Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32322d3232203d3e203137343430.roa
File: 3130332e3230392e3234382e302f32322d3232203d3e203137343430.roa (raw, json)
Hash identifier: bxMqQdmLP5iAIyO7Ji4m+VKUe6lx9ze2fk4so2/7lgk=
Subject key identifier: FB:2B:11:B8:A4:07:40:85:B9:91:B7:C7:ED:EF:28:6F:93:C5:DE:28
Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Certificate serial: 4734C2AE153074CF3291CBEE835076AE401CFC83
Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32322d3232203d3e203137343430.roa
Signing time: Wed 20 Nov 2024 07:00:35 +0000
ROA not before: Wed 20 Nov 2024 06:55:35 +0000
ROA not after: Wed 19 Nov 2025 07:00:35 +0000
asID: 17440
IP address blocks: 103.209.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:34:c2:ae:15:30:74:cf:32:91:cb:ee:83:50:76:ae:40:1c:fc:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Validity
Not Before: Nov 20 06:55:35 2024 GMT
Not After : Nov 19 07:00:35 2025 GMT
Subject: CN=FB2B11B8A4074085B991B7C7EDEF286F93C5DE28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fa:6e:7d:28:a2:30:ab:9d:83:52:16:db:30:
7f:43:b2:93:a6:82:9d:02:05:d7:c2:8d:92:de:06:
67:21:c6:52:d9:37:e3:1c:53:af:67:61:3d:43:ea:
41:09:d2:54:e2:7e:d4:8c:5a:ed:18:d7:1f:98:f3:
04:5b:40:7f:e7:15:d4:22:bd:9f:6a:d9:cf:06:8f:
af:c1:13:62:86:af:2b:f8:21:10:52:87:f6:25:c5:
cc:d5:52:85:8f:29:9c:1e:25:7b:c7:bb:48:90:8e:
74:63:d1:c2:01:e4:88:f5:9a:74:6e:e8:da:a5:b3:
54:e7:b9:18:fa:b8:e9:2e:2f:2f:ca:b7:bb:d4:12:
91:1a:56:f5:78:03:20:08:dd:76:84:3c:ea:09:05:
79:68:64:64:98:66:c4:a9:b6:b3:83:31:95:63:0e:
7f:80:b3:d7:80:17:d3:1c:1b:05:9e:10:99:a3:c7:
b2:f8:bb:99:11:3b:4f:32:e1:7c:15:44:23:ca:a1:
bb:be:b6:eb:3f:21:3b:58:21:6c:87:5c:41:27:92:
25:b7:b3:29:56:d6:b2:06:56:05:53:8a:7a:b8:81:
34:62:27:0a:91:28:1e:f3:aa:8c:32:63:35:65:7e:
14:d0:0f:ff:91:a2:9b:0c:a8:98:10:20:07:09:4a:
35:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2B:11:B8:A4:07:40:85:B9:91:B7:C7:ED:EF:28:6F:93:C5:DE:28
X509v3 Authority Key Identifier:
keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32322d3232203d3e203137343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.209.248.0/22
Signature Algorithm: sha256WithRSAEncryption
83:c0:78:c2:24:92:e1:a0:af:8a:19:0f:7e:3a:d1:d3:3c:ec:
8f:16:96:4e:aa:b6:b3:64:84:9c:db:ec:d2:c7:62:96:73:40:
3c:d8:5f:6a:1f:9b:bc:01:8a:15:29:a3:e8:28:78:fe:9d:94:
f6:e1:8d:4c:b5:70:05:50:8d:7c:93:05:6a:eb:82:33:ca:60:
82:de:21:89:82:d6:55:9a:50:ea:e5:47:a8:18:ef:6b:4e:38:
18:9b:57:30:85:66:53:5c:b9:ba:23:57:ee:b0:1b:19:98:7a:
04:bd:83:59:d8:34:19:71:a2:5d:e1:e1:6e:2a:8c:e2:4c:62:
27:39:eb:68:8d:87:70:3c:8d:84:7e:c2:66:62:89:31:00:13:
a6:08:06:00:9d:bf:60:fa:33:2c:30:1d:b5:c3:02:bf:da:5f:
59:49:32:90:27:14:8f:f6:3f:c1:32:18:15:58:b1:ba:03:8f:
16:9f:01:ea:7b:c4:d2:8e:67:17:b8:5a:96:4d:da:19:40:4a:
d0:9b:c4:4a:63:72:d6:07:7d:e3:03:29:df:f2:c5:41:ef:ed:
3b:fc:1d:85:de:d1:c2:a8:ab:1b:c6:d1:a3:12:40:ac:ee:a6:
62:07:78:cd:6f:84:14:09:59:12:f8:00:8b:4c:ad:a7:e0:2a:
de:ee:a4:57
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIURzTCrhUwdM8ykcvug1B2rkAc/IMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5
QkU1NzBFNzAeFw0yNDExMjAwNjU1MzVaFw0yNTExMTkwNzAwMzVaMDMxMTAvBgNV
BAMTKEZCMkIxMUI4QTQwNzQwODVCOTkxQjdDN0VERUYyODZGOTNDNURFMjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+m59KKIwq52DUhbbMH9DspOm
gp0CBdfCjZLeBmchxlLZN+McU69nYT1D6kEJ0lTiftSMWu0Y1x+Y8wRbQH/nFdQi
vZ9q2c8Gj6/BE2KGryv4IRBSh/YlxczVUoWPKZweJXvHu0iQjnRj0cIB5Ij1mnRu
6Nqls1TnuRj6uOkuLy/Kt7vUEpEaVvV4AyAI3XaEPOoJBXloZGSYZsSptrODMZVj
Dn+As9eAF9McGwWeEJmjx7L4u5kRO08y4XwVRCPKobu+tus/ITtYIWyHXEEnkiW3
sylW1rIGVgVTinq4gTRiJwqRKB7zqowyYzVlfhTQD/+RopsMqJgQIAcJSjUtAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU+ysRuKQHQIW5kbfH7e8ob5PF3igwHwYDVR0j
BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw
MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1
NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i
ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz
MjMyMmQzMjMyMjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ9H4MA0GCSqG
SIb3DQEBCwUAA4IBAQCDwHjCJJLhoK+KGQ9+OtHTPOyPFpZOqrazZISc2+zSx2KW
c0A82F9qH5u8AYoVKaPoKHj+nZT24Y1MtXAFUI18kwVq64IzymCC3iGJgtZVmlDq
5UeoGO9rTjgYm1cwhWZTXLm6I1fusBsZmHoEvYNZ2DQZcaJd4eFuKoziTGInOeto
jYdwPI2EfsJmYokxABOmCAYAnb9g+jMsMB21wwK/2l9ZSTKQJxSP9j/BMhgVWLG6
A48WnwHqe8TSjmcXuFqWTdoZQErQm8RKY3LWB33jAynf8sVB7+07/B2F3tHCqKsb
xtGjEkCs7qZiB3jNb4QUCVkS+ACLTK2n4Cre7qRX
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:00:47 2025 by rpki-client