Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34372e302f32342d3234203d3e20313439393731.roa
File: 3130332e3139342e34372e302f32342d3234203d3e20313439393731.roa (raw, json)
Hash identifier: 8gYVBvfPaAS+dDq/ck+SYq8jSqJeSZctfFM5ZSDT6o0=
Subject key identifier: 7A:BD:EA:A0:91:FA:5B:35:99:D0:C1:5A:7D:39:46:DC:63:C1:A5:6F
Certificate issuer: /CN=4F679A207D2588B709C82CDAB000736182F881E1
Certificate serial: 6DDE763B8D1AE33C07DBBADF1E4F3F997F842A30
Authority key identifier: 4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34372e302f32342d3234203d3e20313439393731.roa
Signing time: Wed 28 Aug 2024 10:19:05 +0000
ROA not before: Wed 28 Aug 2024 10:14:05 +0000
ROA not after: Wed 27 Aug 2025 10:19:05 +0000
asID: 149971
IP address blocks: 103.194.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:de:76:3b:8d:1a:e3:3c:07:db:ba:df:1e:4f:3f:99:7f:84:2a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F679A207D2588B709C82CDAB000736182F881E1
Validity
Not Before: Aug 28 10:14:05 2024 GMT
Not After : Aug 27 10:19:05 2025 GMT
Subject: CN=7ABDEAA091FA5B3599D0C15A7D3946DC63C1A56F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4c:f8:1c:ea:71:aa:e9:4c:b8:4f:04:bf:57:
6f:45:f8:7b:65:77:13:78:2b:bd:0f:8b:f5:f2:ab:
1d:05:35:de:1c:91:1a:7a:c2:a3:e7:0f:b4:61:79:
ae:57:fe:ed:23:4f:9f:1a:62:4d:b6:cf:be:61:8f:
b6:d2:f9:ed:79:cf:73:29:63:f5:f0:8d:01:b5:eb:
2f:d8:ff:85:94:75:c4:75:9f:68:dc:ac:32:6e:fc:
a3:b9:a1:f6:29:7d:60:42:e6:cc:a7:4f:d9:8f:49:
93:e9:19:1b:28:49:8a:98:41:64:4f:51:67:e1:89:
77:8a:e8:8f:5e:11:5b:d8:86:38:bc:d7:cb:38:eb:
c7:7e:8f:2e:20:56:1a:1c:5f:28:02:84:1f:69:93:
3f:0f:7b:0d:46:3c:89:66:24:c4:a1:24:4b:e3:b0:
eb:df:9a:17:45:72:d6:69:6f:ff:34:b9:9e:3b:b0:
fd:e9:66:0b:f5:4f:66:da:c7:6d:b8:c7:af:d5:37:
c3:b7:49:c8:8c:e0:93:a1:ed:0b:9c:82:96:14:4e:
f0:c4:45:d9:19:96:05:9b:f0:58:fe:d4:b6:d6:c3:
ac:c7:c6:67:38:c6:dd:d3:a6:ee:b5:31:df:af:c1:
f3:75:fd:35:11:29:db:aa:b9:86:fd:16:a0:52:e0:
fa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BD:EA:A0:91:FA:5B:35:99:D0:C1:5A:7D:39:46:DC:63:C1:A5:6F
X509v3 Authority Key Identifier:
keyid:4F:67:9A:20:7D:25:88:B7:09:C8:2C:DA:B0:00:73:61:82:F8:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/4F679A207D2588B709C82CDAB000736182F881E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F679A207D2588B709C82CDAB000736182F881E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8993a93-5889-4e02-9e95-769cb89e0035/0/3130332e3139342e34372e302f32342d3234203d3e20313439393731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.194.47.0/24
