Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa
File: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (raw, json)
Hash identifier: WgrIRzdaFJ0g4e27LMgAxhh+yicucERWndK+pSX36cg=
Subject key identifier: D8:57:05:78:1A:EF:C1:99:C6:02:C7:04:20:AB:2B:9F:46:F0:72:B1
Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269
Certificate serial: 03B743B0E271EAEA305AAD809EC9F2916C749DDA
Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa
Signing time: Thu 26 Sep 2024 06:00:00 +0000
ROA not before: Thu 26 Sep 2024 05:55:00 +0000
ROA not after: Thu 25 Sep 2025 06:00:00 +0000
asID: 46052
IP address blocks: 103.24.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:b7:43:b0:e2:71:ea:ea:30:5a:ad:80:9e:c9:f2:91:6c:74:9d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269
Validity
Not Before: Sep 26 05:55:00 2024 GMT
Not After : Sep 25 06:00:00 2025 GMT
Subject: CN=D85705781AEFC199C602C70420AB2B9F46F072B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ec:94:14:36:04:c7:b3:7d:7d:28:c6:7b:c1:
72:4e:68:d0:1c:bf:7a:40:26:d9:68:ae:41:3f:f2:
e6:b4:4b:74:c9:67:e0:03:88:c6:ef:7c:08:29:48:
46:23:9b:2a:b6:7c:91:a0:d1:16:42:4f:f0:75:9a:
03:09:da:c9:eb:03:26:b8:e0:fe:af:28:34:6c:26:
67:84:de:e6:63:2e:66:2a:e1:31:b0:a2:e5:fe:15:
da:1b:af:a6:37:a6:4a:c6:68:dc:8a:1d:ba:bb:99:
02:ad:1f:6b:98:08:8c:ec:41:43:6f:4f:cd:7f:5c:
19:b4:cd:db:3f:c0:9b:41:4b:78:87:64:8f:df:51:
cd:94:d6:fb:72:7f:ad:38:42:59:15:c2:26:81:6f:
f8:fe:ae:77:ff:b9:0d:20:88:ed:bf:f6:ba:41:46:
5a:0c:c7:19:8a:b2:80:13:82:5c:53:15:ff:8d:6c:
fc:0f:d1:f3:53:fd:70:45:0a:6b:04:43:c5:4a:8b:
9b:ad:21:93:0a:44:ff:3e:b8:ab:d2:b6:a3:1b:db:
f9:b6:3a:6b:45:c4:16:d8:1b:8e:4f:d3:f1:b3:d9:
18:47:1d:f0:7c:cf:29:d7:15:f3:c6:62:f2:b4:95:
8e:1a:23:1d:3a:d3:4b:c7:23:96:99:85:17:92:3d:
34:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:57:05:78:1A:EF:C1:99:C6:02:C7:04:20:AB:2B:9F:46:F0:72:B1
X509v3 Authority Key Identifier:
keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.24.57.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:4f:bd:e5:47:63:c3:dc:6a:80:cf:e2:9e:77:24:30:1d:2e:
b7:41:04:2d:c7:07:5a:e0:42:8a:b1:90:01:d4:3f:1a:7f:e2:
27:64:f5:fe:40:9d:c6:e3:24:21:1a:e4:c2:e5:5b:f0:55:3d:
b2:70:f4:e7:29:7e:df:5f:8e:7b:88:4e:a0:37:6f:64:79:3e:
06:d9:d4:2a:3e:e8:7c:fb:6b:fe:8c:4e:37:c7:24:d3:d6:84:
80:35:5b:33:74:51:06:a4:b0:a1:fa:ac:c1:4d:80:b2:ec:ea:
3e:9b:3b:a4:42:e1:a9:71:81:f3:1e:60:00:20:b2:59:1e:27:
ad:e1:72:2a:b3:1e:ae:93:1e:b6:74:3a:c5:8b:d8:a1:ee:9e:
0a:29:f4:16:36:10:58:da:da:47:da:3e:9e:9d:98:a3:44:cf:
d3:d6:68:f2:18:d7:22:8d:5d:09:ff:57:e0:17:4e:cb:e8:72:
ec:05:26:30:db:e5:77:15:d2:32:43:72:ef:ce:77:89:a5:44:
ea:eb:60:4d:fb:c2:03:04:61:36:69:53:b5:2e:89:01:ba:a6:
a5:46:1b:03:39:44:13:9a:ab:61:d5:67:cd:a5:c1:3c:be:c1:
df:4f:10:d4:91:9e:90:2a:81:cf:14:80:94:c4:fb:87:d3:eb:
82:9a:2a:58
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUA7dDsOJx6uowWq2AnsnykWx0ndowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE
QzlBMTI2OTAeFw0yNDA5MjYwNTU1MDBaFw0yNTA5MjUwNjAwMDBaMDMxMTAvBgNV
BAMTKEQ4NTcwNTc4MUFFRkMxOTlDNjAyQzcwNDIwQUIyQjlGNDZGMDcyQjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt7JQUNgTHs319KMZ7wXJOaNAc
v3pAJtlorkE/8ua0S3TJZ+ADiMbvfAgpSEYjmyq2fJGg0RZCT/B1mgMJ2snrAya4
4P6vKDRsJmeE3uZjLmYq4TGwouX+Fdobr6Y3pkrGaNyKHbq7mQKtH2uYCIzsQUNv
T81/XBm0zds/wJtBS3iHZI/fUc2U1vtyf604QlkVwiaBb/j+rnf/uQ0giO2/9rpB
RloMxxmKsoATglxTFf+NbPwP0fNT/XBFCmsEQ8VKi5utIZMKRP8+uKvStqMb2/m2
OmtFxBbYG45P0/Gz2RhHHfB8zynXFfPGYvK0lY4aIx0600vHI5aZhReSPTRRAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU2FcFeBrvwZnGAscEIKsrn0bwcrEwHwYDVR0j
BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE
QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB
MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04
MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzNzJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDkwDQYJKoZIhvcN
AQELBQADggEBAJpPveVHY8PcaoDP4p53JDAdLrdBBC3HB1rgQoqxkAHUPxp/4idk
9f5AncbjJCEa5MLlW/BVPbJw9Ocpft9fjnuITqA3b2R5PgbZ1Co+6Hz7a/6MTjfH
JNPWhIA1WzN0UQaksKH6rMFNgLLs6j6bO6RC4alxgfMeYAAgslkeJ63hciqzHq6T
HrZ0OsWL2KHungop9BY2EFja2kfaPp6dmKNEz9PWaPIY1yKNXQn/V+AXTsvocuwF
JjDb5XcV0jJDcu/Od4mlROrrYE37wgMEYTZpU7UuiQG6pqVGGwM5RBOaq2HVZ82l
wTy+wd9PENSRnpAqgc8UgJTE+4fT64KaKlg=
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:05:45 2025 by rpki-client