTFyqYgPXz/78gKUjLCcOzC1s99makiPrEK
cr/Mwgwzwsr5YmSIL7iO7KDAGsKRkoFR+pQ4tQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:18:23 2025 by rpki-client