Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa
File: 3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa (raw, json)
Hash identifier: ik3JwPueGh0lC4/wMe1++inmZhlbllGr5PVZbJzidbY=
Subject key identifier: F2:24:C2:85:DF:0E:04:5C:7F:CC:9B:86:7B:FE:B9:F4:30:A3:B1:6B
Certificate issuer: /CN=CA13A9BAC29315E5C5DACF0BC7388C342AD6E592
Certificate serial: 6EC3EB1AEE99B78694C19736186DBF28A039BDF4
Authority key identifier: CA:13:A9:BA:C2:93:15:E5:C5:DA:CF:0B:C7:38:8C:34:2A:D6:E5:92
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa
Signing time: Tue 06 Aug 2024 06:00:44 +0000
ROA not before: Tue 06 Aug 2024 05:55:44 +0000
ROA not after: Tue 05 Aug 2025 06:00:44 +0000
asID: 142394
IP address blocks: 103.172.196.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c3:eb:1a:ee:99:b7:86:94:c1:97:36:18:6d:bf:28:a0:39:bd:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA13A9BAC29315E5C5DACF0BC7388C342AD6E592
Validity
Not Before: Aug 6 05:55:44 2024 GMT
Not After : Aug 5 06:00:44 2025 GMT
Subject: CN=F224C285DF0E045C7FCC9B867BFEB9F430A3B16B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:dc:09:de:fd:ed:c6:08:19:14:a4:83:71:33:
07:f4:85:13:d8:a3:4f:de:30:60:ef:68:d8:eb:85:
35:09:89:b7:b0:53:0b:b4:80:f5:49:74:18:0c:bd:
ab:dd:c5:14:88:82:52:99:a2:0e:6c:be:a9:24:be:
1d:a3:dc:0b:69:db:6c:a4:fa:c5:64:f9:d2:03:42:
ab:29:36:37:20:59:46:0f:38:8f:7c:8e:fd:f9:56:
64:a5:cb:74:98:31:4f:87:aa:3c:a3:11:68:e1:19:
fe:ec:4b:75:69:97:ea:fc:1d:7c:07:24:c4:3c:e1:
80:9a:38:15:ba:5e:ca:fc:37:56:f3:66:bc:f9:c5:
87:0d:2d:45:47:1c:1a:1c:2c:44:ce:00:ed:fa:b4:
9b:55:9f:93:cf:16:2b:74:a9:6e:02:0e:d6:9a:0d:
fe:4e:ff:04:a1:c9:a2:7a:bb:1d:db:36:a4:25:a4:
36:12:b8:cf:77:48:65:16:ec:31:4c:af:7c:8f:ca:
b4:10:f9:3b:fd:ef:81:bc:f9:95:77:1c:c4:4d:1d:
26:c6:6f:d2:1b:b0:ba:ff:6f:87:0e:e3:df:5a:c4:
9c:85:33:f2:90:6f:21:fb:69:5e:ad:0d:33:b1:93:
3d:a5:69:b6:24:bb:7e:db:99:fd:91:1f:88:28:cb:
f3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:24:C2:85:DF:0E:04:5C:7F:CC:9B:86:7B:FE:B9:F4:30:A3:B1:6B
X509v3 Authority Key Identifier:
keyid:CA:13:A9:BA:C2:93:15:E5:C5:DA:CF:0B:C7:38:8C:34:2A:D6:E5:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA13A9BAC29315E5C5DACF0BC7388C342AD6E592.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/3130332e3137322e3139362e302f32332d3234203d3e20313432333934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.196.0/23
Signature Algorithm: sha256WithRSAEncryption
90:61:c6:1d:6c:d0:06:ed:7e:3e:17:99:1b:d0:aa:00:f5:25:
