Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa
File: 3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa (raw, json)
Hash identifier: YpXfCL82On8UTAObXpsp+TSzduNgz0G+wsNlyOIz0pA=
Subject key identifier: C2:52:1C:9D:0B:14:E9:B7:29:B8:62:2C:95:AF:1C:79:D7:A9:94:46
Certificate issuer: /CN=9EA3AB422D824FDD9A25622F84924203216B1ED1
Certificate serial: 7441EB7932AC15A95B4177AE5EB3E9315695E065
Authority key identifier: 9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa
Signing time: Mon 01 Jul 2024 01:04:14 +0000
ROA not before: Mon 01 Jul 2024 00:59:14 +0000
ROA not after: Mon 30 Jun 2025 01:04:14 +0000
asID: 132637
IP address blocks: 103.143.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:41:eb:79:32:ac:15:a9:5b:41:77:ae:5e:b3:e9:31:56:95:e0:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9EA3AB422D824FDD9A25622F84924203216B1ED1
Validity
Not Before: Jul 1 00:59:14 2024 GMT
Not After : Jun 30 01:04:14 2025 GMT
Subject: CN=C2521C9D0B14E9B729B8622C95AF1C79D7A99446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f2:27:b4:60:a0:0e:88:78:ed:83:de:6b:cc:
f0:1d:83:e1:a7:2a:89:2d:24:9a:c2:dc:fd:09:01:
2a:6e:c7:e5:4c:6b:8d:75:01:09:83:8f:a5:2f:37:
66:ea:c6:0e:a8:b5:22:f5:cf:84:fe:1a:a6:64:94:
ee:59:06:1a:3e:45:31:a0:f0:50:83:8b:d6:37:63:
50:d4:f8:bc:31:26:26:80:36:18:dc:9e:05:15:ab:
a9:05:21:5b:ab:99:17:cb:2c:9c:5d:f1:bd:1a:83:
76:9f:31:05:fa:d0:45:ab:9b:89:11:79:fd:84:12:
cc:ea:28:22:a5:fe:d4:83:cc:f9:5d:20:de:99:c4:
f3:ab:8d:14:49:f2:0e:e8:d4:c5:ed:25:d6:cf:34:
37:dd:9d:a2:a5:97:3f:35:84:1c:97:06:ec:66:43:
47:51:09:47:0c:8f:bf:88:b9:b9:2a:37:2a:37:92:
41:4a:97:b9:f5:93:1e:ca:82:6f:13:ec:9c:4f:e1:
d6:b2:1d:d0:7f:bd:ae:d8:2a:31:7f:03:8e:56:69:
70:77:c2:b5:75:dd:e5:e8:c3:b9:c3:c0:4a:68:f5:
37:3d:12:f8:1b:1d:a8:e0:16:f5:47:bf:ff:b3:6f:
c4:ec:6a:b4:2d:32:47:6b:6f:74:4f:f1:c3:e7:46:
7f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:52:1C:9D:0B:14:E9:B7:29:B8:62:2C:95:AF:1C:79:D7:A9:94:46
X509v3 Authority Key Identifier:
keyid:9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.245.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c5:9e:56:c3:2a:eb:d0:8f:15:e8:a0:5e:4b:49:bf:37:e2:
95:84:c8:2d:8e:37:55:9c:4b:00:a8:7c:ce:36:dc:90:00:d8:
d8:c2:af:96:8c:7a:b3:eb:66:cf:f5:ee:1a:2b:40:b1:f1:db:
95:24:29:ee:eb:e4:97:c9:9f:89:de:9a:7c:14:fa:67:d0:b8:
84:26:20:a2:35:13:ac:f3:40:c8:34:b0:68:0f:6f:92:96:25:
70:5d:92:3c:04:78:2d:76:c9:77:a6:5e:cb:3d:95:09:5a:1b:
cf:fb:aa:ac:e0:2b:43:9b:22:10:50:91:24:c7:59:fa:61:12:
d2:46:6d:34:f0:cd:71:f1:3a:a5:2d:c2:3d:03:df:14:b9:a6:
e6:82:5f:6d:31:f5:16:41:02:ce:7a:89:9d:c5:37:48:71:16:
00:ac:e1:99:2a:0c:e6:cc:09:30:3e:fc:9e:f1:ea:91:a1:d5:
d2:93:ac:19:4c:76:e2:a8:ab:29:87:d1:33:30:ca:1e:a6:df:
62:24:75:55:20:42:3e:b5:8f:2f:96:62:ac:ad:b8:ca:7b:a9:
75:bf:6d:63:e9:67:02:81:93:15:59:99:e3:b1:c4:60:31:67:
32:5a:32:ee:d4:27:a3:19:10:19:2a:07:09:21:60:d6:a1:67:
00:35:c5:59
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUdEHreTKsFalbQXeuXrPpMVaV4GUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMy
MTZCMUVEMTAeFw0yNDA3MDEwMDU5MTRaFw0yNTA2MzAwMTA0MTRaMDMxMTAvBgNV
BAMTKEMyNTIxQzlEMEIxNEU5QjcyOUI4NjIyQzk1QUYxQzc5RDdBOTk0NDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8ie0YKAOiHjtg95rzPAdg+Gn
KoktJJrC3P0JASpux+VMa411AQmDj6UvN2bqxg6otSL1z4T+GqZklO5ZBho+RTGg
8FCDi9Y3Y1DU+LwxJiaANhjcngUVq6kFIVurmRfLLJxd8b0ag3afMQX60EWrm4kR
ef2EEszqKCKl/tSDzPldIN6ZxPOrjRRJ8g7o1MXtJdbPNDfdnaKllz81hByXBuxm
Q0dRCUcMj7+IubkqNyo3kkFKl7n1kx7Kgm8T7JxP4dayHdB/va7YKjF/A45WaXB3
wrV13eXow7nDwEpo9Tc9EvgbHajgFvVHv/+zb8TsarQtMkdrb3RP8cPnRn8fAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUwlIcnQsU6bcpuGIsla8cedeplEYwHwYDVR0j
BBgwFoAUnqOrQi2CT92aJWIvhJJCAyFrHtEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
ZjZkNTU4Mi05YTYzLTQxZTUtODk2OS1kYjkxOTI3N2E1ZTUvMC85RUEzQUI0MjJE
ODI0RkREOUEyNTYyMkY4NDkyNDIwMzIxNkIxRUQxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMyMTZC
MUVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNmQ1NTgyLTlhNjMtNDFlNS04
OTY5LWRiOTE5Mjc3YTVlNS8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj/UwDQYJ
KoZIhvcNAQELBQADggEBAIXFnlbDKuvQjxXooF5LSb834pWEyC2ON1WcSwCofM42
3JAA2NjCr5aMerPrZs/17horQLHx25UkKe7r5JfJn4nemnwU+mfQuIQmIKI1E6zz
QMg0sGgPb5KWJXBdkjwEeC12yXemXss9lQlaG8/7qqzgK0ObIhBQkSTHWfphEtJG
bTTwzXHxOqUtwj0D3xS5puaCX20x9RZBAs56iZ3FN0hxFgCs4ZkqDObMCTA+/J7x
6pGh1dKTrBlMduKoqymH0TMwyh6m32IkdVUgQj61jy+WYqytuMp7qXW/bWPpZwKB
kxVZmeOxxGAxZzJaMu7UJ6MZEBkqBwkhYNahZwA1xVk=
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:26 2025 by rpki-client