Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa
File: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (raw, json)
Hash identifier: 5nvoiGj4OjH2+HTzWQu4bmTNWJXJYHQTVDrsbt8AseA=
Subject key identifier: 00:E8:B3:1F:75:1E:28:2A:E5:D5:D6:91:48:24:02:07:64:A7:F8:6A
Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7
Certificate serial: 710FBAFCFB84A4C5CA796E2FCBA157794AD54176
Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa
Signing time: Thu 07 Nov 2024 12:00:57 +0000
ROA not before: Thu 07 Nov 2024 11:55:57 +0000
ROA not after: Thu 06 Nov 2025 12:00:57 +0000
asID: 58819
IP address blocks: 103.240.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:0f:ba:fc:fb:84:a4:c5:ca:79:6e:2f:cb:a1:57:79:4a:d5:41:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7
Validity
Not Before: Nov 7 11:55:57 2024 GMT
Not After : Nov 6 12:00:57 2025 GMT
Subject: CN=00E8B31F751E282AE5D5D6914824020764A7F86A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:62:9e:c6:a6:46:ff:d2:de:87:75:95:a2:
56:d3:3e:86:ee:f4:7b:f5:6f:0b:36:03:61:cc:c0:
be:0a:f2:a7:0b:e3:79:d7:e0:2e:95:5d:82:de:a4:
f7:fc:b9:a9:65:a4:2c:f7:2a:00:cf:84:1f:91:8d:
0b:b8:8f:82:6e:56:98:b0:2d:26:5e:23:23:39:af:
fc:96:23:c2:15:48:cc:b7:51:1a:c1:9b:b0:9b:0a:
c0:18:af:79:2d:a7:8b:f7:93:87:13:2c:54:aa:ec:
8f:da:bf:7d:d0:01:28:6b:d1:4a:84:89:37:6b:17:
e3:da:63:4a:29:95:01:5b:92:5c:97:9f:9c:c2:78:
79:90:19:4e:59:c8:6b:08:6a:1c:85:dc:10:e9:48:
e0:35:63:7e:e6:64:b3:15:33:19:f9:62:24:a3:7c:
48:75:e9:78:46:7e:28:31:5b:aa:d3:ec:bd:5f:76:
a9:a3:a6:c2:b6:00:b0:46:df:72:f1:c8:82:b0:a6:
af:5f:18:f1:27:02:4b:04:9a:d8:9c:8e:4e:b0:85:
4d:95:54:ac:bc:4a:c9:38:bf:2e:fa:04:2d:0a:b5:
fe:8f:ca:a5:89:02:25:94:33:3d:c6:b5:d0:10:8d:
5d:b5:87:ce:12:45:e1:57:60:aa:ea:37:11:40:a2:
fb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E8:B3:1F:75:1E:28:2A:E5:D5:D6:91:48:24:02:07:64:A7:F8:6A
X509v3 Authority Key Identifier:
keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.240.109.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:f1:a6:d0:ab:35:f6:dc:35:e6:87:7e:e7:74:fc:d1:a3:f5:
9e:cd:67:6b:27:49:20:3c:49:c7:f4:e3:f5:68:80:06:23:07:
a9:c5:db:a7:83:f9:05:64:d8:0f:d3:cf:ba:b0:3d:58:23:70:
b5:99:01:cc:34:1d:16:13:ac:5f:01:29:99:97:2f:94:c9:ac:
2e:f3:be:0e:a8:bf:69:6a:c8:12:8c:39:92:2a:c1:3a:74:f7:
56:46:80:e5:f5:ab:da:7d:45:ea:de:1e:6d:91:5f:4b:46:bc:
09:6c:73:21:87:77:2c:f7:ba:8f:9f:c4:00:e9:26:31:af:e7:
94:d3:bf:8e:7f:e1:b7:10:e3:95:c6:ac:1b:c1:b4:33:8f:05:
34:f4:1d:12:3b:01:1b:3e:fd:0d:67:b1:bd:f8:ec:43:0f:d2:
02:15:05:7b:ed:d6:09:02:ed:52:f8:b6:2b:a0:d8:48:4b:7f:
d4:76:96:7c:24:89:b1:17:96:f4:e8:38:2a:56:91:4d:56:53:
98:75:af:5d:68:db:fb:04:00:a7:8d:4c:ae:ad:89:b2:27:d3:
76:96:3a:78:14:e5:45:54:86:d0:a2:3d:f0:76:17:37:77:19:
48:54:29:b5:ac:e8:d0:fa:33:d9:2a:63:21:43:57:04:c7:80:
b7:5b:eb:a3
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcQ+6/PuEpMXKeW4vy6FXeUrVQXYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx
QkJCOTJGNzAeFw0yNDExMDcxMTU1NTdaFw0yNTExMDYxMjAwNTdaMDMxMTAvBgNV
BAMTKDAwRThCMzFGNzUxRTI4MkFFNUQ1RDY5MTQ4MjQwMjA3NjRBN0Y4NkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9GKexqZG/9Leh3WVolbTPobu
9Hv1bws2A2HMwL4K8qcL43nX4C6VXYLepPf8uallpCz3KgDPhB+RjQu4j4JuVpiw
LSZeIyM5r/yWI8IVSMy3URrBm7CbCsAYr3ktp4v3k4cTLFSq7I/av33QAShr0UqE
iTdrF+PaY0oplQFbklyXn5zCeHmQGU5ZyGsIahyF3BDpSOA1Y37mZLMVMxn5YiSj
fEh16XhGfigxW6rT7L1fdqmjpsK2ALBG33LxyIKwpq9fGPEnAksEmticjk6whU2V
VKy8Ssk4vy76BC0Ktf6PyqWJAiWUMz3GtdAQjV21h84SReFXYKrqNxFAovvTAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUAOizH3UeKCrl1daRSCQCB2Sn+GowHwYDVR0j
BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5
NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC
OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04
MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BtMA0GCSqG
SIb3DQEBCwUAA4IBAQC88abQqzX23DXmh37ndPzRo/WezWdrJ0kgPEnH9OP1aIAG
Iwepxdung/kFZNgP08+6sD1YI3C1mQHMNB0WE6xfASmZly+Uyawu874OqL9pasgS
jDmSKsE6dPdWRoDl9avafUXq3h5tkV9LRrwJbHMhh3cs97qPn8QA6SYxr+eU07+O
f+G3EOOVxqwbwbQzjwU09B0SOwEbPv0NZ7G9+OxDD9ICFQV77dYJAu1S+LYroNhI
S3/UdpZ8JImxF5b06DgqVpFNVlOYda9daNv7BACnjUyurYmyJ9N2ljp4FOVFVIbQ
oj3wdhc3dxlIVCm1rOjQ+jPZKmMhQ1cEx4C3W+uj
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:16:53 2025 by rpki-client