Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa
File: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (raw, json)
Hash identifier: hZedPSTR08Zc5q3i4frxXXEyzM8AAXb/PDgw+Iy1Wv4=
Subject key identifier: 2F:8D:6A:7B:3C:DA:0A:0B:76:A8:46:DC:35:BE:C4:C2:17:10:E1:BF
Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57
Certificate serial: 17D295DB730DA35A27454BEB6C094C4F8CFC24EC
Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa
Signing time: Sat 06 Jul 2024 06:00:01 +0000
ROA not before: Sat 06 Jul 2024 05:55:01 +0000
ROA not after: Sat 05 Jul 2025 06:00:01 +0000
asID: 141895
IP address blocks: 103.163.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:d2:95:db:73:0d:a3:5a:27:45:4b:eb:6c:09:4c:4f:8c:fc:24:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57
Validity
Not Before: Jul 6 05:55:01 2024 GMT
Not After : Jul 5 06:00:01 2025 GMT
Subject: CN=2F8D6A7B3CDA0A0B76A846DC35BEC4C21710E1BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5c:1b:b2:8f:08:b8:22:0f:f5:e2:9a:bd:ff:
c3:c4:f8:d9:0d:de:47:9f:ae:94:ff:95:c7:50:21:
33:59:ef:16:ce:46:2a:31:36:67:06:bc:31:77:a5:
4d:2f:2d:61:03:bf:2a:71:c8:55:0e:f3:f9:e0:85:
86:77:89:4c:6b:08:92:65:59:fc:bb:17:da:6b:82:
62:88:9d:0b:2c:1f:60:81:90:c8:1b:70:0d:bb:58:
5a:cf:55:21:9c:aa:f7:84:f0:9c:ff:96:3b:76:a6:
a2:d0:48:54:88:ec:0c:72:92:27:a6:e1:fd:32:92:
7c:60:d7:9f:a3:1a:1d:43:fd:66:65:f4:25:e8:21:
f8:f6:59:d7:a3:7a:e0:84:cb:01:d4:7d:ad:a8:f0:
f6:9b:e4:02:6e:4d:da:fb:b4:b5:65:ee:47:d0:6f:
4b:e1:8f:bd:0c:55:da:2b:e8:e5:1e:2d:60:d5:43:
4f:89:3e:8f:73:ac:46:79:bc:7f:51:c5:51:0e:d6:
a1:1d:db:37:5d:33:7c:fc:f9:38:7d:1e:a0:b1:8e:
a7:b6:4e:f1:b2:7a:d0:dc:5b:c3:32:fd:e9:5d:11:
0e:da:d1:ed:6a:72:ec:8a:70:5c:61:ad:48:e7:bc:
b1:9f:ff:c0:fb:d5:7a:37:cc:a1:d6:ea:e5:5e:47:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8D:6A:7B:3C:DA:0A:0B:76:A8:46:DC:35:BE:C4:C2:17:10:E1:BF
X509v3 Authority Key Identifier:
keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.163.229.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c1:f2:4c:31:06:55:fb:1b:6d:a5:ef:7f:ea:5e:a3:cb:f7:
2e:ad:29:32:4c:8b:aa:45:c0:bf:73:de:37:0a:2a:3a:53:bb:
1a:d4:c5:5a:25:04:e5:e6:74:ac:39:5b:69:dc:99:97:d7:38:
dc:d2:64:ad:20:2e:f5:3e:ca:3a:f7:4c:a9:d2:2b:fc:d7:9a:
d6:5a:6d:33:3b:89:83:63:c3:5f:29:79:d9:ee:39:2f:7b:9c:
9f:65:1d:b5:ce:0b:62:86:10:fe:a6:32:d1:e6:68:e0:f3:61:
43:ec:70:9b:5e:de:6f:aa:20:5f:f5:0b:b0:f0:e7:a4:35:60:
0e:d4:b7:4b:cc:e8:f2:28:53:d8:3e:c3:48:aa:9f:14:50:f2:
1c:b9:71:74:ae:a5:94:3d:66:04:b7:b5:1a:0b:fc:af:cf:55:
82:2b:e4:e0:06:ef:8c:f6:46:cd:fd:cf:c2:1f:9d:2a:b6:04:
b1:93:a6:0a:d0:26:00:f2:2d:ab:72:d5:f2:ee:fd:8b:98:31:
92:58:e4:ce:2b:e3:5b:ee:32:54:7b:ea:8a:d6:ef:ab:c6:b6:
f7:22:4b:20:fd:59:a7:e2:1f:88:d5:38:32:f0:29:08:f5:d5:
df:95:5a:de:85:2e:a9:3d:49:b9:6a:20:ac:ba:4a:51:b2:09:
99:ae:2b:92
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUF9KV23MNo1onRUvrbAlMT4z8JOwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4
QTcwNkI1NzAeFw0yNDA3MDYwNTU1MDFaFw0yNTA3MDUwNjAwMDFaMDMxMTAvBgNV
BAMTKDJGOEQ2QTdCM0NEQTBBMEI3NkE4NDZEQzM1QkVDNEMyMTcxMEUxQkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmXBuyjwi4Ig/14pq9/8PE+NkN
3kefrpT/lcdQITNZ7xbORioxNmcGvDF3pU0vLWEDvypxyFUO8/nghYZ3iUxrCJJl
Wfy7F9prgmKInQssH2CBkMgbcA27WFrPVSGcqveE8Jz/ljt2pqLQSFSI7Axykiem
4f0yknxg15+jGh1D/WZl9CXoIfj2WdejeuCEywHUfa2o8Pab5AJuTdr7tLVl7kfQ
b0vhj70MVdor6OUeLWDVQ0+JPo9zrEZ5vH9RxVEO1qEd2zddM3z8+Th9HqCxjqe2
TvGyetDcW8My/eldEQ7a0e1qcuyKcFxhrUjnvLGf/8D71Xo3zKHW6uVeR1UJAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUL41qezzaCgt2qEbcNb7EwhcQ4b8wHwYDVR0j
BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1
Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw
NkI1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDBkN2ZhLWQ2ZjgtNGMyMi1i
NDhhLTU4YjhlZDhlZGRhNy8wLzMxMzAzMzJlMzEzNjMzMmUzMjMyMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+UwDQYJ
KoZIhvcNAQELBQADggEBAIvB8kwxBlX7G22l73/qXqPL9y6tKTJMi6pFwL9z3jcK
KjpTuxrUxVolBOXmdKw5W2ncmZfXONzSZK0gLvU+yjr3TKnSK/zXmtZabTM7iYNj
w18pednuOS97nJ9lHbXOC2KGEP6mMtHmaODzYUPscJte3m+qIF/1C7Dw56Q1YA7U
t0vM6PIoU9g+w0iqnxRQ8hy5cXSupZQ9ZgS3tRoL/K/PVYIr5OAG74z2Rs39z8If
nSq2BLGTpgrQJgDyLaty1fLu/YuYMZJY5M4r41vuMlR76orW76vGtvciSyD9Wafi
H4jVODLwKQj11d+VWt6FLqk9SblqIKy6SlGyCZmuK5I=
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:03:26 2025 by rpki-client