Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/3130332e3131302e3138342e302f32332d3234203d3e20313337333734.roa
File: 3130332e3131302e3138342e302f32332d3234203d3e20313337333734.roa (raw, json)
Hash identifier: diSJtF4pncDv3TYDAQkVNDujeOW0TndNL50eRWU9t2k=
Subject key identifier: 75:43:46:A6:32:2C:48:63:A2:BF:D1:36:65:66:D1:DC:55:DD:03:BB
Certificate issuer: /CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2
Certificate serial: 486EC31E70B0BFFA03587C21CCF9E5A36CC94B91
Authority key identifier: 98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/3130332e3131302e3138342e302f32332d3234203d3e20313337333734.roa
Signing time: Mon 01 Jul 2024 01:04:54 +0000
ROA not before: Mon 01 Jul 2024 00:59:54 +0000
ROA not after: Mon 30 Jun 2025 01:04:54 +0000
asID: 137374
IP address blocks: 103.110.184.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:6e:c3:1e:70:b0:bf:fa:03:58:7c:21:cc:f9:e5:a3:6c:c9:4b:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2
Validity
Not Before: Jul 1 00:59:54 2024 GMT
Not After : Jun 30 01:04:54 2025 GMT
Subject: CN=754346A6322C4863A2BFD1366566D1DC55DD03BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:bc:d1:e8:d4:22:42:f1:80:b6:fc:61:83:
db:b0:63:83:dc:16:a4:bf:78:07:74:e6:66:f8:4d:
9b:51:59:e5:5b:45:8b:23:62:4e:be:14:68:ae:a9:
5c:2d:66:e9:d1:c5:ee:00:72:7e:0a:03:63:9f:0b:
c2:b8:df:7b:58:04:38:df:55:a8:98:7c:d1:c9:ab:
a0:a8:16:9f:51:af:ba:72:6e:b4:f7:0d:fb:53:d0:
96:31:65:a1:af:e8:3d:3d:f0:73:76:17:a5:fa:55:
8a:9b:a5:16:ff:0a:97:a6:ab:be:fd:c5:51:5b:9f:
c4:a3:ef:21:3d:1a:fe:9d:4c:65:c7:a5:46:33:74:
51:22:9f:65:89:4e:09:d0:44:03:67:cf:dd:bd:96:
73:3d:52:a0:49:20:4e:32:ad:fc:42:35:c1:ef:90:
ac:b3:b7:d2:6a:51:fd:42:48:25:e3:33:0a:4a:da:
97:f4:49:8b:25:96:e1:98:fe:fb:af:9a:21:b2:b8:
57:f3:4a:50:33:d7:2a:a0:fd:5d:1a:b6:55:13:c0:
65:03:76:a6:4a:9b:3f:7b:ca:5c:15:d4:55:f5:d4:
88:91:97:ca:be:53:1e:56:26:0f:b7:68:73:a5:41:
7c:27:27:ff:b8:d5:6c:8e:cf:cd:e4:a5:b3:ee:9f:
a1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:43:46:A6:32:2C:48:63:A2:BF:D1:36:65:66:D1:DC:55:DD:03:BB
X509v3 Authority Key Identifier:
keyid:98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/3130332e3131302e3138342e302f32332d3234203d3e20313337333734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.110.184.0/23
Signature Algorithm: sha256WithRSAEncryption
37:4b:61:1c:61:5d:06:3c:4e:c4:ca:b1:c9:bb:3d:35:3f:35:
