Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa
File: 3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa (raw, json)
Hash identifier: vlCZc8sOXCLvIXAV35g5jptQl2AuuvNK6e+kuDYnuA4=
Subject key identifier: F5:BE:CC:B8:99:42:C4:41:A1:37:69:35:A1:85:63:6D:ED:4C:3E:46
Certificate issuer: /CN=E0EC18AE1077112F303C479717B7E1EAA868E35F
Certificate serial: 74090614A00E28BEBE53693E00EC37AF5EF87FAC
Authority key identifier: E0:EC:18:AE:10:77:11:2F:30:3C:47:97:17:B7:E1:EA:A8:68:E3:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0EC18AE1077112F303C479717B7E1EAA868E35F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa
Signing time: Tue 15 Oct 2024 04:00:00 +0000
ROA not before: Tue 15 Oct 2024 03:55:00 +0000
ROA not after: Tue 14 Oct 2025 04:00:00 +0000
asID: 149687
IP address blocks: 103.186.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:09:06:14:a0:0e:28:be:be:53:69:3e:00:ec:37:af:5e:f8:7f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EC18AE1077112F303C479717B7E1EAA868E35F
Validity
Not Before: Oct 15 03:55:00 2024 GMT
Not After : Oct 14 04:00:00 2025 GMT
Subject: CN=F5BECCB89942C441A1376935A185636DED4C3E46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f0:bd:5b:b9:97:b1:2f:fa:43:a1:67:13:4a:
2c:b4:cf:be:62:f9:2c:b5:3d:6c:67:71:d9:98:99:
b5:27:85:03:04:43:83:ee:01:27:75:76:da:30:9f:
b5:80:c7:11:00:7c:b1:0b:4c:e5:8c:40:be:09:01:
a6:0a:a5:13:e8:d5:53:c3:3d:3c:41:8d:82:77:00:
f1:43:8e:70:20:3d:a7:47:1c:fc:06:4f:11:da:56:
32:9f:bb:88:dc:15:4a:b0:20:3c:95:57:1a:a5:cf:
1e:5b:58:96:93:ff:8e:f9:be:eb:fc:53:1a:11:d7:
7c:cb:3e:ae:3b:7e:b3:f9:44:65:23:cd:83:92:e8:
95:77:db:68:c8:72:79:3f:60:81:cb:65:30:f2:32:
1f:06:6d:20:1c:6e:0a:5b:c0:4b:38:9c:6c:f3:9a:
49:3c:a5:04:4b:8c:b5:56:c9:49:f4:00:70:a1:cb:
29:ae:a0:6d:cc:25:17:ce:e1:42:b5:5e:78:7d:24:
fa:50:d4:0a:a1:8b:d4:31:4f:ac:e7:fa:c8:00:a5:
91:e0:44:86:b0:ee:04:79:ba:6d:3a:68:c5:e2:d2:
09:16:46:35:e3:71:73:5b:2d:b7:f8:49:99:9e:e2:
3a:cf:7b:91:d0:7c:eb:01:d3:fb:88:5d:ba:ff:0b:
00:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:BE:CC:B8:99:42:C4:41:A1:37:69:35:A1:85:63:6D:ED:4C:3E:46
X509v3 Authority Key Identifier:
keyid:E0:EC:18:AE:10:77:11:2F:30:3C:47:97:17:B7:E1:EA:A8:68:E3:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/E0EC18AE1077112F303C479717B7E1EAA868E35F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0EC18AE1077112F303C479717B7E1EAA868E35F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/859c7c96-7abb-45ac-a0cb-d7ffd09c1876/0/3130332e3138362e33342e302f32342d3234203d3e20313439363837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.34.0/24