55:e0:65:f5:d4:d6:5e:f2:7f:49:fd:c4:9f:ce:43:e4:0b:d1:
6c:60:32:de:31:36:5a:0f:0d:a6:83:99:c6:42:72:91:2f:b4:
3d:ff:96:f3:82:46:d0:1f:f0:22:e5:18:c6:4b:0e:cb:f9:4f:
e9:48:fd:aa:17:ff:64:55:02:5f:6c:70:26:7f:c0:35:e1:61:
0f:02:94:bf:d8:62:11:64:06:9f:4c:4b:11:32:97:94:bf:8a:
06:ae:e1:9f:2e:43:63:92:eb:e4:bf:c8:3b:8f:e5:29:14:7a:
54:57:2f:31:99:ef:86:29:39:9e:9b:66:80:9c:a6:32:a0:85:
bc:2e:77:e2:6d:52:cd:c0:02:3a:3e:10:67:38:2e:ab:6a:0b:
34:7a:13:99:2c:e4:bd:05:be:ef:a2:78:e9:1d:c1:52:29:dd:
ce:89:24:b6:bb:79:8b:d8:6c:c1:14:c1:aa:ff:89:a8:95:4d:
12:8f:91:44:f2:98:aa:82:b7:32:e0:52:8b:07:56:0d:c9:39:
60:3d:42:52:43:8d:40:50:e7:48:67:d2:16:59:ec:6f:06:b1:
28:56:1b:75:42:73:81:dd:3c:e3:48:71:de:47:6d:0f:81:49:
4f:de:4d:4a
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUbsPrGu6Zt4aUwZc2GG2/KKA5vfQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0ExM0E5QkFDMjkzMTVFNUM1REFDRjBCQzczODhDMzQy
QUQ2RTU5MjAeFw0yNDA4MDYwNTU1NDRaFw0yNTA4MDUwNjAwNDRaMDMxMTAvBgNV
BAMTKEYyMjRDMjg1REYwRTA0NUM3RkNDOUI4NjdCRkVCOUY0MzBBM0IxNkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr3Ane/e3GCBkUpINxMwf0hRPY
o0/eMGDvaNjrhTUJibewUwu0gPVJdBgMvavdxRSIglKZog5svqkkvh2j3Atp22yk
+sVk+dIDQqspNjcgWUYPOI98jv35VmSly3SYMU+HqjyjEWjhGf7sS3Vpl+r8HXwH
JMQ84YCaOBW6Xsr8N1bzZrz5xYcNLUVHHBocLETOAO36tJtVn5PPFit0qW4CDtaa
Df5O/wShyaJ6ux3bNqQlpDYSuM93SGUW7DFMr3yPyrQQ+Tv974G8+ZV3HMRNHSbG
b9IbsLr/b4cO499axJyFM/KQbyH7aV6tDTOxkz2labYku37bmf2RH4goy/N3AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU8iTChd8OBFx/zJuGe/659DCjsWswHwYDVR0j
BBgwFoAUyhOpusKTFeXF2s8LxziMNCrW5ZIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
Mzk3Y2ZjNS1lMGIwLTQ4MjAtYjg1OS03OTYyNTIwMWVjYWYvMC9DQTEzQTlCQUMy
OTMxNUU1QzVEQUNGMEJDNzM4OEMzNDJBRDZFNTkyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0ExM0E5QkFDMjkzMTVFNUM1REFDRjBCQzczODhDMzQyQUQ2
RTU5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzOTdjZmM1LWUwYjAtNDgyMC1i
ODU5LTc5NjI1MjAxZWNhZi8wLzMxMzAzMzJlMzEzNzMyMmUzMTM5MzYyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrMQwDQYJ
KoZIhvcNAQELBQADggEBAJBhxh1s0Abtfj4XmRvQqgD1JVXgZfXU1l7yf0n9xJ/O
Q+QL0WxgMt4xNloPDaaDmcZCcpEvtD3/lvOCRtAf8CLlGMZLDsv5T+lI/aoX/2RV
Al9scCZ/wDXhYQ8ClL/YYhFkBp9MSxEyl5S/igau4Z8uQ2OS6+S/yDuP5SkUelRX
LzGZ74YpOZ6bZoCcpjKghbwud+JtUs3AAjo+EGc4LqtqCzR6E5ks5L0Fvu+ieOkd
wVIp3c6JJLa7eYvYbMEUwar/iaiVTRKPkUTymKqCtzLgUosHVg3JOWA9QlJDjUBQ
50hn0hZZ7G8GsShWG3VCc4HdPONIcd5HbQ+BSU/eTUo=
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:35:06 2025 by rpki-client