Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa
File: 3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: 28zVUwIfauOaNkqHnh0ZLVPJlAu2ZRa+tGqxdNY0Rgo=
Subject key identifier: 53:75:B6:84:59:92:84:EA:DF:3B:F0:F1:D8:08:53:39:DF:2F:06:F7
Certificate issuer: /CN=DEB4279F0D4CD8368462787573162FB753A9B04B
Certificate serial: 4CA6B1CB85A2167884991C444842186B2D29EE79
Authority key identifier: DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa
Signing time: Thu 05 Dec 2024 05:00:00 +0000
ROA not before: Thu 05 Dec 2024 04:55:00 +0000
ROA not after: Thu 04 Dec 2025 05:00:00 +0000
asID: 139952
IP address blocks: 103.31.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:a6:b1:cb:85:a2:16:78:84:99:1c:44:48:42:18:6b:2d:29:ee:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DEB4279F0D4CD8368462787573162FB753A9B04B
Validity
Not Before: Dec 5 04:55:00 2024 GMT
Not After : Dec 4 05:00:00 2025 GMT
Subject: CN=5375B684599284EADF3BF0F1D8085339DF2F06F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:8c:8c:96:c1:50:ec:1c:52:84:30:7e:63:
91:6e:fa:72:12:b2:37:7b:6f:2f:ee:ae:12:06:0b:
dc:36:ee:d9:20:93:d6:da:c0:1c:2b:5e:39:72:e1:
d5:88:63:1d:cb:85:77:0d:c2:1e:3b:d4:a4:57:64:
49:2f:7f:ea:f9:31:d6:60:ba:bb:3a:a4:63:32:b4:
d3:02:9d:cb:70:b3:13:f1:96:c5:f9:24:94:01:52:
0d:5f:bb:69:dc:5a:01:41:f8:f4:83:35:81:7a:75:
18:1f:17:96:a1:09:b3:c0:2a:c2:3f:75:68:da:d2:
6a:bd:d0:e5:78:da:6f:7d:ee:10:74:9e:0e:45:b5:
59:fa:11:6b:1f:7c:dc:da:b6:bf:12:41:43:a3:fb:
07:a0:79:67:fe:f4:fb:08:e2:a2:a8:a5:38:37:28:
0e:f7:51:bd:d1:23:7d:3d:11:ad:f7:e3:2b:40:2b:
f6:00:0a:d8:4c:f3:96:95:4a:ab:ab:8e:57:e6:0b:
89:73:db:0b:2b:92:b1:f6:03:8b:fa:f8:cb:d1:c3:
97:67:a9:7b:b1:8e:26:82:f7:d7:e9:17:1d:b3:45:
88:31:c9:cf:56:fa:3d:8b:0b:b0:35:53:ff:28:e0:
63:ff:16:77:cc:84:69:b9:02:d8:93:a4:67:e0:aa:
04:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:B6:84:59:92:84:EA:DF:3B:F0:F1:D8:08:53:39:DF:2F:06:F7
X509v3 Authority Key Identifier:
keyid:DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.31.240.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d6:fd:1d:9d:9b:cd:5a:b4:97:77:45:a3:49:66:a3:05:a9:
da:6c:6d:58:68:b5:16:31:41:f5:03:a4:ba:d7:9a:b0:2d:0e:
98:9a:54:ed:fc:02:39:39:38:26:58:98:be:50:56:58:f7:9e:
ef:06:6a:e0:86:8e:f0:b9:c5:32:73:e9:0d:61:1e:9d:13:29:
cb:09:66:41:30:64:c4:ef:8c:c9:a4:c9:b8:71:43:06:f9:34:
af:a9:4e:9b:25:bc:5d:f5:b6:6b:07:98:2c:68:ec:e3:89:cc:
76:9c:33:a9:a7:8e:4e:c3:22:f4:46:fa:80:3a:34:58:85:f1:
db:68:ed:7c:dc:76:02:f2:bf:04:c0:43:7a:d1:ed:a5:8b:fd:
9f:50:30:ba:9c:31:b8:12:40:de:b3:44:8b:51:3d:a8:ce:a8:
79:bc:2f:bb:4e:75:09:b5:a2:b7:bf:7f:0f:a7:5c:8b:46:73:
8e:d5:83:1a:4b:58:74:e4:9e:df:5e:88:a7:95:d1:d0:a6:83:
19:41:0e:b3:d6:a6:a2:f1:c6:e2:0c:61:df:97:bd:f1:d6:30:
c2:9c:9e:c1:a4:d9:28:44:b3:c3:cb:88:bc:fb:98:46:8c:8a:
99:b0:d8:21:9e:01:ff:0c:84:6e:66:9b:b3:58:81:c0:d1:c6:
30:4a:de:9c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUTKaxy4WiFniEmRxESEIYay0p7nkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1
M0E5QjA0QjAeFw0yNDEyMDUwNDU1MDBaFw0yNTEyMDQwNTAwMDBaMDMxMTAvBgNV
BAMTKDUzNzVCNjg0NTk5Mjg0RUFERjNCRjBGMUQ4MDg1MzM5REYyRjA2RjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfrYyMlsFQ7BxShDB+Y5Fu+nIS
sjd7by/urhIGC9w27tkgk9bawBwrXjly4dWIYx3LhXcNwh471KRXZEkvf+r5MdZg
urs6pGMytNMCnctwsxPxlsX5JJQBUg1fu2ncWgFB+PSDNYF6dRgfF5ahCbPAKsI/
dWja0mq90OV42m997hB0ng5FtVn6EWsffNzatr8SQUOj+wegeWf+9PsI4qKopTg3
KA73Ub3RI309Ea334ytAK/YACthM85aVSqurjlfmC4lz2wsrkrH2A4v6+MvRw5dn
qXuxjiaC99fpFx2zRYgxyc9W+j2LC7A1U/8o4GP/FnfMhGm5AtiTpGfgqgSbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUU3W2hFmShOrfO/Dx2AhTOd8vBvcwHwYDVR0j
BBgwFoAU3rQnnw1M2DaEYnh1cxYvt1OpsEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
NDMwMzRhYS1mMzljLTQ4ZjUtODUyZS1kMWJkN2YxN2FhNDIvMC9ERUI0Mjc5RjBE
NENEODM2ODQ2Mjc4NzU3MzE2MkZCNzUzQTlCMDRCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1M0E5
QjA0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04
NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/wMA0GCSqG
SIb3DQEBCwUAA4IBAQBS1v0dnZvNWrSXd0WjSWajBanabG1YaLUWMUH1A6S615qw
LQ6YmlTt/AI5OTgmWJi+UFZY957vBmrgho7wucUyc+kNYR6dEynLCWZBMGTE74zJ
pMm4cUMG+TSvqU6bJbxd9bZrB5gsaOzjicx2nDOpp45OwyL0RvqAOjRYhfHbaO18
3HYC8r8EwEN60e2li/2fUDC6nDG4EkDes0SLUT2ozqh5vC+7TnUJtaK3v38Pp1yL
RnOO1YMaS1h05J7fXoinldHQpoMZQQ6z1qai8cbiDGHfl73x1jDCnJ7BpNkoRLPD
y4i8+5hGjIqZsNghngH/DIRuZpuzWIHA0cYwSt6c
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:43:04 2025 by rpki-client