Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34352e302f32342d3234203d3e203435333132.roa
File: 3130332e31342e34352e302f32342d3234203d3e203435333132.roa (raw, json)
Hash identifier: 1kPDI4/MzGrvT5QjcdxT9Gy7/XfjZ6/DgFT07yiM3Js=
Subject key identifier: 92:CC:95:41:91:C9:3A:53:C1:C0:99:04:FC:8D:B7:43:B2:B4:6C:70
Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Certificate serial: 4330A90B1FFCED633FF246650B731618A30FF104
Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34352e302f32342d3234203d3e203435333132.roa
Signing time: Mon 01 Jul 2024 01:04:13 +0000
ROA not before: Mon 01 Jul 2024 00:59:13 +0000
ROA not after: Mon 30 Jun 2025 01:04:13 +0000
asID: 45312
IP address blocks: 103.14.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:30:a9:0b:1f:fc:ed:63:3f:f2:46:65:0b:73:16:18:a3:0f:f1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Validity
Not Before: Jul 1 00:59:13 2024 GMT
Not After : Jun 30 01:04:13 2025 GMT
Subject: CN=92CC954191C93A53C1C09904FC8DB743B2B46C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:93:d8:5c:75:c8:e6:57:99:ab:8d:16:15:30:
a9:aa:60:69:16:10:d1:1c:50:09:2c:36:e1:1e:9e:
32:5d:0f:da:c9:68:67:5c:33:e3:be:fa:e4:53:cf:
fa:80:1e:6c:2a:20:8d:83:e4:78:79:a7:17:2d:5b:
b2:b3:f3:57:16:86:02:67:40:1e:84:d7:26:79:31:
41:94:12:55:36:e7:4b:32:40:0e:29:54:c3:aa:4c:
27:94:0f:f8:59:12:91:0b:79:40:87:9b:cf:2a:41:
4d:29:97:f3:62:d7:30:cf:83:3f:86:1e:1b:13:f6:
02:a9:4f:b3:ab:34:59:d2:71:23:0f:82:a3:64:38:
c9:b5:a5:7b:2c:e5:7c:00:84:71:57:a6:a8:aa:59:
dc:62:19:d1:a9:42:68:cd:14:e6:71:47:01:6a:11:
a5:d8:8d:0c:82:bb:0e:b2:8c:45:c0:e5:80:a5:7d:
97:51:6e:bf:99:6c:11:85:dd:4a:ef:e1:ee:58:88:
eb:ac:ee:ca:10:e6:a3:79:20:e9:00:af:58:4c:78:
9e:3f:f4:4b:6d:39:30:0b:57:67:d7:1d:25:20:f8:
41:c2:e8:1b:29:ae:f4:fa:f0:4c:66:f7:67:45:a3:
5d:4b:24:17:15:ca:87:41:cc:1c:fb:27:d3:9d:ce:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CC:95:41:91:C9:3A:53:C1:C0:99:04:FC:8D:B7:43:B2:B4:6C:70
X509v3 Authority Key Identifier:
keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31342e34352e302f32342d3234203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.14.45.0/24
Signature Algorithm: sha256WithRSAEncryption
15:48:06:39:66:40:4b:7f:f1:97:e4:c0:57:f7:2f:38:3f:70:
a8:e3:ee:75:76:b9:cc:2c:e0:ff:67:58:ae:62:de:07:a3:0c:
57:40:bf:75:95:cc:94:9a:3c:d4:ac:a2:b9:1b:3a:76:f5:25:
00:e3:1e:0e:f5:2e:40:25:35:d9:84:d0:f7:f3:fd:49:a5:77:
d9:31:5a:0f:37:82:71:f7:85:15:a7:42:ae:53:84:24:ee:1b:
43:a3:9a:5c:79:f8:18:99:46:ad:2b:1f:92:2f:78:94:8d:29:
48:47:87:f1:ce:7e:3e:63:d1:eb:92:ab:40:fc:dc:3e:be:24:
59:33:12:7f:a6:a6:5b:de:66:8f:83:38:bf:f5:26:a3:38:fc:
a0:b9:8e:39:86:27:af:25:73:3a:0b:e0:a0:19:3f:d2:8b:95:
9e:62:d8:be:c3:67:5d:7e:9f:47:de:96:61:26:87:1a:50:cf:
42:ef:41:0d:db:71:7e:e7:8b:4d:2f:4b:64:93:6c:80:06:87:
59:c9:a9:85:1f:9b:c7:61:db:e3:3a:b0:a0:9f:6f:d6:fa:c3:
af:f4:9e:56:42:04:fb:e9:a4:bf:b4:e8:cc:d6:d5:14:70:d4:
a4:ad:a4:d1:10:f7:1c:a4:6c:71:7f:ef:e0:72:06:33:6b:d3:
c5:af:e5:d1
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUQzCpCx/87WM/8kZlC3MWGKMP8QQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB
MEJGQzQ0MTAeFw0yNDA3MDEwMDU5MTNaFw0yNTA2MzAwMTA0MTNaMDMxMTAvBgNV
BAMTKDkyQ0M5NTQxOTFDOTNBNTNDMUMwOTkwNEZDOERCNzQzQjJCNDZDNzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDik9hcdcjmV5mrjRYVMKmqYGkW
ENEcUAksNuEenjJdD9rJaGdcM+O++uRTz/qAHmwqII2D5Hh5pxctW7Kz81cWhgJn
QB6E1yZ5MUGUElU250syQA4pVMOqTCeUD/hZEpELeUCHm88qQU0pl/Ni1zDPgz+G
HhsT9gKpT7OrNFnScSMPgqNkOMm1pXss5XwAhHFXpqiqWdxiGdGpQmjNFOZxRwFq
EaXYjQyCuw6yjEXA5YClfZdRbr+ZbBGF3Urv4e5YiOus7soQ5qN5IOkAr1hMeJ4/
9EttOTALV2fXHSUg+EHC6BsprvT68Exm92dFo11LJBcVyodBzBz7J9OdzjiPAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUksyVQZHJOlPBwJkE/I23Q7K0bHAwHwYDVR0j
BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4
NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG
QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h
MzA2LWJkOTNkNWEzOGZlYS8wLzMxMzAzMzJlMzEzNDJlMzQzNTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnDi0wDQYJKoZIhvcN
AQELBQADggEBABVIBjlmQEt/8ZfkwFf3Lzg/cKjj7nV2ucws4P9nWK5i3gejDFdA
v3WVzJSaPNSsorkbOnb1JQDjHg71LkAlNdmE0Pfz/Umld9kxWg83gnH3hRWnQq5T
hCTuG0Ojmlx5+BiZRq0rH5IveJSNKUhHh/HOfj5j0euSq0D83D6+JFkzEn+mplve
Zo+DOL/1JqM4/KC5jjmGJ68lczoL4KAZP9KLlZ5i2L7DZ11+n0felmEmhxpQz0Lv
QQ3bcX7ni00vS2STbIAGh1nJqYUfm8dh2+M6sKCfb9b6w6/0nlZCBPvppL+06MzW
1RRw1KStpNEQ9xykbHF/7+ByBjNr08Wv5dE=
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:03:23 2025 by rpki-client