Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa
File: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (raw, json)
Hash identifier: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=
Subject key identifier: 4E:79:C2:27:06:E4:E0:AD:D0:F0:FF:54:F5:F4:70:22:2F:EA:28:B6
Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4
Certificate serial: 7B3828D524E592BF2DE26E286247E1094A8F5B56
Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa
Signing time: Tue 21 Jan 2025 03:02:34 +0000
ROA not before: Tue 21 Jan 2025 02:57:34 +0000
ROA not after: Tue 20 Jan 2026 03:02:34 +0000
asID: 149663
IP address blocks: 103.184.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:38:28:d5:24:e5:92:bf:2d:e2:6e:28:62:47:e1:09:4a:8f:5b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C70A343932991281F91796DB87B011987603BBF4
Validity
Not Before: Jan 21 02:57:34 2025 GMT
Not After : Jan 20 03:02:34 2026 GMT
Subject: CN=4E79C22706E4E0ADD0F0FF54F5F470222FEA28B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e1:a4:52:e2:7f:bd:d9:f3:00:35:03:4f:78:
0d:4c:9f:80:8c:d3:e5:88:e7:8d:58:dd:4e:6f:ab:
c6:96:92:94:56:74:f6:50:48:69:0a:51:bd:f0:ec:
a1:43:a7:fa:c2:7a:c6:be:da:ea:ed:df:0c:0d:eb:
de:de:a7:8e:f2:70:b2:2c:79:1c:ca:55:7d:c0:73:
e0:e4:a4:d3:55:1e:b0:fc:1a:25:94:21:e4:bc:16:
57:fb:f2:9e:5c:ad:cc:df:94:af:c0:7e:3f:b2:1c:
5b:7a:ea:da:a0:de:ef:47:4b:fc:ff:cc:aa:c6:ec:
de:23:be:ea:d9:7c:11:2b:0c:3b:aa:b3:c0:67:6e:
5e:74:28:6f:a8:fe:dc:ed:86:30:9b:79:b2:d3:03:
2d:cb:f5:17:d6:1b:33:47:a5:5d:7c:bd:4f:a7:ae:
c1:11:90:f5:84:fb:c4:25:b9:32:52:f8:e7:80:85:
20:c5:58:eb:ef:ba:5b:cf:37:62:11:b6:4b:40:4b:
27:d9:99:8d:44:6e:8e:37:2f:7d:6a:13:f9:f4:22:
0d:14:89:df:9e:c9:31:a1:b9:64:11:75:c3:cd:ca:
88:2a:d5:e0:c4:d2:03:03:04:4c:8f:b8:f7:27:fb:
3e:20:5c:f8:f6:b3:49:77:87:b2:87:bf:8c:09:40:
52:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:79:C2:27:06:E4:E0:AD:D0:F0:FF:54:F5:F4:70:22:2F:EA:28:B6
X509v3 Authority Key Identifier:
keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.121.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b6:44:06:90:cc:a1:2e:33:70:f9:55:51:bc:a3:e4:86:a3:
14:36:7d:24:ec:4b:44:a4:7c:58:52:2d:87:50:c1:a9:97:f7:
24:cf:02:f6:22:07:51:e4:d5:05:8a:7b:09:0a:af:02:44:36:
2e:d3:9d:87:54:90:af:e7:e3:c1:7d:aa:80:78:bd:9e:b3:2c:
e6:c7:04:79:3e:7b:fa:a1:c2:7a:f7:c4:82:dc:be:06:13:52:
a0:9b:72:21:02:56:6c:32:49:13:7a:d5:a3:5b:91:ce:61:8b:
27:f9:29:2d:52:6f:5a:e1:94:f8:1e:0b:98:c4:09:dd:a4:86:
25:ee:dc:d5:03:d1:07:d2:18:ea:7d:84:7b:2a:ad:ba:1e:e6:
dd:ff:a8:2f:05:be:f1:eb:c7:67:c0:96:90:46:d6:21:2b:05:
de:ee:f4:72:ef:85:fa:e6:33:a8:ee:30:a3:b6:df:7f:61:b0:
24:04:f7:4c:84:aa:ac:09:b4:cf:31:a6:a2:14:b6:52:38:fc:
c6:27:24:9e:78:be:ed:a4:70:e1:07:5c:d1:5d:33:9b:0c:eb:
7f:b9:e2:12:60:e4:75:3f:e6:af:ca:df:79:c3:b8:f4:f6:2a:
7e:57:bf:ea:34:5b:2e:7f:30:1b:fa:e7:d3:22:bb:14:02:88:
00:e4:c7:b6
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUezgo1STlkr8t4m4oYkfhCUqPW1YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3
NjAzQkJGNDAeFw0yNTAxMjEwMjU3MzRaFw0yNjAxMjAwMzAyMzRaMDMxMTAvBgNV
BAMTKDRFNzlDMjI3MDZFNEUwQUREMEYwRkY1NEY1RjQ3MDIyMkZFQTI4QjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD4aRS4n+92fMANQNPeA1Mn4CM
0+WI541Y3U5vq8aWkpRWdPZQSGkKUb3w7KFDp/rCesa+2urt3wwN697ep47ycLIs
eRzKVX3Ac+DkpNNVHrD8GiWUIeS8Flf78p5crczflK/Afj+yHFt66tqg3u9HS/z/
zKrG7N4jvurZfBErDDuqs8Bnbl50KG+o/tzthjCbebLTAy3L9RfWGzNHpV18vU+n
rsERkPWE+8QluTJS+OeAhSDFWOvvulvPN2IRtktASyfZmY1Ebo43L31qE/n0Ig0U
id+eyTGhuWQRdcPNyogq1eDE0gMDBEyPuPcn+z4gXPj2s0l3h7KHv4wJQFLvAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUTnnCJwbk4K3Q8P9U9fRwIi/qKLYwHwYDVR0j
BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy
OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz
QkJGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04
ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHkwDQYJ
KoZIhvcNAQELBQADggEBAAa2RAaQzKEuM3D5VVG8o+SGoxQ2fSTsS0SkfFhSLYdQ
wamX9yTPAvYiB1Hk1QWKewkKrwJENi7TnYdUkK/n48F9qoB4vZ6zLObHBHk+e/qh
wnr3xILcvgYTUqCbciECVmwySRN61aNbkc5hiyf5KS1Sb1rhlPgeC5jECd2khiXu
3NUD0QfSGOp9hHsqrboe5t3/qC8FvvHrx2fAlpBG1iErBd7u9HLvhfrmM6juMKO2
339hsCQE90yEqqwJtM8xpqIUtlI4/MYnJJ54vu2kcOEHXNFdM5sM63+54hJg5HU/
5q/K33nDuPT2Kn5Xv+o0Wy5/MBv659MiuxQCiADkx7Y=
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:56:09 2025 by rpki-client