Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa
File: 3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa (raw, json)
Hash identifier: k5t3dTLbkf5cumobFfO0JB27WkNENVQf5Ox/fOqEPps=
Subject key identifier: AC:A6:62:D1:87:C5:00:2D:D5:A4:20:D0:78:2C:3F:84:81:9C:89:C2
Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Certificate serial: 20851CCE5D8F6F3F566CDB10F7BE72ACC5C903B4
Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa
Signing time: Fri 14 Jun 2024 10:00:01 +0000
ROA not before: Fri 14 Jun 2024 09:55:01 +0000
ROA not after: Fri 13 Jun 2025 10:00:01 +0000
asID: 17440
IP address blocks: 103.209.248.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:85:1c:ce:5d:8f:6f:3f:56:6c:db:10:f7:be:72:ac:c5:c9:03:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Validity
Not Before: Jun 14 09:55:01 2024 GMT
Not After : Jun 13 10:00:01 2025 GMT
Subject: CN=ACA662D187C5002DD5A420D0782C3F84819C89C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:52:a5:a8:3b:a2:68:98:a6:92:0a:0a:51:
e5:95:b2:5f:b5:7b:5c:9f:de:af:56:9b:28:75:a0:
b7:f9:1f:3a:a3:98:b1:b0:82:2f:c2:2a:01:ed:cf:
8a:10:76:ad:08:00:4c:d4:bd:cd:af:62:3e:21:78:
37:f6:68:58:a4:5f:3f:43:76:43:cf:72:c6:1c:5e:
d2:6e:35:2e:b0:20:5f:1b:cd:e9:78:39:18:35:8f:
d5:cc:a3:fc:96:ec:5f:9f:8d:79:9c:04:74:60:b8:
8f:be:89:7f:e5:51:14:33:cc:9a:89:38:77:5e:77:
1a:d4:39:64:2d:de:02:ed:67:95:50:58:ff:83:9b:
14:8c:cf:bd:eb:d6:9a:4b:17:e0:5b:76:fd:c3:c5:
c0:df:d4:b7:2d:16:8f:98:95:aa:4a:10:84:f0:35:
46:73:ab:db:0e:7e:c1:f1:aa:5f:fc:b4:0a:d6:41:
93:b9:1c:06:87:7c:ec:02:76:f6:75:79:3b:be:34:
e0:4b:85:7e:40:9d:18:4d:e2:e7:af:20:6f:6b:3f:
c5:3e:f3:19:1c:16:2d:1b:6b:b9:47:2b:1d:65:c4:
1d:02:26:19:e3:30:60:43:3f:22:a2:6a:02:cb:63:
ec:32:0b:7a:54:33:47:92:56:d5:ff:1d:3e:fc:9f:
07:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A6:62:D1:87:C5:00:2D:D5:A4:20:D0:78:2C:3F:84:81:9C:89:C2
X509v3 Authority Key Identifier:
keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32332d3233203d3e203137343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.209.248.0/23
Signature Algorithm: sha256WithRSAEncryption
84:72:e2:e4:15:3c:e7:2f:f9:84:7d:c8:27:18:cb:74:1a:47:
cf:ab:8b:9b:e0:18:68:0f:50:dc:34:af:c3:d3:01:26:a1:fe:
d9:6e:e1:31:db:29:e9:82:b9:45:b1:dc:9f:21:28:e0:22:70:
83:22:e5:c6:6f:44:52:f8:62:23:8b:ab:dc:e2:85:9f:e6:7a:
07:bd:47:d1:68:bd:10:02:84:bf:57:1f:00:ff:63:5e:82:09:
a9:5b:f6:42:c4:c2:c7:46:00:aa:40:51:6a:b9:bc:6e:1d:4d:
cf:8d:fe:ee:32:04:86:40:3b:39:1d:b3:f3:8d:b5:f1:41:f1:
a6:27:38:fd:70:3d:b4:04:be:f2:c8:76:5a:cf:b1:f0:bb:ca:
d5:9e:91:dd:d8:69:5e:22:2a:55:ca:78:dd:e8:80:4c:38:ca:
7e:0a:0d:d7:ec:6e:70:18:2a:4e:c2:9d:f7:99:82:0a:cd:f5:
df:2c:f8:73:a0:47:8f:6a:45:a2:4a:91:d8:56:69:b0:be:31:
30:3c:6f:16:86:3e:65:03:0b:97:d1:08:de:bf:44:5d:ed:d3:
42:80:ce:4a:ac:78:d6:c7:31:41:a8:2d:ff:36:da:98:f4:af:
f5:0f:0d:58:87:e0:a5:6c:9b:ca:36:ec:a7:b0:43:47:e3:6a:
76:b7:d4:b1
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUIIUczl2Pbz9WbNsQ975yrMXJA7QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5
QkU1NzBFNzAeFw0yNDA2MTQwOTU1MDFaFw0yNTA2MTMxMDAwMDFaMDMxMTAvBgNV
BAMTKEFDQTY2MkQxODdDNTAwMkRENUE0MjBEMDc4MkMzRjg0ODE5Qzg5QzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCuVKlqDuiaJimkgoKUeWVsl+1
e1yf3q9Wmyh1oLf5HzqjmLGwgi/CKgHtz4oQdq0IAEzUvc2vYj4heDf2aFikXz9D
dkPPcsYcXtJuNS6wIF8bzel4ORg1j9XMo/yW7F+fjXmcBHRguI++iX/lURQzzJqJ
OHdedxrUOWQt3gLtZ5VQWP+DmxSMz73r1ppLF+Bbdv3DxcDf1LctFo+YlapKEITw
NUZzq9sOfsHxql/8tArWQZO5HAaHfOwCdvZ1eTu+NOBLhX5AnRhN4uevIG9rP8U+
8xkcFi0ba7lHKx1lxB0CJhnjMGBDPyKiagLLY+wyC3pUM0eSVtX/HT78nwcDAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUrKZi0YfFAC3VpCDQeCw/hIGcicIwHwYDVR0j
BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw
MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1
NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i
ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ9H4MA0GCSqG
SIb3DQEBCwUAA4IBAQCEcuLkFTznL/mEfcgnGMt0GkfPq4ub4BhoD1DcNK/D0wEm
of7ZbuEx2ynpgrlFsdyfISjgInCDIuXGb0RS+GIji6vc4oWf5noHvUfRaL0QAoS/
Vx8A/2NeggmpW/ZCxMLHRgCqQFFqubxuHU3Pjf7uMgSGQDs5HbPzjbXxQfGmJzj9
cD20BL7yyHZaz7Hwu8rVnpHd2GleIipVynjd6IBMOMp+Cg3X7G5wGCpOwp33mYIK
zfXfLPhzoEePakWiSpHYVmmwvjEwPG8Whj5lAwuX0Qjev0Rd7dNCgM5KrHjWxzFB
qC3/NtqY9K/1Dw1Yh+ClbJvKNuynsENH42p2t9Sx
-----END CERTIFICATE-----
Generated at Fri Feb 21 13:12:34 2025 by rpki-client