Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d0278b7d-47ed-4860-ab3a-9c114cc5f09b/0/3130332e372e38342e302f32332d3234203d3e20313331363934.roa
File: 3130332e372e38342e302f32332d3234203d3e20313331363934.roa (raw, json)
Hash identifier: 3z0rwDfbI5ahSbWwgebilrJHynVzxreeZb1bMRS+lrs=
Subject key identifier: 94:86:F0:33:9C:87:23:0C:92:AC:53:58:F8:D1:3F:98:F6:39:51:AB
Certificate issuer: /CN=A9ECE2086AFC3046DE0F6A07858FF1851AD68517
Certificate serial: 7D39DA2A82CCAAAC92FD5F392106CFA3064F7210
Authority key identifier: A9:EC:E2:08:6A:FC:30:46:DE:0F:6A:07:85:8F:F1:85:1A:D6:85:17
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9ECE2086AFC3046DE0F6A07858FF1851AD68517.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d0278b7d-47ed-4860-ab3a-9c114cc5f09b/0/3130332e372e38342e302f32332d3234203d3e20313331363934.roa
Signing time: Tue 13 Aug 2024 10:00:06 +0000
ROA not before: Tue 13 Aug 2024 09:55:06 +0000
ROA not after: Tue 12 Aug 2025 10:00:06 +0000
asID: 131694
IP address blocks: 103.7.84.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:39:da:2a:82:cc:aa:ac:92:fd:5f:39:21:06:cf:a3:06:4f:72:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9ECE2086AFC3046DE0F6A07858FF1851AD68517
Validity
Not Before: Aug 13 09:55:06 2024 GMT
Not After : Aug 12 10:00:06 2025 GMT
Subject: CN=9486F0339C87230C92AC5358F8D13F98F63951AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:58:24:9f:ab:0e:ee:e9:8b:05:58:87:69:de:
69:f8:f2:46:72:c7:9c:c1:2a:dc:64:62:b8:2c:c3:
3f:2f:a3:18:d6:09:ec:c0:20:2a:39:79:e8:63:30:
40:b1:02:d4:b7:db:95:ad:ce:05:cc:c0:d8:b2:7a:
03:ec:8e:2d:e2:6d:6e:0f:d3:dd:b7:6e:76:12:f9:
ce:f5:28:fd:cb:b6:42:77:f2:da:f0:68:50:6e:a9:
1f:81:99:1f:74:4f:fd:3c:b4:d1:b2:33:77:a0:0b:
12:9d:6b:16:e9:91:c1:f9:34:fe:61:37:79:a3:2b:
4b:58:f9:57:2f:4d:50:76:4e:bf:35:49:25:da:68:
61:18:d7:19:ed:80:bc:34:56:4e:03:48:ed:8a:47:
f7:f6:44:59:08:05:29:de:b1:60:d8:e9:43:b6:79:
5f:22:27:49:e7:71:5e:1d:ca:db:10:73:92:d7:f0:
92:6d:2f:9e:2e:d1:be:12:10:ca:fe:41:20:90:d6:
60:dd:66:11:71:a5:fa:c6:c1:39:86:c7:ec:9d:23:
1d:99:d7:6d:fc:90:4f:2a:fe:8a:fc:78:cd:e6:23:
18:1d:d4:43:0f:a2:52:3b:85:ab:76:08:30:c1:4e:
5e:34:ab:8a:93:ed:3f:1a:22:b9:b8:bd:d4:85:d5:
7c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:86:F0:33:9C:87:23:0C:92:AC:53:58:F8:D1:3F:98:F6:39:51:AB
X509v3 Authority Key Identifier:
keyid:A9:EC:E2:08:6A:FC:30:46:DE:0F:6A:07:85:8F:F1:85:1A:D6:85:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d0278b7d-47ed-4860-ab3a-9c114cc5f09b/0/A9ECE2086AFC3046DE0F6A07858FF1851AD68517.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9ECE2086AFC3046DE0F6A07858FF1851AD68517.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0278b7d-47ed-4860-ab3a-9c114cc5f09b/0/3130332e372e38342e302f32332d3234203d3e20313331363934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.7.84.0/23
