Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa
File: 3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa (raw, json)
Hash identifier: /rNqnQhLNaqVLN9Hq//q/+AhHgUOzogNFCC15aZgYGU=
Subject key identifier: BD:C4:3F:A8:6A:C8:A2:09:03:B2:5B:54:83:24:05:B8:10:DB:08:F8
Certificate issuer: /CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B
Certificate serial: 75C4A86DF5BAE946B839BE47FB861890B7C65975
Authority key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa
Signing time: Sat 17 Aug 2024 14:00:02 +0000
ROA not before: Sat 17 Aug 2024 13:55:02 +0000
ROA not after: Sat 16 Aug 2025 14:00:02 +0000
asID: 141985
IP address blocks: 103.167.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:c4:a8:6d:f5:ba:e9:46:b8:39:be:47:fb:86:18:90:b7:c6:59:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B
Validity
Not Before: Aug 17 13:55:02 2024 GMT
Not After : Aug 16 14:00:02 2025 GMT
Subject: CN=BDC43FA86AC8A20903B25B54832405B810DB08F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:db:c9:94:87:f1:94:9f:88:32:b7:89:96:
08:7b:84:64:46:cc:e1:f3:50:c3:43:4c:db:4f:c0:
0e:b7:93:31:e7:9d:a4:fe:f1:f0:ce:c1:58:54:5a:
db:65:94:8b:ae:2b:0e:cf:2f:5b:81:9e:34:a8:5e:
d8:57:6e:64:87:62:80:f6:94:1c:75:08:0a:2c:de:
92:3d:a3:85:44:11:9c:b8:b8:49:d9:42:e6:54:9f:
28:0a:70:04:b8:81:8c:5b:9d:94:27:9e:b7:5c:38:
f5:04:17:40:b0:bb:9e:92:7f:13:48:65:e0:e5:5b:
f3:69:69:fb:c7:3c:a2:ad:67:67:f6:22:01:db:1e:
fb:49:ed:13:a6:57:16:cb:a3:f0:34:7b:15:d3:70:
09:f8:e5:d4:11:04:fb:c2:b1:8c:f9:1f:1a:1a:4f:
bc:69:ea:a0:17:3a:0c:de:ee:b1:c1:f0:0c:a5:f7:
b6:a5:ac:87:bb:ba:ce:00:52:9c:45:a6:cf:68:6d:
f8:ad:1a:d5:92:5a:fa:be:ed:4e:7e:98:3e:bb:b7:
a6:27:c7:12:48:52:52:ad:e9:bd:42:e6:79:73:15:
07:fa:39:a0:1a:93:23:32:ba:2a:86:83:0e:83:e8:
11:ad:66:b3:92:fb:b9:b3:a6:5a:12:b7:00:72:94:
e5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C4:3F:A8:6A:C8:A2:09:03:B2:5B:54:83:24:05:B8:10:DB:08:F8
X509v3 Authority Key Identifier:
keyid:35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136392e302f32342d3234203d3e20313431393835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.167.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:20:67:13:7c:22:4f:b2:b1:31:df:27:dd:84:a3:b1:80:d2:
2a:12:c7:66:ac:5e:dc:fa:5b:87:9c:8a:e9:40:61:a9:f0:84:
6d:21:a1:98:66:a1:fa:3b:85:1c:17:ef:32:13:3e:1e:6c:99:
51:49:c4:c7:f8:cf:8b:c2:ad:60:a0:9f:e2:40:b7:75:63:6c:
f5:ae:ea:5d:f6:cd:11:42:a3:27:b5:ef:8a:36:2b:12:eb:78:
88:3d:7f:a8:9b:e1:5e:06:ad:8e:c3:e6:7d:41:56:78:91:39:
b9:24:e6:cf:b5:c3:bc:bf:76:57:c4:b5:2c:0e:d3:b3:7f:cc:
89:43:23:c9:16:b3:9b:98:e0:e2:c6:9f:59:a4:9b:c3:ce:08:
9e:01:7f:eb:8a:9a:be:7b:85:88:a4:e2:ba:a4:7f:53:e3:f1:
56:1b:5b:d3:c4:47:a2:e5:e4:e7:d2:57:d2:57:70:d0:8e:be:
99:78:fe:7d:6a:f0:e3:f2:1d:c0:72:8c:e3:1a:c1:10:c5:db:
c0:29:b2:11:3f:cb:d2:75:75:dd:15:f0:00:74:d2:4f:20:5e:
98:1a:13:32:9c:ce:9f:01:27:9d:25:25:6f:54:f3:28:ee:d3:
7b:5a:d4:89:11:fa:eb:5a:fc:72:97:e9:f9:1a:94:14:94:5f:
1b:9b:c9:86
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUdcSobfW66Ua4Ob5H+4YYkLfGWXUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1
RUE0M0UyQjAeFw0yNDA4MTcxMzU1MDJaFw0yNTA4MTYxNDAwMDJaMDMxMTAvBgNV
BAMTKEJEQzQzRkE4NkFDOEEyMDkwM0IyNUI1NDgzMjQwNUI4MTBEQjA4RjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ6tvJlIfxlJ+IMreJlgh7hGRG
zOHzUMNDTNtPwA63kzHnnaT+8fDOwVhUWttllIuuKw7PL1uBnjSoXthXbmSHYoD2
lBx1CAos3pI9o4VEEZy4uEnZQuZUnygKcAS4gYxbnZQnnrdcOPUEF0Cwu56SfxNI
ZeDlW/NpafvHPKKtZ2f2IgHbHvtJ7ROmVxbLo/A0exXTcAn45dQRBPvCsYz5Hxoa
T7xp6qAXOgze7rHB8Ayl97alrIe7us4AUpxFps9obfitGtWSWvq+7U5+mD67t6Yn
xxJIUlKt6b1C5nlzFQf6OaAakyMyuiqGgw6D6BGtZrOS+7mzploStwBylOV/AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUvcQ/qGrIogkDsltUgyQFuBDbCPgwHwYDVR0j
BBgwFoAUNX3qxebBGzw+FS1aJPjYMV6kPiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMC8zNTdERUFDNUU2
QzExQjNDM0UxNTJENUEyNEY4RDgzMTVFQTQzRTJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1RUE0
M0UyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJmLWY5MjQtNGVjMi1i
MWYxLWExMzA1ZDIzZDUzYS8wLzMxMzAzMzJlMzEzNjM3MmUzMTM2MzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6kwDQYJ
KoZIhvcNAQELBQADggEBACwgZxN8Ik+ysTHfJ92Eo7GA0ioSx2asXtz6W4eciulA
YanwhG0hoZhmofo7hRwX7zITPh5smVFJxMf4z4vCrWCgn+JAt3VjbPWu6l32zRFC
oye174o2KxLreIg9f6ib4V4GrY7D5n1BVniRObkk5s+1w7y/dlfEtSwO07N/zIlD
I8kWs5uY4OLGn1mkm8POCJ4Bf+uKmr57hYik4rqkf1Pj8VYbW9PER6Ll5OfSV9JX
cNCOvpl4/n1q8OPyHcByjOMawRDF28ApshE/y9J1dd0V8AB00k8gXpgaEzKczp8B
J50lJW9U8yju03ta1IkR+uta/HKX6fkalBSUXxubyYY=
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:12:26 2025 by rpki-client