Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa
File: 3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa (raw, json)
Hash identifier: tzUv6ZoVBauP5SIKaVDlU1vK/lJ77kKziRyhRQRActU=
Subject key identifier: 32:3F:7D:AD:B0:79:89:DA:E5:A8:3C:0B:78:53:5D:77:97:30:FE:A1
Certificate issuer: /CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C
Certificate serial: 574D11307FBFAB7B3853BBB04AD52E427436CF81
Authority key identifier: 0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa
Signing time: Wed 16 Oct 2024 11:00:00 +0000
ROA not before: Wed 16 Oct 2024 10:55:00 +0000
ROA not after: Wed 15 Oct 2025 11:00:00 +0000
asID: 139433
IP address blocks: 103.144.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:4d:11:30:7f:bf:ab:7b:38:53:bb:b0:4a:d5:2e:42:74:36:cf:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C
Validity
Not Before: Oct 16 10:55:00 2024 GMT
Not After : Oct 15 11:00:00 2025 GMT
Subject: CN=323F7DADB07989DAE5A83C0B78535D779730FEA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:84:d9:71:1e:fa:db:56:87:cb:ea:34:a5:
61:25:02:48:08:f6:cc:47:59:a0:58:7c:88:5e:21:
9f:7f:a8:f6:0f:4d:a0:e8:07:48:ef:c1:0f:8b:f9:
7f:29:25:66:46:8f:af:5c:26:41:a5:4b:1c:a2:de:
7f:95:0a:cc:19:ea:d8:79:39:be:9b:89:51:10:8a:
7a:5c:41:8e:c1:85:71:81:08:ca:40:ce:58:b9:ea:
a6:3b:47:f5:43:67:8d:a6:c5:2e:93:23:75:a9:89:
bf:1c:a5:ec:a6:15:8e:d9:cd:c2:55:eb:0c:67:03:
3a:21:e1:8d:0d:64:ff:dd:a3:8c:ae:6e:83:25:12:
07:5f:9b:a2:e7:d6:61:ec:7c:3c:6e:bc:e8:18:ed:
6d:71:52:79:98:95:17:e7:e4:73:6e:c4:59:cf:e5:
0e:e5:21:d9:a3:df:c8:1c:56:dc:be:04:70:72:4c:
8c:93:53:6b:f5:a3:4f:23:f1:f4:47:81:1a:68:d2:
2d:42:6a:0e:f1:85:ad:dd:90:b2:35:c6:f7:db:86:
38:36:93:0b:45:84:2b:4c:da:08:ff:32:f4:3b:a8:
d7:24:ca:95:d3:0b:e6:1c:9c:77:d1:77:43:c2:56:
55:53:c9:25:ad:7b:e2:d2:41:b2:f2:b9:74:68:76:
7d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3F:7D:AD:B0:79:89:DA:E5:A8:3C:0B:78:53:5D:77:97:30:FE:A1
X509v3 Authority Key Identifier:
keyid:0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.129.0/24
Signature Algorithm: sha256WithRSAEncryption
76:0d:f7:e4:b6:60:65:3d:3e:30:d1:35:d0:1d:2e:b2:19:3a:
4b:16:1e:e5:15:f4:8a:56:bd:f6:d9:14:6b:42:27:b0:ba:29:
ed:27:06:7a:03:0a:00:ae:38:e5:f6:11:52:bb:74:d2:e0:f2:
8d:42:85:3c:94:2f:7d:78:9c:35:b2:3c:0e:34:2e:88:82:d9:
9c:2a:b5:96:b1:00:3b:b3:90:98:8a:44:8a:21:19:a5:d2:b0:
f2:bc:b1:00:dc:51:00:f9:90:18:cc:d3:de:15:22:81:e9:0a:
4d:46:15:4d:ff:af:d9:96:fe:e5:61:c2:87:d2:10:9e:85:98:
15:3c:1b:5a:5c:42:fe:0a:73:db:c1:90:58:95:b3:4b:2c:f2:
ea:fd:ca:1d:96:01:02:41:6b:ee:58:f4:56:95:ab:72:02:52:
39:68:d1:91:44:c3:f5:46:db:ca:f3:8a:a9:54:31:17:4f:4e:
f4:55:38:31:1d:43:e4:4e:6d:77:1f:f2:c1:db:0e:6e:c2:d0:
aa:74:fe:85:ab:81:b5:e0:a2:61:7c:d3:be:13:ae:2b:b0:c4:
3f:d4:2a:82:9b:57:43:36:3a:44:da:d9:fc:51:cc:1c:b8:17:
82:4f:6e:9f:51:4f:64:5d:10:8b:28:93:54:09:72:95:5d:c4:
e8:68:cd:1b
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUV00RMH+/q3s4U7uwStUuQnQ2z4EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcx
MDg0NUE5QzAeFw0yNDEwMTYxMDU1MDBaFw0yNTEwMTUxMTAwMDBaMDMxMTAvBgNV
BAMTKDMyM0Y3REFEQjA3OTg5REFFNUE4M0MwQjc4NTM1RDc3OTczMEZFQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxHoTZcR7621aHy+o0pWElAkgI
9sxHWaBYfIheIZ9/qPYPTaDoB0jvwQ+L+X8pJWZGj69cJkGlSxyi3n+VCswZ6th5
Ob6biVEQinpcQY7BhXGBCMpAzli56qY7R/VDZ42mxS6TI3Wpib8cpeymFY7ZzcJV
6wxnAzoh4Y0NZP/do4yuboMlEgdfm6Ln1mHsfDxuvOgY7W1xUnmYlRfn5HNuxFnP
5Q7lIdmj38gcVty+BHByTIyTU2v1o08j8fRHgRpo0i1Cag7xha3dkLI1xvfbhjg2
kwtFhCtM2gj/MvQ7qNckypXTC+YcnHfRd0PCVlVTySWte+LSQbLyuXRodn2TAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUMj99rbB5idrlqDwLeFNdd5cw/qEwHwYDVR0j
BBgwFoAUDYAEkcA7+1edWP/HokyqhxCEWpwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
YTk2ZjQ1OC1jZTVlLTQxYTItYTIzMi05OTY0ZjQ5ODhhMDYvMC8wRDgwMDQ5MUMw
M0JGQjU3OUQ1OEZGQzdBMjRDQUE4NzEwODQ1QTlDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcxMDg0
NUE5Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOTZmNDU4LWNlNWUtNDFhMi1h
MjMyLTk5NjRmNDk4OGEwNi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMyMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMzMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIEwDQYJ
KoZIhvcNAQELBQADggEBAHYN9+S2YGU9PjDRNdAdLrIZOksWHuUV9IpWvfbZFGtC
J7C6Ke0nBnoDCgCuOOX2EVK7dNLg8o1ChTyUL314nDWyPA40LoiC2ZwqtZaxADuz
kJiKRIohGaXSsPK8sQDcUQD5kBjM094VIoHpCk1GFU3/r9mW/uVhwofSEJ6FmBU8
G1pcQv4Kc9vBkFiVs0ss8ur9yh2WAQJBa+5Y9FaVq3ICUjlo0ZFEw/VG28rziqlU
MRdPTvRVODEdQ+RObXcf8sHbDm7C0Kp0/oWrgbXgomF8074TriuwxD/UKoKbV0M2
OkTa2fxRzBy4F4JPbp9RT2RdEIsok1QJcpVdxOhozRs=
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:35 2025 by rpki-client