Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa
File: 3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa (raw, json)
Hash identifier: E6zY9IF+LuOZ3BAlN5O+kmO2W8oIfhWG4MJCZRG/08w=
Subject key identifier: 6A:29:E3:76:C9:E4:31:AB:83:8F:46:7C:C5:C8:EF:BE:08:6C:21:30
Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Certificate serial: 0A34DE4131808EC4345FCFC4F842684B5AECA445
Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa
Signing time: Fri 14 Jun 2024 11:01:29 +0000
ROA not before: Fri 14 Jun 2024 10:56:29 +0000
ROA not after: Fri 13 Jun 2025 11:01:29 +0000
asID: 17440
IP address blocks: 103.209.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:34:de:41:31:80:8e:c4:34:5f:cf:c4:f8:42:68:4b:5a:ec:a4:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7
Validity
Not Before: Jun 14 10:56:29 2024 GMT
Not After : Jun 13 11:01:29 2025 GMT
Subject: CN=6A29E376C9E431AB838F467CC5C8EFBE086C2130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:42:db:b7:1d:a3:ed:60:c7:53:1e:92:93:5d:
8b:d9:fe:ab:26:45:57:c5:4c:dc:8e:e2:34:cd:c6:
80:27:43:0f:25:44:89:7a:04:d3:0b:3f:0f:01:d9:
9e:73:f7:eb:54:b6:68:a5:ac:1e:c1:85:da:e6:9f:
8f:2b:14:b3:09:16:72:c0:16:8f:88:e7:93:f7:a0:
84:f2:97:88:28:b3:43:8b:ed:41:dd:cc:41:ac:38:
97:93:48:e4:e2:67:bd:ec:83:87:da:be:d5:d8:fb:
b9:97:dc:f0:4e:45:1d:de:b3:bb:25:18:d7:03:88:
15:dd:6a:bb:03:0a:b0:84:d7:4c:f8:05:a5:0c:73:
bb:95:c4:b7:11:c6:ab:12:12:64:ee:44:b3:df:a2:
b4:22:90:45:1f:96:06:83:8b:38:88:0e:e9:27:15:
ee:9e:db:66:f0:59:08:a9:0a:c9:12:57:b9:ab:8e:
cd:b7:bb:50:81:9c:35:b3:d2:7a:71:21:c2:49:40:
98:5c:2e:77:db:3a:13:80:43:9e:3c:6a:25:c1:fe:
45:cb:07:14:13:22:15:c1:77:f7:90:5f:73:0a:4d:
0c:42:20:57:7b:29:02:3e:81:29:61:e5:a8:b0:56:
96:12:3f:5e:6d:bf:c4:ec:f9:76:b9:d1:98:6e:f0:
3c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:29:E3:76:C9:E4:31:AB:83:8F:46:7C:C5:C8:EF:BE:08:6C:21:30
X509v3 Authority Key Identifier:
keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3235312e302f32342d3234203d3e203137343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.209.251.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:b9:1b:ad:5d:cd:75:3b:21:00:fc:04:d2:60:88:1f:d6:0e:
31:e9:08:ae:c9:72:8f:d1:11:6b:55:21:4e:f4:f4:69:4a:56:
68:49:1a:55:a3:1c:06:ab:a9:c6:5c:8e:b7:80:65:ce:7d:a5:
33:e5:be:30:63:35:de:f2:46:47:0e:e4:73:e7:64:79:44:22:
fe:51:79:e5:df:1a:b8:d8:77:1a:01:77:64:4e:df:5c:e5:b6:
cb:ee:46:88:7a:67:80:75:7f:21:57:24:42:2d:b7:f3:71:2a:
65:3a:d3:e6:1c:ce:72:bd:48:dd:0d:f6:ee:6f:2e:b3:28:39:
d9:a2:e4:57:e7:b1:38:36:da:0c:55:35:16:4c:de:94:6c:ef:
fc:97:24:b1:e6:67:40:47:57:ab:98:4d:0c:1e:df:29:3b:89:
87:81:17:b8:52:6b:6f:3d:05:0a:ac:79:eb:44:0d:de:e4:fc:
75:8b:da:de:d8:22:74:ea:3a:76:e8:47:f8:0e:b8:4d:b6:90:
9a:7f:6a:1e:8a:6f:b6:9e:97:e7:ad:0b:c4:b5:ee:d4:a9:98:
e7:a4:de:1b:36:b8:f4:ac:c5:21:bd:23:f8:7d:02:28:17:82:
eb:3c:b2:50:27:c4:b6:94:22:22:d3:bc:96:5c:ab:af:2f:ae:
4a:5e:b9:42
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUCjTeQTGAjsQ0X8/E+EJoS1rspEUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5
QkU1NzBFNzAeFw0yNDA2MTQxMDU2MjlaFw0yNTA2MTMxMTAxMjlaMDMxMTAvBgNV
BAMTKDZBMjlFMzc2QzlFNDMxQUI4MzhGNDY3Q0M1QzhFRkJFMDg2QzIxMzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQtu3HaPtYMdTHpKTXYvZ/qsm
RVfFTNyO4jTNxoAnQw8lRIl6BNMLPw8B2Z5z9+tUtmilrB7Bhdrmn48rFLMJFnLA
Fo+I55P3oITyl4gos0OL7UHdzEGsOJeTSOTiZ73sg4favtXY+7mX3PBORR3es7sl
GNcDiBXdarsDCrCE10z4BaUMc7uVxLcRxqsSEmTuRLPforQikEUflgaDiziIDukn
Fe6e22bwWQipCskSV7mrjs23u1CBnDWz0npxIcJJQJhcLnfbOhOAQ548aiXB/kXL
BxQTIhXBd/eQX3MKTQxCIFd7KQI+gSlh5aiwVpYSP15tv8Ts+Xa50Zhu8DxfAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUainjdsnkMauDj0Z8xcjvvghsITAwHwYDVR0j
BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw
MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1
NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i
ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM1MzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H7MA0GCSqG
SIb3DQEBCwUAA4IBAQBduRutXc11OyEA/ATSYIgf1g4x6QiuyXKP0RFrVSFO9PRp
SlZoSRpVoxwGq6nGXI63gGXOfaUz5b4wYzXe8kZHDuRz52R5RCL+UXnl3xq42Hca
AXdkTt9c5bbL7kaIemeAdX8hVyRCLbfzcSplOtPmHM5yvUjdDfbuby6zKDnZouRX
57E4NtoMVTUWTN6UbO/8lySx5mdAR1ermE0MHt8pO4mHgRe4UmtvPQUKrHnrRA3e
5Px1i9re2CJ06jp26Ef4DrhNtpCaf2oeim+2npfnrQvEte7UqZjnpN4bNrj0rMUh
vSP4fQIoF4LrPLJQJ8S2lCIi07yWXKuvL65KXrlC
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:06:01 2025 by rpki-client