Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa
File: 3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa (raw, json)
Hash identifier: kjQ8hcW53xDDF2TSl/oKmMOppcQp+2CjRJ4hz4Fg5v4=
Subject key identifier: 44:2A:83:03:51:B0:E3:1C:F5:D2:E2:3B:84:D6:9C:8D:66:D5:90:4B
Certificate issuer: /CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70
Certificate serial: 1DA955708D7765E758EAADAA62D430FA7AA82642
Authority key identifier: C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa
Signing time: Mon 16 Dec 2024 22:00:00 +0000
ROA not before: Mon 16 Dec 2024 21:55:00 +0000
ROA not after: Mon 15 Dec 2025 22:00:00 +0000
asID: 147170
IP address blocks: 103.174.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:a9:55:70:8d:77:65:e7:58:ea:ad:aa:62:d4:30:fa:7a:a8:26:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70
Validity
Not Before: Dec 16 21:55:00 2024 GMT
Not After : Dec 15 22:00:00 2025 GMT
Subject: CN=442A830351B0E31CF5D2E23B84D69C8D66D5904B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:89:51:89:40:b7:89:f3:8f:33:da:bd:ab:09:
13:63:3a:3e:eb:00:cf:13:85:e2:09:03:e4:99:04:
f5:32:cb:98:5e:20:35:12:3a:91:00:25:a3:1a:c0:
ea:6e:f1:4f:de:a7:a1:89:3d:aa:98:cf:c5:a9:63:
fe:7f:a6:6e:3f:07:0f:88:54:f1:32:8c:e5:9f:f8:
01:25:7a:67:f0:42:09:02:8c:50:ce:e8:6a:4f:78:
60:b4:c2:93:cd:8d:ed:8d:79:24:a8:21:cd:95:cc:
c5:db:92:b8:65:6c:d0:64:9a:a3:7a:94:45:05:a4:
d7:25:dd:0f:43:13:cf:6a:e2:1d:82:bf:d3:0a:c9:
e7:9c:21:93:2b:ec:63:c6:c7:df:57:06:2a:d1:fb:
6b:27:04:d9:da:da:0a:ac:a8:63:92:37:42:e2:b2:
32:fa:c3:aa:e5:29:fe:ea:51:81:01:34:80:05:42:
63:0f:5a:cb:68:55:da:68:31:87:c2:17:3a:60:25:
0c:f4:c8:3f:61:11:cf:5e:85:66:af:76:13:fa:82:
55:8e:d7:cb:89:aa:b0:61:ad:2a:24:e2:3e:2a:92:
54:b6:67:77:1b:3f:1f:4b:40:f3:ac:df:ea:c1:75:
69:97:5c:20:bc:9d:2c:11:91:52:4b:7e:43:6b:32:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:2A:83:03:51:B0:E3:1C:F5:D2:E2:3B:84:D6:9C:8D:66:D5:90:4B
X509v3 Authority Key Identifier:
keyid:C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.13.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:68:a4:b8:4a:6d:3a:97:6d:bc:65:6e:5d:6d:ec:40:85:11:
15:ab:11:ab:f9:e3:1a:b1:65:da:41:92:ee:86:e5:bf:30:38:
8e:2f:45:04:66:3a:01:65:c8:85:d1:3b:0c:0a:79:0f:fa:ba:
bc:74:21:ec:a5:56:0e:41:6c:43:9c:92:28:7a:8c:7c:ec:e7:
aa:ab:04:87:80:13:b9:60:96:c6:f5:aa:9c:10:1c:cf:3a:e9:
40:1c:d6:e9:ee:c2:ed:5a:08:73:0c:40:6c:e3:b7:76:95:3c:
ab:34:78:ec:ad:1a:29:57:df:3a:a6:b5:84:0b:5d:a3:ca:47:
7d:d2:79:39:a2:6f:f8:fb:d1:63:96:d5:de:bb:80:0d:17:79:
d5:18:87:9c:92:97:54:22:97:31:4e:7e:3c:ef:40:6c:e9:c9:
61:3d:6b:fc:b5:2c:74:03:d0:d8:ea:8c:e9:21:0d:08:4f:77:
69:24:d6:75:5c:91:c0:64:8c:ca:71:ba:61:e9:a4:e1:d6:38:
8f:45:89:50:33:f7:d5:de:e3:99:ff:d3:2e:69:78:bf:b0:3f:
d7:a4:89:bc:9f:d5:6f:64:ee:65:ef:cd:2c:06:6c:ae:68:dc:
7c:d1:4c:44:8f:6c:16:ac:2d:70:94:c5:eb:d1:a4:2e:69:ab:
4b:ce:10:56
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUHalVcI13ZedY6q2qYtQw+nqoJkIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIw
MEVGNUM3MDAeFw0yNDEyMTYyMTU1MDBaFw0yNTEyMTUyMjAwMDBaMDMxMTAvBgNV
BAMTKDQ0MkE4MzAzNTFCMEUzMUNGNUQyRTIzQjg0RDY5QzhENjZENTkwNEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCziVGJQLeJ848z2r2rCRNjOj7r
AM8TheIJA+SZBPUyy5heIDUSOpEAJaMawOpu8U/ep6GJPaqYz8WpY/5/pm4/Bw+I
VPEyjOWf+AElemfwQgkCjFDO6GpPeGC0wpPNje2NeSSoIc2VzMXbkrhlbNBkmqN6
lEUFpNcl3Q9DE89q4h2Cv9MKyeecIZMr7GPGx99XBirR+2snBNna2gqsqGOSN0Li
sjL6w6rlKf7qUYEBNIAFQmMPWstoVdpoMYfCFzpgJQz0yD9hEc9ehWavdhP6glWO
18uJqrBhrSok4j4qklS2Z3cbPx9LQPOs3+rBdWmXXCC8nSwRkVJLfkNrMoZ/AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQURCqDA1Gw4xz10uI7hNacjWbVkEswHwYDVR0j
BBgwFoAUx4TI7m9848hH/L0czfIycgDvXHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
ZmRlMWYwZS0yMzFmLTQ0Y2UtOTBjMy0zMmFjZGY5ZDI2YzAvMC9DNzg0QzhFRTZG
N0NFM0M4NDdGQ0JEMUNDREYyMzI3MjAwRUY1QzcwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIwMEVG
NUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGUxZjBlLTIzMWYtNDRjZS05
MGMzLTMyYWNkZjlkMjZjMC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64NMA0GCSqG
SIb3DQEBCwUAA4IBAQBcaKS4Sm06l228ZW5dbexAhREVqxGr+eMasWXaQZLuhuW/
MDiOL0UEZjoBZciF0TsMCnkP+rq8dCHspVYOQWxDnJIoeox87OeqqwSHgBO5YJbG
9aqcEBzPOulAHNbp7sLtWghzDEBs47d2lTyrNHjsrRopV986prWEC12jykd90nk5
om/4+9FjltXeu4ANF3nVGIeckpdUIpcxTn4870Bs6clhPWv8tSx0A9DY6ozpIQ0I
T3dpJNZ1XJHAZIzKcbph6aTh1jiPRYlQM/fV3uOZ/9MuaXi/sD/XpIm8n9VvZO5l
780sBmyuaNx80UxEj2wWrC1wlMXr0aQuaatLzhBW
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:11 2025 by rpki-client