Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa
File: 3130332e36362e34362e302f32342d3234203d3e203233363934.roa (raw, json)
Hash identifier: ts4ui87HscUHyB13k2SORNOVEV8lmbIHT+7Kro5+2+I=
Subject key identifier: 7F:7D:25:1F:8C:C0:D1:18:1D:69:7D:D8:FF:52:8D:85:EB:95:F4:AC
Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36
Certificate serial: 79D31120E3842F4FAD7AD149CBB03BC6D5BCB1AB
Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa
Signing time: Thu 06 Jun 2024 11:00:01 +0000
ROA not before: Thu 06 Jun 2024 10:55:01 +0000
ROA not after: Thu 05 Jun 2025 11:00:01 +0000
asID: 23694
IP address blocks: 103.66.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:d3:11:20:e3:84:2f:4f:ad:7a:d1:49:cb:b0:3b:c6:d5:bc:b1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36
Validity
Not Before: Jun 6 10:55:01 2024 GMT
Not After : Jun 5 11:00:01 2025 GMT
Subject: CN=7F7D251F8CC0D1181D697DD8FF528D85EB95F4AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:89:d5:7a:74:2f:83:bd:46:e3:3a:b3:c7:62:
c9:66:73:1b:d1:70:7b:1a:56:02:fc:ad:40:58:66:
b9:d7:09:bd:f4:06:33:3f:60:f6:0d:0c:6c:56:97:
28:60:20:96:a8:8a:3d:7c:2a:ab:8c:d0:5b:60:bf:
77:5c:25:1d:c3:c3:49:d1:92:73:48:71:c8:6d:27:
9e:d5:2a:35:d9:a7:51:b3:2f:71:d9:d7:5e:cf:8b:
72:a6:9f:67:5f:5a:a5:28:69:72:19:2f:d8:ed:c5:
ba:ce:2f:e3:f3:3d:23:a0:54:ef:e3:29:75:14:15:
d4:9b:03:45:5c:32:eb:1b:57:ff:25:75:72:8b:3f:
d6:a5:fd:70:2b:f7:73:4a:d9:f9:4b:36:c4:37:78:
2c:e7:e9:cf:6f:da:b3:e2:24:b5:56:c7:91:cd:2b:
7a:87:68:09:a6:31:57:b3:62:d6:fb:11:e9:d1:9e:
12:c4:6d:94:fb:1f:f1:ac:b3:9b:54:8a:bf:c5:3b:
ca:81:7b:ef:bd:84:d6:7d:86:d0:4f:8a:96:ef:07:
5d:0d:5f:66:69:8b:c6:82:4d:15:62:9e:ec:88:c8:
0b:f7:7c:c3:e6:b9:79:43:39:44:dd:28:24:9a:84:
26:95:fa:83:17:51:4b:57:06:df:1b:d3:e9:0a:2e:
80:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7D:25:1F:8C:C0:D1:18:1D:69:7D:D8:FF:52:8D:85:EB:95:F4:AC
X509v3 Authority Key Identifier:
keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32342d3234203d3e203233363934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.66.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ad:b1:00:56:d5:e0:0f:3f:74:92:57:9d:27:13:20:b9:c7:
90:d9:c3:3c:45:11:d3:5d:a3:0b:ed:cc:7d:b6:12:e4:e4:65:
78:01:22:ee:46:ad:60:2c:e1:aa:05:1c:c7:7b:a1:3b:ef:b1:
dd:66:27:a5:7e:40:3f:fa:4d:65:7f:2a:4b:7b:fb:d1:8d:a9:
c9:03:22:d9:92:84:b6:59:04:cc:0c:74:a5:ff:a7:eb:2f:d6:
b2:d7:6b:e0:85:3c:8b:a4:c4:ad:6a:49:92:e9:a5:8d:d1:a4:
ca:a9:1d:1e:2d:53:ed:96:3d:69:9a:d9:fb:dc:74:32:c4:8e:
fa:29:43:b9:df:d8:7b:94:1f:d8:f0:e4:d7:b4:cf:85:0e:7f:
ac:10:62:41:d2:6b:a6:f2:14:77:0a:7c:4f:2e:75:2c:fe:d2:
43:d3:92:7b:ee:16:89:22:ef:35:12:f8:c7:f3:6b:fd:03:2b:
6c:17:1c:24:97:d4:c3:e5:c6:97:cc:82:c9:39:25:1d:c8:74:
75:7e:0d:61:09:57:02:c9:b7:a3:c4:a8:fe:43:85:0d:98:4c:
f0:cf:42:85:15:d1:9f:2c:9f:9f:a9:d7:b5:50:60:ea:cb:31:
ca:37:d5:80:d7:73:93:52:91:94:c2:16:dc:3b:e1:93:97:a8:
e4:5f:3e:b0
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUedMRIOOEL0+tetFJy7A7xtW8saswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJE
NjI3RUQzNjAeFw0yNDA2MDYxMDU1MDFaFw0yNTA2MDUxMTAwMDFaMDMxMTAvBgNV
BAMTKDdGN0QyNTFGOENDMEQxMTgxRDY5N0REOEZGNTI4RDg1RUI5NUY0QUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0idV6dC+DvUbjOrPHYslmcxvR
cHsaVgL8rUBYZrnXCb30BjM/YPYNDGxWlyhgIJaoij18KquM0Ftgv3dcJR3Dw0nR
knNIcchtJ57VKjXZp1GzL3HZ117Pi3Kmn2dfWqUoaXIZL9jtxbrOL+PzPSOgVO/j
KXUUFdSbA0VcMusbV/8ldXKLP9al/XAr93NK2flLNsQ3eCzn6c9v2rPiJLVWx5HN
K3qHaAmmMVezYtb7EenRnhLEbZT7H/Gss5tUir/FO8qBe++9hNZ9htBPipbvB10N
X2Zpi8aCTRVinuyIyAv3fMPmuXlDOUTdKCSahCaV+oMXUUtXBt8b0+kKLoADAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUf30lH4zA0RgdaX3Y/1KNheuV9KwwHwYDVR0j
BBgwFoAUPg0GDyFN+OZJMkMDPr0wq9Yn7TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
YjRmODUxMS0wN2IzLTRhNjEtYmQwNC0yZTY2NWM5Mjc4ZmMvMC8zRTBEMDYwRjIx
NERGOEU2NDkzMjQzMDMzRUJEMzBBQkQ2MjdFRDM2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJENjI3
RUQzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i
ZDA0LTJlNjY1YzkyNzhmYy8wLzMxMzAzMzJlMzYzNjJlMzQzNjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMyMzMzNjM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQi4wDQYJKoZIhvcN
AQELBQADggEBAD+tsQBW1eAPP3SSV50nEyC5x5DZwzxFEdNdowvtzH22EuTkZXgB
Iu5GrWAs4aoFHMd7oTvvsd1mJ6V+QD/6TWV/Kkt7+9GNqckDItmShLZZBMwMdKX/
p+sv1rLXa+CFPIukxK1qSZLppY3RpMqpHR4tU+2WPWma2fvcdDLEjvopQ7nf2HuU
H9jw5Ne0z4UOf6wQYkHSa6byFHcKfE8udSz+0kPTknvuFoki7zUS+Mfza/0DK2wX
HCSX1MPlxpfMgsk5JR3IdHV+DWEJVwLJt6PEqP5DhQ2YTPDPQoUV0Z8sn5+p17VQ
YOrLMco31YDXc5NSkZTCFtw74ZOXqORfPrA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:54 2025 by rpki-client