Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa
File: 3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa (raw, json)
Hash identifier: SDpHmQWrvR6QYeGR7FQ79oyRI2YwxolyxjXNhlqbQOw=
Subject key identifier: 14:E7:AA:B0:5F:01:92:CB:A1:75:E2:8B:E8:A5:09:0B:2F:42:66:69
Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0
Certificate serial: 5E058D3CAD614EA54063EBA69FB713DA2BBA0E
Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa
Signing time: Tue 24 Sep 2024 11:12:00 +0000
ROA not before: Tue 24 Sep 2024 11:07:00 +0000
ROA not after: Tue 23 Sep 2025 11:12:00 +0000
asID: 138134
IP address blocks: 103.133.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:05:8d:3c:ad:61:4e:a5:40:63:eb:a6:9f:b7:13:da:2b:ba:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0
Validity
Not Before: Sep 24 11:07:00 2024 GMT
Not After : Sep 23 11:12:00 2025 GMT
Subject: CN=14E7AAB05F0192CBA175E28BE8A5090B2F426669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2e:07:a0:b6:04:cf:84:8a:58:68:65:33:87:
eb:2b:4d:13:d8:c1:8d:28:34:27:08:7c:dd:ca:64:
87:3d:ba:f9:94:cf:66:44:35:de:08:c2:38:17:d1:
49:a3:bf:0e:3e:0c:5c:bf:ad:57:cc:d9:b0:76:94:
b7:4d:13:df:56:d7:3d:3a:07:e4:02:11:c3:97:54:
84:82:e8:88:2c:b4:0c:53:c2:3d:5b:de:69:a7:75:
f9:94:dc:78:ee:5b:1e:50:5d:8e:74:75:f9:b3:3f:
74:3c:70:40:65:42:d1:db:be:ed:9a:59:4c:0d:d0:
8c:99:19:ad:e6:13:3e:b3:7c:ff:ea:fc:01:c3:96:
db:6d:63:4b:9b:be:f2:5b:f1:c0:50:68:e0:42:ea:
1f:d6:69:a3:e2:ff:06:46:9c:b9:a4:44:e4:b1:0e:
40:28:13:d7:da:ce:c1:4d:fa:f7:01:9c:c1:75:d8:
30:af:d5:18:1a:6b:e8:37:ef:4d:9a:db:f4:78:c3:
19:31:3f:34:03:8a:03:f7:64:04:d2:84:2c:28:a4:
b2:65:73:c1:dd:10:20:32:e9:f6:34:a2:43:75:34:
ee:37:3f:fd:ac:ba:f5:a6:d1:6f:15:da:3e:04:ed:
b4:95:a8:60:39:ae:0a:a9:fd:8a:97:b6:ef:e8:44:
91:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E7:AA:B0:5F:01:92:CB:A1:75:E2:8B:E8:A5:09:0B:2F:42:66:69
X509v3 Authority Key Identifier:
keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32342d3234203d3e20313338313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.133.60.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0a:b1:71:f8:0a:20:71:1b:a8:04:32:54:c5:ae:af:f1:ce:
98:dd:09:99:12:f8:fd:6a:4b:51:57:f9:93:e2:2e:93:f2:44:
ba:f7:44:02:e6:a7:93:41:b8:bd:28:70:53:78:f5:fb:9e:fa:
bc:d2:ff:56:5d:be:ee:15:7f:56:ea:2c:48:00:12:66:91:7b:
d6:41:b7:f5:71:b1:53:10:aa:52:18:de:4b:e4:54:90:64:2d:
6b:cf:6c:86:0b:04:50:90:b6:27:be:25:3d:f8:c4:4f:9d:52:
