Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa
File: 3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa (raw, json)
Hash identifier: sLjEyNLP44oLLTNBz1jIEt6iKSNqyKrmkOKLSr9k0lg=
Subject key identifier: FD:63:E6:6A:0F:73:93:4B:0A:68:56:0D:33:C8:F1:A3:BB:C2:AE:36
Certificate issuer: /CN=8DAFDBD814B60F568505D65130E4661FCD7D665F
Certificate serial: 444D83B26E8B668411AD3B348ED6A1D15BEC0CD0
Authority key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa
Signing time: Sun 16 Jun 2024 02:00:01 +0000
ROA not before: Sun 16 Jun 2024 01:55:01 +0000
ROA not after: Sun 15 Jun 2025 02:00:01 +0000
asID: 142319
IP address blocks: 103.168.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:4d:83:b2:6e:8b:66:84:11:ad:3b:34:8e:d6:a1:d1:5b:ec:0c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F
Validity
Not Before: Jun 16 01:55:01 2024 GMT
Not After : Jun 15 02:00:01 2025 GMT
Subject: CN=FD63E66A0F73934B0A68560D33C8F1A3BBC2AE36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:ea:82:e4:09:44:e1:bf:51:7f:b0:5a:a1:
c8:9e:52:66:b0:25:79:58:ab:d0:3e:8a:90:a5:c7:
07:04:42:c9:30:87:fa:1b:c8:56:0e:4e:ae:41:4a:
55:e0:82:02:ff:98:67:ee:3a:6a:df:b6:2b:b0:45:
99:84:8b:fa:b4:88:8c:60:6e:19:c4:20:6b:5c:f8:
91:ac:29:11:bd:4c:69:f5:a4:3e:06:16:32:33:5a:
6c:f5:5d:ae:1a:6a:23:12:06:ae:1c:7f:19:d7:11:
2a:de:c7:07:fd:b9:3d:60:ec:3e:48:2e:a9:57:41:
80:d4:9c:56:33:74:8b:ef:98:de:4a:66:8c:80:27:
9d:01:5f:06:3a:aa:38:47:13:d5:0e:2c:1e:e4:71:
75:d4:d9:3f:be:4e:ec:4e:e7:d1:49:2c:14:42:2a:
42:4e:fa:27:4e:a9:32:6f:d9:b7:e3:f9:02:64:77:
6a:ed:4f:d6:57:9c:cb:e4:ce:ae:e5:a3:98:c0:a2:
e8:d1:b7:77:c1:dd:77:59:cb:8d:83:87:14:18:31:
5c:d4:f9:b3:64:5b:95:54:d8:c9:0a:25:d4:5a:c4:
af:36:b2:29:28:eb:5f:9f:49:1d:30:58:e4:a5:bc:
26:05:26:5a:dc:03:1b:37:97:07:e5:00:01:b2:a4:
cc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:63:E6:6A:0F:73:93:4B:0A:68:56:0D:33:C8:F1:A3:BB:C2:AE:36
X509v3 Authority Key Identifier:
keyid:8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.190.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:1f:d7:72:bc:84:72:77:b6:a1:d5:06:67:3e:c8:72:e7:eb:
64:92:8b:ab:ad:75:2e:7a:18:d6:b7:6b:1a:09:ae:61:fa:95:
87:3c:f2:84:db:2b:2e:ce:12:01:29:9a:88:1b:c9:b7:c9:8b:
8d:5d:42:ca:e1:75:df:f1:a6:6b:b5:d5:25:51:68:0f:93:12:
3f:77:59:ee:5f:64:40:c1:de:18:66:66:f5:bb:da:e4:f0:7b:
dd:fc:b8:5d:4f:38:54:1d:5d:9b:a7:20:3d:de:3b:14:4c:20:
0a:7d:52:7e:b8:60:05:7f:05:90:46:95:1d:5a:c4:31:af:d0:
cd:0c:6c:bb:8a:e5:1d:be:1c:4b:dc:da:61:ca:46:a2:c2:38:
4b:38:6c:64:22:a9:3d:8d:a8:15:4f:ac:b8:a6:ed:5d:f4:9c:
49:3e:9a:78:eb:18:e2:cf:25:8c:d5:5e:be:2e:28:53:15:f2:
d3:52:de:53:3f:c3:f4:60:58:59:94:b4:3f:57:08:be:6a:83:
17:05:29:5d:6f:07:f9:db:81:e6:e6:98:33:4b:8f:d0:3c:9d:
93:93:c8:d7:ca:f4:e9:63:b5:0f:a0:d4:88:29:e8:cd:60:8e:
c4:63:6d:27:d7:77:ef:51:e4:7e:48:73:13:73:61:b0:5e:77:
36:de:b1:cf
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIURE2Dsm6LZoQRrTs0jtah0VvsDNAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZD
RDdENjY1RjAeFw0yNDA2MTYwMTU1MDFaFw0yNTA2MTUwMjAwMDFaMDMxMTAvBgNV
BAMTKEZENjNFNjZBMEY3MzkzNEIwQTY4NTYwRDMzQzhGMUEzQkJDMkFFMzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDs+qC5AlE4b9Rf7BaocieUmaw
JXlYq9A+ipClxwcEQskwh/obyFYOTq5BSlXgggL/mGfuOmrftiuwRZmEi/q0iIxg
bhnEIGtc+JGsKRG9TGn1pD4GFjIzWmz1Xa4aaiMSBq4cfxnXESrexwf9uT1g7D5I
LqlXQYDUnFYzdIvvmN5KZoyAJ50BXwY6qjhHE9UOLB7kcXXU2T++TuxO59FJLBRC
KkJO+idOqTJv2bfj+QJkd2rtT9ZXnMvkzq7lo5jAoujRt3fB3XdZy42DhxQYMVzU
+bNkW5VU2MkKJdRaxK82siko61+fSR0wWOSlvCYFJlrcAxs3lwflAAGypMwpAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU/WPmag9zk0sKaFYNM8jxo7vCrjYwHwYDVR0j
BBgwFoAUja/b2BS2D1aFBdZRMORmH819Zl8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMC84REFGREJEODE0
QjYwRjU2ODUwNUQ2NTEzMEU0NjYxRkNEN0Q2NjVGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZDRDdE
NjY1Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFkLTY2YjktNGYyOC1h
N2M1LWU5YTlmZTEyMGFkNy8wLzMxMzAzMzJlMzEzNjM4MmUzMTM5MzAyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqL4wDQYJ
KoZIhvcNAQELBQADggEBAAwf13K8hHJ3tqHVBmc+yHLn62SSi6utdS56GNa3axoJ
rmH6lYc88oTbKy7OEgEpmogbybfJi41dQsrhdd/xpmu11SVRaA+TEj93We5fZEDB
3hhmZvW72uTwe938uF1POFQdXZunID3eOxRMIAp9Un64YAV/BZBGlR1axDGv0M0M
bLuK5R2+HEvc2mHKRqLCOEs4bGQiqT2NqBVPrLim7V30nEk+mnjrGOLPJYzVXr4u
KFMV8tNS3lM/w/RgWFmUtD9XCL5qgxcFKV1vB/nbgebmmDNLj9A8nZOTyNfK9Olj
tQ+g1Igp6M1gjsRjbSfXd+9R5H5IcxNzYbBedzbesc8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:39 2025 by rpki-client