Signature Algorithm: sha256WithRSAEncryption
06:19:16:8c:15:ca:1a:88:06:5f:dd:03:21:df:ba:72:77:10:
b1:bb:9a:36:3d:d9:02:66:a7:c6:c5:c3:fc:01:1e:49:49:08:
2c:1e:47:c9:9c:63:c1:f1:ec:6c:f5:28:b3:77:34:c4:55:10:
c8:17:7c:b8:d4:97:b5:ad:40:2b:c2:7e:0c:1d:ec:f5:2f:eb:
55:f2:be:5e:16:af:8d:2a:7b:09:d9:92:f3:3f:f8:0b:b2:3f:
e2:d1:13:bc:6c:06:15:b0:d4:97:bc:3b:f6:43:be:1d:f9:6c:
76:f2:63:44:cb:d1:28:b9:b3:16:a8:3a:21:84:e9:ad:88:9a:
ff:40:67:34:88:e2:b9:7d:7d:10:f4:9d:9d:ec:b4:4c:66:54:
a0:0b:56:6e:80:df:25:90:71:53:1a:4f:43:41:dd:5a:37:18:
b6:c5:63:48:0f:a5:47:53:dc:62:30:0c:e9:76:da:de:e9:10:
67:14:cc:3f:c4:49:ab:4d:af:49:be:b3:88:05:22:49:51:a7:
10:c6:23:dc:fd:b8:3c:41:4a:88:64:00:3e:72:f2:cb:8c:85:
ad:ef:f8:73:0b:30:ab:4c:94:97:f2:4d:bd:bc:ef:26:15:4a:
95:9a:80:5e:ea:17:49:77:b1:33:75:7a:c4:d1:dc:e7:89:5e:
a2:42:dd:6f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUdAkGFKAOKL6+U2k+AOw3r174f6wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTBFQzE4QUUxMDc3MTEyRjMwM0M0Nzk3MTdCN0UxRUFB
ODY4RTM1RjAeFw0yNDEwMTUwMzU1MDBaFw0yNTEwMTQwNDAwMDBaMDMxMTAvBgNV
BAMTKEY1QkVDQ0I4OTk0MkM0NDFBMTM3NjkzNUExODU2MzZERUQ0QzNFNDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe8L1buZexL/pDoWcTSiy0z75i
+Sy1PWxncdmYmbUnhQMEQ4PuASd1dtown7WAxxEAfLELTOWMQL4JAaYKpRPo1VPD
PTxBjYJ3APFDjnAgPadHHPwGTxHaVjKfu4jcFUqwIDyVVxqlzx5bWJaT/475vuv8
UxoR13zLPq47frP5RGUjzYOS6JV322jIcnk/YIHLZTDyMh8GbSAcbgpbwEs4nGzz
mkk8pQRLjLVWyUn0AHChyymuoG3MJRfO4UK1Xnh9JPpQ1Aqhi9QxT6zn+sgApZHg
RIaw7gR5um06aMXi0gkWRjXjcXNbLbf4SZme4jrPe5HQfOsB0/uIXbr/CwDnAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU9b7MuJlCxEGhN2k1oYVjbe1MPkYwHwYDVR0j
BBgwFoAU4OwYrhB3ES8wPEeXF7fh6qho418wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
NTljN2M5Ni03YWJiLTQ1YWMtYTBjYi1kN2ZmZDA5YzE4NzYvMC9FMEVDMThBRTEw
NzcxMTJGMzAzQzQ3OTcxN0I3RTFFQUE4NjhFMzVGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRTBFQzE4QUUxMDc3MTEyRjMwM0M0Nzk3MTdCN0UxRUFBODY4
RTM1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OWM3Yzk2LTdhYmItNDVhYy1h
MGNiLWQ3ZmZkMDljMTg3Ni8wLzMxMzAzMzJlMzEzODM2MmUzMzM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7oiMA0GCSqG
SIb3DQEBCwUAA4IBAQAGGRaMFcoaiAZf3QMh37pydxCxu5o2PdkCZqfGxcP8AR5J
SQgsHkfJnGPB8exs9SizdzTEVRDIF3y41Je1rUArwn4MHez1L+tV8r5eFq+NKnsJ
2ZLzP/gLsj/i0RO8bAYVsNSXvDv2Q74d+Wx28mNEy9EoubMWqDohhOmtiJr/QGc0
iOK5fX0Q9J2d7LRMZlSgC1ZugN8lkHFTGk9DQd1aNxi2xWNID6VHU9xiMAzpdtre
6RBnFMw/xEmrTa9JvrOIBSJJUacQxiPc/bg8QUqIZAA+cvLLjIWt7/hzCzCrTJSX
8k29vO8mFUqVmoBe6hdJd7EzdXrE0dzniV6iQt1v
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:28 2025 by rpki-client