Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa
File: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (raw, json)
Hash identifier: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=
Subject key identifier: F1:E9:E6:D1:6B:5B:F8:68:DA:F6:85:6E:9E:41:EF:71:AF:A9:9E:06
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 6029AC5E06098B5F40DD41790678DE3A0C3266B9
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa
Signing time: Thu 12 Dec 2024 09:01:28 +0000
ROA not before: Thu 12 Dec 2024 08:56:28 +0000
ROA not after: Thu 11 Dec 2025 09:01:28 +0000
asID: 7713
IP address blocks: 103.149.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:29:ac:5e:06:09:8b:5f:40:dd:41:79:06:78:de:3a:0c:32:66:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Dec 12 08:56:28 2024 GMT
Not After : Dec 11 09:01:28 2025 GMT
Subject: CN=F1E9E6D16B5BF868DAF6856E9E41EF71AFA99E06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:0d:8a:20:d5:c0:ad:b5:ed:c9:8d:94:40:
3f:fc:d1:fe:cb:33:bf:73:b3:cb:bb:41:79:10:a1:
c3:ea:35:76:24:67:a4:30:8c:8c:ba:01:be:1d:04:
aa:69:43:1a:91:67:15:46:69:57:2a:f2:ac:45:29:
e7:93:aa:9b:5e:17:0e:5b:ff:fc:3b:de:85:df:7b:
ad:ab:54:d1:ed:f4:77:ad:34:4a:99:de:ec:a9:54:
0f:d0:ca:9a:6e:6e:cf:e1:9d:41:78:73:f6:70:2b:
12:18:63:27:74:9f:aa:da:55:ee:06:6e:e6:ee:45:
0f:08:81:84:b3:6b:47:29:73:7e:57:93:33:2c:58:
69:f7:d7:46:91:e0:e6:89:da:e9:c5:9c:34:25:59:
f2:cd:18:63:89:cf:59:84:94:67:e0:9e:d3:4e:47:
f7:aa:3e:8a:16:a8:dd:e8:e1:6c:68:2c:e0:2d:ec:
7b:29:ce:21:94:cc:c9:94:5e:a9:ae:76:62:54:82:
40:06:2d:93:1f:73:6a:69:39:ac:06:be:c4:00:a3:
9b:74:cb:19:21:91:bf:ea:08:f3:f9:35:4e:23:f4:
37:e2:83:65:79:9b:08:ca:11:a0:d0:9f:e2:57:03:
d8:17:29:bd:64:b7:6f:60:d6:ab:93:22:36:11:fd:
d6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E9:E6:D1:6B:5B:F8:68:DA:F6:85:6E:9E:41:EF:71:AF:A9:9E:06
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9a:13:53:d4:cc:30:da:f6:09:cc:ed:69:63:bf:6b:98:7d:
d2:8f:ff:6d:53:ed:47:f3:94:dd:b0:cc:17:df:5e:d9:4b:0d:
b6:d1:75:80:c5:bc:e7:09:f7:c8:f5:6a:3c:79:e9:1e:bc:7c:
79:09:25:b6:10:b0:ea:ce:92:22:83:d4:34:b4:4d:1c:8d:9d:
c3:d4:f5:c4:ec:e2:16:e7:b2:26:c1:b1:49:87:39:38:aa:f5:
b9:b8:92:d3:cd:0c:28:93:c9:46:e7:bc:ca:1d:e0:d0:1a:61:
1a:41:d4:2b:a3:13:88:0d:69:cb:09:a1:ca:ae:43:84:2f:ea:
4d:bf:21:70:ed:ea:43:25:2c:df:00:27:a8:54:81:d8:12:18:
e5:9a:77:d4:9e:de:59:1a:50:a4:55:da:b2:45:44:32:0d:55:
0d:e1:be:65:89:1a:d5:6b:1a:f5:0e:d3:de:68:de:d7:10:a3:
d3:ac:18:fe:ad:39:03:5c:5a:66:f6:dc:54:ae:d4:43:f0:4f:
8c:7c:b0:14:23:93:7f:c4:33:c6:d9:67:9b:1b:b2:0a:4a:3e:
d5:44:4b:10:8d:6a:05:18:7d:22:7c:7e:d7:b2:4d:8c:d8:bc:
52:f7:9c:89:41:fa:22:56:1f:ce:08:f6:4a:68:c2:e4:d1:ba:
63:11:38:ef
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUYCmsXgYJi19A3UF5BnjeOgwyZrkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC
NzQwMTY2MTAeFw0yNDEyMTIwODU2MjhaFw0yNTEyMTEwOTAxMjhaMDMxMTAvBgNV
BAMTKEYxRTlFNkQxNkI1QkY4NjhEQUY2ODU2RTlFNDFFRjcxQUZBOTlFMDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3PA2KINXArbXtyY2UQD/80f7L
M79zs8u7QXkQocPqNXYkZ6QwjIy6Ab4dBKppQxqRZxVGaVcq8qxFKeeTqpteFw5b
//w73oXfe62rVNHt9HetNEqZ3uypVA/Qyppubs/hnUF4c/ZwKxIYYyd0n6raVe4G
bubuRQ8IgYSza0cpc35XkzMsWGn310aR4OaJ2unFnDQlWfLNGGOJz1mElGfgntNO
R/eqPooWqN3o4WxoLOAt7HspziGUzMmUXqmudmJUgkAGLZMfc2ppOawGvsQAo5t0
yxkhkb/qCPP5NU4j9Dfig2V5mwjKEaDQn+JXA9gXKb1kt29g1quTIjYR/db/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU8enm0Wtb+Gja9oVunkHvca+pngYwHwYDVR0j
BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND
RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw
MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04
NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeDANBgkqhkiG
9w0BAQsFAAOCAQEAFJoTU9TMMNr2CcztaWO/a5h90o//bVPtR/OU3bDMF99e2UsN
ttF1gMW85wn3yPVqPHnpHrx8eQklthCw6s6SIoPUNLRNHI2dw9T1xOziFueyJsGx
SYc5OKr1ubiS080MKJPJRue8yh3g0BphGkHUK6MTiA1pywmhyq5DhC/qTb8hcO3q
QyUs3wAnqFSB2BIY5Zp31J7eWRpQpFXaskVEMg1VDeG+ZYka1Wsa9Q7T3mje1xCj
06wY/q05A1xaZvbcVK7UQ/BPjHywFCOTf8QzxtlnmxuyCko+1URLEI1qBRh9Inx+
17JNjNi8UveciUH6IlYfzgj2SmjC5NG6YxE47w==
-----END CERTIFICATE-----
Generated at Wed Apr 9 12:53:43 2025 by rpki-client