1d:23:52:ed:fb:f4:87:99:b9:41:3d:f0:bc:cf:ea:5e:43:a3:
ff:e7:66:be:6f:55:42:ce:5a:12:36:aa:3d:30:fb:d1:6f:28:
1e:7f:f3:f1:cc:9c:19:ec:0a:77:81:28:14:60:f8:d7:f1:ff:
24:20:1a:21:f6:aa:e7:eb:52:b5:10:dd:a2:a7:68:04:9a:9d:
50:79:11:84:15:29:d4:dc:67:dd:a1:72:03:36:61:92:4c:96:
a4:62:91:6f:43:04:d2:63:22:32:8e:c9:77:49:89:98:cc:7e:
e9:aa:60:dd:c3:79:32:de:c7:14:d6:4c:08:47:3e:3e:31:fc:
6c:c4:18:34:4b:fe:f6:31:01:2f:19:42:ca:59:0c:c7:75:65:
ac:c8:6f:b8:56:90:ee:11:36:c3:17:d9:f5:da:a1:d0:1a:bf:
b7:a0:d8:26:ed:c1:97:5a:91:e5:0e:3e:f9:f9:15:98:1c:34:
36:5d:44:ea:b2:b1:ba:1a:1e:59:98:3d:2b:6c:0e:a9:dd:e7:
43:ba:fc:4a:d4:34:44:aa:5b:ac:bc:6b:6c:4f:dd:5a:cb:b8:
78:d5:dc:e9:bb:b1:90:f2:2e:7b:a1:69:f4:d6:83:8d:cc:31:
cf:4e:77:47
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUSG7DHnCwv/oDWHwhzPnlo2zJS5EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIz
NTA1NkFFMjAeFw0yNDA3MDEwMDU5NTRaFw0yNTA2MzAwMTA0NTRaMDMxMTAvBgNV
BAMTKDc1NDM0NkE2MzIyQzQ4NjNBMkJGRDEzNjY1NjZEMURDNTVERDAzQkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJwbzR6NQiQvGAtvxhg9uwY4Pc
FqS/eAd05mb4TZtRWeVbRYsjYk6+FGiuqVwtZunRxe4Acn4KA2OfC8K433tYBDjf
VaiYfNHJq6CoFp9Rr7pybrT3DftT0JYxZaGv6D098HN2F6X6VYqbpRb/Cpemq779
xVFbn8Sj7yE9Gv6dTGXHpUYzdFEin2WJTgnQRANnz929lnM9UqBJIE4yrfxCNcHv
kKyzt9JqUf1CSCXjMwpK2pf0SYslluGY/vuvmiGyuFfzSlAz1yqg/V0atlUTwGUD
dqZKmz97ylwV1FX11IiRl8q+Ux5WJg+3aHOlQXwnJ/+41WyOz83kpbPun6E5AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUdUNGpjIsSGOiv9E2ZWbR3FXdA7swHwYDVR0j
BBgwFoAUmFKruFCN5VHxcjvJrF7DmzUFauIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
YTY2ZjM1MC1lNjQyLTQwMmYtOGFjMy02YWVmN2UxMWFhYzMvMC85ODUyQUJCODUw
OERFNTUxRjE3MjNCQzlBQzVFQzM5QjM1MDU2QUUyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIzNTA1
NkFFMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNjZmMzUwLWU2NDItNDAyZi04
YWMzLTZhZWY3ZTExYWFjMy8wLzMxMzAzMzJlMzEzMTMwMmUzMTM4MzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnbrgwDQYJ
KoZIhvcNAQELBQADggEBADdLYRxhXQY8TsTKscm7PTU/NR0jUu379IeZuUE98LzP
6l5Do//nZr5vVULOWhI2qj0w+9FvKB5/8/HMnBnsCneBKBRg+Nfx/yQgGiH2qufr
UrUQ3aKnaASanVB5EYQVKdTcZ92hcgM2YZJMlqRikW9DBNJjIjKOyXdJiZjMfumq
YN3DeTLexxTWTAhHPj4x/GzEGDRL/vYxAS8ZQspZDMd1ZazIb7hWkO4RNsMX2fXa
odAav7eg2CbtwZdakeUOPvn5FZgcNDZdROqysboaHlmYPStsDqnd50O6/ErUNESq
W6y8a2xP3VrLuHjV3Om7sZDyLnuhafTWg43MMc9Od0c=
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:49:17 2025 by rpki-client