Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa
File: 3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa (raw, json)
Hash identifier: QW0riT2ZIbJQ6bDdQHJpDVDRJpk68aw/94juFPRXEvU=
Subject key identifier: 1F:F3:FB:EF:48:4D:C1:9E:6A:0C:CD:40:C0:B7:A3:09:6E:DB:EC:0D
Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A
Certificate serial: 0EDEF04129901A1C14B9F37E9C2812AE6CDB1B07
Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa
Signing time: Sun 22 Sep 2024 10:00:01 +0000
ROA not before: Sun 22 Sep 2024 09:55:01 +0000
ROA not after: Sun 21 Sep 2025 10:00:01 +0000
asID: 142373
IP address blocks: 103.171.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:de:f0:41:29:90:1a:1c:14:b9:f3:7e:9c:28:12:ae:6c:db:1b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A
Validity
Not Before: Sep 22 09:55:01 2024 GMT
Not After : Sep 21 10:00:01 2025 GMT
Subject: CN=1FF3FBEF484DC19E6A0CCD40C0B7A3096EDBEC0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:be:62:df:4c:fe:c0:1a:aa:d9:51:49:c6:48:
05:d0:c7:bc:50:b8:8a:4f:bb:2b:1d:04:8f:5f:a1:
58:36:7e:ba:9e:8a:1f:e6:e0:91:62:47:ce:89:0d:
89:3d:08:71:c8:1c:0a:4f:e9:20:ec:f2:35:83:35:
32:cc:51:6e:f1:27:1d:4b:83:78:38:40:1d:a4:8d:
26:82:93:91:a2:be:08:5d:7d:e3:32:85:cb:d4:73:
68:61:31:a2:76:ea:df:d9:f5:bb:8d:fe:dc:88:7c:
44:ca:b1:b6:de:34:30:e3:f4:b1:81:84:f0:96:11:
45:ad:ee:b7:6e:dd:3b:aa:8c:a0:21:79:08:cc:a0:
e3:6c:ba:fa:f3:26:64:14:1f:b7:e4:58:f4:50:00:
9b:67:9a:00:d3:d1:df:15:65:ad:0b:cd:e8:ad:0f:
c4:a8:95:b1:56:69:7c:76:e8:6b:e4:81:8c:5d:3a:
72:3a:e9:75:da:97:a1:9d:a0:9d:54:d0:62:ea:5d:
21:3f:f4:b8:39:15:6d:dc:3a:91:8b:84:41:25:5c:
1c:fd:5c:ff:7b:fe:3d:9e:24:19:18:fd:94:80:e5:
4d:58:f8:d8:71:93:55:e3:d9:03:e7:d8:a3:3f:5a:
67:1d:5c:72:9f:a0:2f:3e:65:cb:b8:35:95:24:db:
d0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:F3:FB:EF:48:4D:C1:9E:6A:0C:CD:40:C0:B7:A3:09:6E:DB:EC:0D
X509v3 Authority Key Identifier:
keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.171.82.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:33:f7:9c:52:bc:cc:20:a0:c6:78:56:93:e9:bb:4b:da:0b:
30:45:ca:a1:1b:8e:1c:ef:c3:a3:63:24:14:f5:de:84:e5:36:
68:65:08:c6:eb:02:94:06:ad:23:65:c8:da:dd:89:03:68:72:
26:5a:04:67:b9:a3:82:64:14:df:bc:10:b2:05:12:53:8d:6e:
bf:81:62:e9:4a:4f:24:d6:0a:e6:ca:e3:32:2a:45:e5:4d:cd:
38:e0:1a:e1:32:62:5d:50:07:55:f8:37:99:50:99:f7:79:08:
b5:5d:74:c5:25:1c:80:b5:e7:89:37:8b:87:e1:86:4a:48:76:
c4:90:00:aa:69:d3:00:62:f2:fa:47:57:c2:df:37:a0:46:f1:
8f:fe:1f:6c:f9:46:1a:a6:dd:af:17:59:da:02:52:b7:c5:5f:
f3:aa:6e:ac:01:3c:7f:46:81:79:37:87:d5:e4:64:8d:51:30:
d8:5e:e8:3a:ca:1c:e6:c4:5a:e4:18:ec:69:fe:a0:0d:12:eb:
08:57:f1:29:84:f8:e3:2e:6c:f7:9e:92:50:e4:73:a4:6c:da:
0f:cc:62:76:bc:b4:d6:1a:5e:7b:bf:cc:27:60:07:27:15:20:
5e:6e:44:6d:1a:56:ce:2f:82:a2:4f:3f:ba:eb:af:7f:8a:80:
f3:0e:9b:50
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUDt7wQSmQGhwUufN+nCgSrmzbGwcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz
NkNFQTU0QTAeFw0yNDA5MjIwOTU1MDFaFw0yNTA5MjExMDAwMDFaMDMxMTAvBgNV
BAMTKDFGRjNGQkVGNDg0REMxOUU2QTBDQ0Q0MEMwQjdBMzA5NkVEQkVDMEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvmLfTP7AGqrZUUnGSAXQx7xQ
uIpPuysdBI9foVg2frqeih/m4JFiR86JDYk9CHHIHApP6SDs8jWDNTLMUW7xJx1L
g3g4QB2kjSaCk5GivghdfeMyhcvUc2hhMaJ26t/Z9buN/tyIfETKsbbeNDDj9LGB
hPCWEUWt7rdu3TuqjKAheQjMoONsuvrzJmQUH7fkWPRQAJtnmgDT0d8VZa0Lzeit
D8SolbFWaXx26GvkgYxdOnI66XXal6GdoJ1U0GLqXSE/9Lg5FW3cOpGLhEElXBz9
XP97/j2eJBkY/ZSA5U1Y+Nhxk1Xj2QPn2KM/WmcdXHKfoC8+Zcu4NZUk29BBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUH/P770hNwZ5qDM1AwLejCW7b7A0wHwYDVR0j
BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz
NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF
QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h
NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tSMA0GCSqG
SIb3DQEBCwUAA4IBAQDMM/ecUrzMIKDGeFaT6btL2gswRcqhG44c78OjYyQU9d6E
5TZoZQjG6wKUBq0jZcja3YkDaHImWgRnuaOCZBTfvBCyBRJTjW6/gWLpSk8k1grm
yuMyKkXlTc044BrhMmJdUAdV+DeZUJn3eQi1XXTFJRyAteeJN4uH4YZKSHbEkACq
adMAYvL6R1fC3zegRvGP/h9s+UYapt2vF1naAlK3xV/zqm6sATx/RoF5N4fV5GSN
UTDYXug6yhzmxFrkGOxp/qANEusIV/EphPjjLmz3npJQ5HOkbNoPzGJ2vLTWGl57
v8wnYAcnFSBebkRtGlbOL4KiTz+6669/ioDzDptQ
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:10:41 2025 by rpki-client