Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa
File: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=
Subject key identifier: 87:0F:30:A0:51:AE:54:59:3B:E3:19:A2:4E:DE:14:E7:2D:50:BA:EF
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 795B6D6A07A2338ABE1920359D521F325607F760
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa
Signing time: Thu 12 Dec 2024 09:01:28 +0000
ROA not before: Thu 12 Dec 2024 08:56:28 +0000
ROA not after: Thu 11 Dec 2025 09:01:28 +0000
asID: 139952
IP address blocks: 103.149.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:5b:6d:6a:07:a2:33:8a:be:19:20:35:9d:52:1f:32:56:07:f7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Dec 12 08:56:28 2024 GMT
Not After : Dec 11 09:01:28 2025 GMT
Subject: CN=870F30A051AE54593BE319A24EDE14E72D50BAEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3f:63:d2:dc:33:c5:a9:5e:43:9b:cf:4d:9d:
83:a2:c7:f3:2c:b0:25:99:03:b2:a7:38:9f:2a:7f:
6e:57:b6:65:39:64:05:5f:0a:df:1b:01:37:3a:d0:
18:79:ec:fd:9a:44:4a:a0:b8:4d:49:2a:f4:0f:1a:
04:3c:c5:2a:3e:44:83:a6:d7:12:9e:d1:8b:07:1e:
60:b0:d6:f4:89:81:43:2c:f2:09:f8:9d:e4:ea:55:
34:1b:64:a2:8c:37:31:b5:75:de:1a:5e:b5:1f:27:
08:a8:72:5c:78:f9:95:7e:6e:78:aa:64:4f:bf:29:
29:42:7b:ee:b5:28:de:f8:58:d9:f1:f5:00:7b:de:
78:b9:71:56:1b:8e:e0:9a:e2:81:af:ab:73:16:0a:
fd:75:d8:7d:21:f0:43:9d:96:44:55:e8:35:36:0c:
96:c9:b8:11:d6:8a:86:14:e8:d2:d1:2b:72:fb:17:
6c:2f:c3:cf:14:e0:5b:f4:6d:af:b7:7c:b7:d0:da:
5c:9d:ca:13:17:8d:9e:71:e3:f1:82:e1:a2:39:8e:
fd:d9:d0:41:34:0a:af:8d:6d:b8:69:ca:4b:24:5b:
1b:3b:d6:9e:29:1b:52:0f:b9:36:d2:fb:49:be:8c:
a1:83:42:58:65:b1:a0:8f:99:0b:13:55:44:fd:fe:
e3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0F:30:A0:51:AE:54:59:3B:E3:19:A2:4E:DE:14:E7:2D:50:BA:EF
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/24
Signature Algorithm: sha256WithRSAEncryption
64:68:34:11:04:02:40:4e:06:f4:46:37:74:c8:e7:c2:80:b1:
77:d3:80:81:b5:09:aa:04:34:4d:f5:e3:67:35:8f:f3:e5:4d:
65:e0:d1:47:c5:a0:27:f0:61:a3:df:70:bc:c4:88:a8:62:59:
6f:a0:f9:47:04:a7:77:1b:c2:c5:7f:cd:8f:1f:99:0d:79:ab:
33:4b:4f:2f:20:bc:c5:a8:a3:0d:05:3c:95:7a:b2:a8:8c:29:
8f:e5:76:63:08:1d:e5:2c:e3:37:52:d0:1c:83:3f:0a:96:bf:
23:ed:11:bc:ff:22:2d:b2:0a:d8:90:6f:ae:c8:fa:16:cd:9e:
c7:e1:c0:2b:21:15:18:84:2f:97:48:91:af:91:63:80:f9:58:
f1:48:f4:9a:96:91:68:7f:2f:15:f1:0f:c5:9d:61:33:33:e7:
54:ec:d7:bb:cf:a1:47:e1:e8:28:87:6f:82:bf:95:ee:6c:bc:
24:e8:fe:d6:72:a9:bf:f8:3a:a2:cf:36:78:95:88:4a:71:50:
c5:d7:c2:b6:16:71:8a:5a:c6:71:06:f4:90:2b:62:5f:07:c7:
73:6b:4d:7e:9a:96:b3:e6:30:e8:ed:98:24:89:41:0f:9d:e6:
7c:24:28:1b:02:a4:6d:2c:7e:63:ef:e1:ac:02:f2:6e:7d:99:
43:c4:c2:76
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUeVttageiM4q+GSA1nVIfMlYH92AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC
NzQwMTY2MTAeFw0yNDEyMTIwODU2MjhaFw0yNTEyMTEwOTAxMjhaMDMxMTAvBgNV
BAMTKDg3MEYzMEEwNTFBRTU0NTkzQkUzMTlBMjRFREUxNEU3MkQ1MEJBRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjP2PS3DPFqV5Dm89NnYOix/Ms
sCWZA7KnOJ8qf25XtmU5ZAVfCt8bATc60Bh57P2aREqguE1JKvQPGgQ8xSo+RIOm
1xKe0YsHHmCw1vSJgUMs8gn4neTqVTQbZKKMNzG1dd4aXrUfJwioclx4+ZV+bniq
ZE+/KSlCe+61KN74WNnx9QB73ni5cVYbjuCa4oGvq3MWCv112H0h8EOdlkRV6DU2
DJbJuBHWioYU6NLRK3L7F2wvw88U4Fv0ba+3fLfQ2lydyhMXjZ5x4/GC4aI5jv3Z
0EE0Cq+NbbhpykskWxs71p4pG1IPuTbS+0m+jKGDQlhlsaCPmQsTVUT9/uOXAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUhw8woFGuVFk74xmiTt4U5y1Quu8wHwYDVR0j
BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND
RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw
MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04
NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXgwDQYJ
KoZIhvcNAQELBQADggEBAGRoNBEEAkBOBvRGN3TI58KAsXfTgIG1CaoENE3142c1
j/PlTWXg0UfFoCfwYaPfcLzEiKhiWW+g+UcEp3cbwsV/zY8fmQ15qzNLTy8gvMWo
ow0FPJV6sqiMKY/ldmMIHeUs4zdS0ByDPwqWvyPtEbz/Ii2yCtiQb67I+hbNnsfh
wCshFRiEL5dIka+RY4D5WPFI9JqWkWh/LxXxD8WdYTMz51Ts17vPoUfh6CiHb4K/
le5svCTo/tZyqb/4OqLPNniViEpxUMXXwrYWcYpaxnEG9JArYl8Hx3NrTX6alrPm
MOjtmCSJQQ+d5nwkKBsCpG0sfmPv4awC8m59mUPEwnY=
-----END CERTIFICATE-----
Generated at Thu Apr 10 04:20:44 2025 by rpki-client