Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa
File: 3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa (raw, json)
Hash identifier: nxYOm0XXR50V6GnhRaIQYUBF2UG5sIA0HyaLTjhPLDc=
Subject key identifier: 23:14:46:7B:AB:8F:E3:77:DE:FA:FA:BF:7A:7B:B1:23:F8:F7:EC:1E
Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800
Certificate serial: 03D2E14A614B5DB5FCC192A1BD43AB65E73D4C5D
Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa
Signing time: Mon 01 Jul 2024 01:05:42 +0000
ROA not before: Mon 01 Jul 2024 01:00:42 +0000
ROA not after: Mon 30 Jun 2025 01:05:42 +0000
asID: 131746
IP address blocks: 103.248.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d2:e1:4a:61:4b:5d:b5:fc:c1:92:a1:bd:43:ab:65:e7:3d:4c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800
Validity
Not Before: Jul 1 01:00:42 2024 GMT
Not After : Jun 30 01:05:42 2025 GMT
Subject: CN=2314467BAB8FE377DEFAFABF7A7BB123F8F7EC1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:06:41:4b:d3:16:fa:ee:2e:c5:8c:4a:75:c0:
37:af:2f:48:69:59:37:f0:07:7c:b2:fb:71:db:3f:
10:0d:40:b2:98:c5:2b:9a:60:e2:7b:8c:ad:c6:c5:
79:97:ca:aa:ae:08:94:bd:d8:18:0e:a0:2a:2c:d9:
8e:5b:2b:02:26:25:49:83:72:aa:04:58:b0:1b:f4:
2c:09:b1:7f:d6:01:97:8c:e5:74:61:cd:12:75:c0:
27:a3:48:71:db:1e:08:37:98:60:59:41:74:c4:ee:
bc:d1:73:8e:0c:1f:f6:95:0d:35:da:5e:72:f9:c6:
7e:af:35:bd:56:17:95:1e:a0:b5:99:17:c5:e7:89:
c1:08:0e:c0:e3:0d:71:08:4f:98:d6:07:9b:ed:9c:
4e:d5:ea:3f:4c:65:12:9f:da:7c:6e:8b:f3:fd:74:
74:ea:7e:4e:c8:4d:ca:12:3f:14:6f:b9:bc:32:f8:
72:e4:36:2e:ea:5b:74:76:f4:29:8d:d0:3b:35:d1:
c4:bf:2e:a0:91:ad:fe:f8:d9:89:a5:b6:c9:e6:f7:
51:cd:eb:61:82:08:b6:c3:bb:d7:af:2e:40:25:b6:
8c:07:b8:06:a2:58:30:cb:f6:22:02:cb:33:55:b6:
68:b5:d9:af:86:90:d5:68:77:9e:2b:af:cb:ac:f8:
d9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:14:46:7B:AB:8F:E3:77:DE:FA:FA:BF:7A:7B:B1:23:F8:F7:EC:1E
X509v3 Authority Key Identifier:
keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e3234382e3139362e302f32322d3234203d3e20313331373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.196.0/22
Signature Algorithm: sha256WithRSAEncryption
04:aa:11:1c:3a:1f:f3:fd:73:cc:23:eb:27:91:a5:fc:dc:b1:
33:68:11:e7:08:d2:b3:2d:bc:d5:1f:97:18:49:f0:ca:f1:7b:
c9:49:33:a9:92:31:64:8a:a9:44:8f:b5:26:eb:92:8d:ef:e2:
10:2e:87:fa:0a:9d:89:4d:a7:dc:87:1e:9a:42:00:46:1c:af:
da:ca:12:1c:31:09:42:ed:02:13:43:2a:3d:18:44:7f:18:e9:
53:c8:ff:a1:02:16:a1:9b:8c:86:62:db:f9:64:11:92:48:d4:
36:57:0f:53:3c:10:33:84:d0:e9:3a:33:99:89:6e:6a:31:ee:
f9:aa:a6:59:4f:64:b9:86:09:81:00:f4:0d:69:1b:0f:64:66:
10:19:b1:d9:ea:0b:ae:f4:0e:00:ba:26:2c:5d:23:b7:ca:02:
85:88:37:63:9a:bb:d0:ac:9f:4a:f8:6f:df:de:6f:69:59:f3:
45:2c:94:99:99:7f:74:23:cf:f5:3b:f5:24:e6:39:32:c8:ba:
58:60:66:a9:f6:ff:ca:15:f1:cf:bb:82:cb:d8:64:0f:7f:24:
cc:0c:68:a5:1f:18:ab:e5:eb:e3:90:04:40:b3:f1:79:f8:bf:
59:50:c2:08:f6:f1:fa:03:bd:96:eb:cf:89:45:b8:24:0b:66:
60:af:8f:6e
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUA9LhSmFLXbX8wZKhvUOrZec9TF0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5
QzhFRTgwMDAeFw0yNDA3MDEwMTAwNDJaFw0yNTA2MzAwMTA1NDJaMDMxMTAvBgNV
BAMTKDIzMTQ0NjdCQUI4RkUzNzdERUZBRkFCRjdBN0JCMTIzRjhGN0VDMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBkFL0xb67i7FjEp1wDevL0hp
WTfwB3yy+3HbPxANQLKYxSuaYOJ7jK3GxXmXyqquCJS92BgOoCos2Y5bKwImJUmD
cqoEWLAb9CwJsX/WAZeM5XRhzRJ1wCejSHHbHgg3mGBZQXTE7rzRc44MH/aVDTXa
XnL5xn6vNb1WF5UeoLWZF8XnicEIDsDjDXEIT5jWB5vtnE7V6j9MZRKf2nxui/P9
dHTqfk7ITcoSPxRvubwy+HLkNi7qW3R29CmN0Ds10cS/LqCRrf742Ymltsnm91HN
62GCCLbDu9evLkAltowHuAaiWDDL9iICyzNVtmi12a+GkNVod54rr8us+NlVAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUIxRGe6uP43fe+vq/enuxI/j37B4wHwYDVR0j
BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3
NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF
RTgwMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i
YjlkLWY3NGI0OWM2YTY1NS8wLzMxMzAzMzJlMzIzNDM4MmUzMTM5MzYyZTMwMmYz
MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn+MQwDQYJ
KoZIhvcNAQELBQADggEBAASqERw6H/P9c8wj6yeRpfzcsTNoEecI0rMtvNUflxhJ
8Mrxe8lJM6mSMWSKqUSPtSbrko3v4hAuh/oKnYlNp9yHHppCAEYcr9rKEhwxCULt
AhNDKj0YRH8Y6VPI/6ECFqGbjIZi2/lkEZJI1DZXD1M8EDOE0Ok6M5mJbmox7vmq
pllPZLmGCYEA9A1pGw9kZhAZsdnqC670DgC6JixdI7fKAoWIN2Oau9Csn0r4b9/e
b2lZ80UslJmZf3Qjz/U79STmOTLIulhgZqn2/8oV8c+7gsvYZA9/JMwMaKUfGKvl
6+OQBECz8Xn4v1lQwgj28foDvZbrz4lFuCQLZmCvj24=
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:39:16 2025 by rpki-client