Signature Algorithm: sha256WithRSAEncryption
85:bf:10:29:36:e6:b8:99:1b:12:31:b7:69:93:1a:c7:e1:30:
11:05:f2:2a:64:13:d5:e3:0c:a2:0c:ac:b8:36:72:e1:64:33:
30:44:bf:b3:27:11:20:41:d4:44:4f:7b:4b:98:60:38:21:56:
5c:41:37:eb:80:81:5d:02:70:39:f7:5c:25:d1:30:5d:34:2b:
f8:4f:04:bf:c7:75:b5:e1:af:ac:e7:b8:9b:62:7a:30:ba:ae:
7b:88:c7:04:04:f2:5d:1c:47:b5:62:90:b7:8f:02:c8:4f:70:
13:14:58:63:df:85:06:d2:16:ef:ed:9e:64:6e:b2:e5:de:3f:
0a:e6:4c:16:4f:4d:de:5c:f1:89:63:01:c9:3f:f2:46:d9:dd:
53:9a:b7:55:3c:4a:ab:42:17:ef:a0:46:c7:75:d3:40:0e:ab:
32:d0:54:c8:3f:85:98:9e:23:a1:d1:62:f8:db:e3:54:71:e5:
02:7f:ec:49:c8:eb:74:34:82:6c:ec:4d:7a:1a:32:ce:87:88:
49:8e:e0:0f:a1:41:21:17:66:59:c5:60:93:8e:b0:fa:61:31:
7e:e5:e9:3e:63:74:a2:c1:95:bb:ac:c4:e2:c4:b4:53:3a:af:
76:45:5f:4e:3e:5c:83:ea:96:66:b4:67:d3:76:03:5b:17:f4:
04:6c:51:79
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUbd52O40a4zwH27rfHk8/mX+EKjAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4
MkY4ODFFMTAeFw0yNDA4MjgxMDE0MDVaFw0yNTA4MjcxMDE5MDVaMDMxMTAvBgNV
BAMTKDdBQkRFQUEwOTFGQTVCMzU5OUQwQzE1QTdEMzk0NkRDNjNDMUE1NkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbTPgc6nGq6Uy4TwS/V29F+Htl
dxN4K70Pi/Xyqx0FNd4ckRp6wqPnD7Rhea5X/u0jT58aYk22z75hj7bS+e15z3Mp
Y/XwjQG16y/Y/4WUdcR1n2jcrDJu/KO5ofYpfWBC5synT9mPSZPpGRsoSYqYQWRP
UWfhiXeK6I9eEVvYhji818s468d+jy4gVhocXygChB9pkz8Pew1GPIlmJMShJEvj
sOvfmhdFctZpb/80uZ47sP3pZgv1T2bax224x6/VN8O3SciM4JOh7QucgpYUTvDE
RdkZlgWb8Fj+1LbWw6zHxmc4xt3Tpu61Md+vwfN1/TURKduquYb9FqBS4PrBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUer3qoJH6WzWZ0MFafTlG3GPBpW8wHwYDVR0j
BBgwFoAUT2eaIH0liLcJyCzasABzYYL4geEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ODk5M2E5My01ODg5LTRlMDItOWU5NS03NjljYjg5ZTAwMzUvMC80RjY3OUEyMDdE
MjU4OEI3MDlDODJDREFCMDAwNzM2MTgyRjg4MUUxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNEY2NzlBMjA3RDI1ODhCNzA5QzgyQ0RBQjAwMDczNjE4MkY4
ODFFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4OTkzYTkzLTU4ODktNGUwMi05
ZTk1LTc2OWNiODllMDAzNS8wLzMxMzAzMzJlMzEzOTM0MmUzNDM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8IvMA0GCSqG
SIb3DQEBCwUAA4IBAQCFvxApNua4mRsSMbdpkxrH4TARBfIqZBPV4wyiDKy4NnLh
ZDMwRL+zJxEgQdRET3tLmGA4IVZcQTfrgIFdAnA591wl0TBdNCv4TwS/x3W14a+s
57ibYnowuq57iMcEBPJdHEe1YpC3jwLIT3ATFFhj34UG0hbv7Z5kbrLl3j8K5kwW
T03eXPGJYwHJP/JG2d1TmrdVPEqrQhfvoEbHddNADqsy0FTIP4WYniOh0WL42+NU
ceUCf+xJyOt0NIJs7E16GjLOh4hJjuAPoUEhF2ZZxWCTjrD6YTF+5ek+Y3SiwZW7
rMTixLRTOq92RV9OPlyD6pZmtGfTdgNbF/QEbFF5
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:03:44 2025 by rpki-client