cc:3d:e0:4b:9b:eb:34:6b:8d:68:48:44:60:54:13:4e:5d:2a:
c5:18:9c:3a:4c:46:81:f5:94:f1:e6:2d:89:7b:91:de:a3:d0:
9e:1f:d8:3b:bf:a8:e9:c1:4f:40:d5:b9:6f:03:41:42:69:ce:
64:90:9d:45:7d:08:bd:f1:a5:25:d1:c3:be:3e:38:f9:ca:78:
85:53:41:d2:f4:93:83:0d:a5:b2:00:b7:b4:74:e2:72:2d:74:
9d:96:5b:46:63:22:15:24:07:5a:6d:a0:49:11:86:49:ae:31:
39:71:c9:39:7d:8b:48:e8:06:3e:fd:38:bb:90:c0:9e:a2:0c:
3a:3e:08:47:30:f1:81:5e:68:75:99:15:75:c3:37:7d:a3:54:
4b:50:14:74
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgITXgWNPK1hTqVAY+umn7cT2iu6DjANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyhDM0Y4MEEzNUMxQzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJG
Q0REQkIwMB4XDTI0MDkyNDExMDcwMFoXDTI1MDkyMzExMTIwMFowMzExMC8GA1UE
AxMoMTRFN0FBQjA1RjAxOTJDQkExNzVFMjhCRThBNTA5MEIyRjQyNjY2OTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALAuB6C2BM+EilhoZTOH6ytNE9jB
jSg0Jwh83cpkhz26+ZTPZkQ13gjCOBfRSaO/Dj4MXL+tV8zZsHaUt00T31bXPToH
5AIRw5dUhILoiCy0DFPCPVveaad1+ZTceO5bHlBdjnR1+bM/dDxwQGVC0du+7ZpZ
TA3QjJkZreYTPrN8/+r8AcOW221jS5u+8lvxwFBo4ELqH9Zpo+L/BkacuaRE5LEO
QCgT19rOwU369wGcwXXYMK/VGBpr6DfvTZrb9HjDGTE/NAOKA/dkBNKELCiksmVz
wd0QIDLp9jSiQ3U07jc//ay69abRbxXaPgTttJWoYDmuCqn9ipe27+hEkUsCAwEA
AaOCAjQwggIwMB0GA1UdDgQWBBQU56qwXwGSy6F14ovopQkLL0JmaTAfBgNVHSME
GDAWgBTD+Ao1wcaHe75JcZuQjQKfv83bsDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud
HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Nj
ZjY4YWJhLTk1MTUtNGQxMi1hYWMyLThjZWU1ZGIyYTQ4Zi8wL0MzRjgwQTM1QzFD
Njg3N0JCRTQ5NzE5QjkwOEQwMjlGQkZDRERCQjAuY3JsMHQGCCsGAQUFBwEBBGgw
ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v
SUROSUMtSUQvMi9DM0Y4MEEzNUMxQzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0RE
QkIwLmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2NmNjhhYmEtOTUxNS00ZDEyLWFh
YzItOGNlZTVkYjJhNDhmLzAvMzEzMDMzMmUzMTMzMzMyZTM2MzAyZTMwMmYzMjM0
MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI
KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhTwwDQYJKoZI
hvcNAQELBQADggEBAGAKsXH4CiBxG6gEMlTFrq/xzpjdCZkS+P1qS1FX+ZPiLpPy
RLr3RALmp5NBuL0ocFN49fue+rzS/1Zdvu4Vf1bqLEgAEmaRe9ZBt/VxsVMQqlIY
3kvkVJBkLWvPbIYLBFCQtie+JT34xE+dUsw94Eub6zRrjWhIRGBUE05dKsUYnDpM
RoH1lPHmLYl7kd6j0J4f2Du/qOnBT0DVuW8DQUJpzmSQnUV9CL3xpSXRw74+OPnK
eIVTQdL0k4MNpbIAt7R04nItdJ2WW0ZjIhUkB1ptoEkRhkmuMTlxyTl9i0joBj79
OLuQwJ6iDDo+CEcw8YFeaHWZFXXDN32jVEtQFHQ=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:27 2025 by rpki-client