Signature Algorithm: sha256WithRSAEncryption
39:1c:e7:32:fc:75:e0:6a:96:40:e6:a9:61:99:34:e4:01:2f:
ee:d7:3f:97:f2:50:d2:e6:7b:b8:75:05:5a:87:be:22:84:65:
c3:06:f0:f5:5c:d7:4f:f6:0b:32:72:92:3e:e8:fd:2f:02:4e:
53:42:ba:18:1a:65:9f:5b:e4:31:b8:5c:5f:c2:27:19:3f:40:
aa:1d:b6:ae:e4:fb:74:00:cd:f3:5d:74:e5:8d:64:ca:2c:9f:
60:d6:ae:d0:8b:6e:00:a5:9d:48:93:af:52:69:28:8d:f9:79:
fe:b8:25:2d:75:5a:b8:0f:20:09:e8:f6:2b:3f:42:a3:58:b3:
21:70:a9:a3:68:e2:9d:30:1d:1c:de:c7:94:3d:7f:75:b3:e8:
28:75:30:83:93:e3:89:80:7b:da:c6:e3:07:ef:e8:3a:73:08:
04:3c:fd:84:5a:c1:51:43:67:c7:1f:e5:ea:7c:1f:03:b0:9a:
7c:e0:37:0d:21:c7:bd:c8:12:9d:a1:1c:30:18:47:a1:8c:11:
ef:75:8a:3b:cf:81:e7:88:8e:a0:1e:f7:87:79:42:7b:bb:06:
a2:b7:1e:0f:95:a8:79:49:19:34:d0:e9:d2:6f:e1:44:ee:24:
d3:4f:68:88:00:7b:05:c6:b5:0e:5d:78:2c:1d:b0:55:f0:78:
f4:a1:eb:b5
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUfTnaKoLMqqyS/V85IQbPowZPchAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTlFQ0UyMDg2QUZDMzA0NkRFMEY2QTA3ODU4RkYxODUx
QUQ2ODUxNzAeFw0yNDA4MTMwOTU1MDZaFw0yNTA4MTIxMDAwMDZaMDMxMTAvBgNV
BAMTKDk0ODZGMDMzOUM4NzIzMEM5MkFDNTM1OEY4RDEzRjk4RjYzOTUxQUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVWCSfqw7u6YsFWIdp3mn48kZy
x5zBKtxkYrgswz8voxjWCezAICo5eehjMECxAtS325WtzgXMwNiyegPsji3ibW4P
0923bnYS+c71KP3LtkJ38trwaFBuqR+BmR90T/08tNGyM3egCxKdaxbpkcH5NP5h
N3mjK0tY+VcvTVB2Tr81SSXaaGEY1xntgLw0Vk4DSO2KR/f2RFkIBSnesWDY6UO2
eV8iJ0nncV4dytsQc5LX8JJtL54u0b4SEMr+QSCQ1mDdZhFxpfrGwTmGx+ydIx2Z
1238kE8q/or8eM3mIxgd1EMPolI7hat2CDDBTl40q4qT7T8aIrm4vdSF1XzFAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUlIbwM5yHIwySrFNY+NE/mPY5UaswHwYDVR0j
BBgwFoAUqeziCGr8MEbeD2oHhY/xhRrWhRcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
MDI3OGI3ZC00N2VkLTQ4NjAtYWIzYS05YzExNGNjNWYwOWIvMC9BOUVDRTIwODZB
RkMzMDQ2REUwRjZBMDc4NThGRjE4NTFBRDY4NTE3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTlFQ0UyMDg2QUZDMzA0NkRFMEY2QTA3ODU4RkYxODUxQUQ2
ODUxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwMjc4YjdkLTQ3ZWQtNDg2MC1h
YjNhLTljMTE0Y2M1ZjA5Yi8wLzMxMzAzMzJlMzcyZTM4MzQyZTMwMmYzMjMzMmQz
MjM0MjAzZDNlMjAzMTMzMzEzNjM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnB1QwDQYJKoZIhvcN
AQELBQADggEBADkc5zL8deBqlkDmqWGZNOQBL+7XP5fyUNLme7h1BVqHviKEZcMG
8PVc10/2CzJykj7o/S8CTlNCuhgaZZ9b5DG4XF/CJxk/QKodtq7k+3QAzfNddOWN
ZMosn2DWrtCLbgClnUiTr1JpKI35ef64JS11WrgPIAno9is/QqNYsyFwqaNo4p0w
HRzex5Q9f3Wz6Ch1MIOT44mAe9rG4wfv6DpzCAQ8/YRawVFDZ8cf5ep8HwOwmnzg
Nw0hx73IEp2hHDAYR6GMEe91ijvPgeeIjqAe94d5Qnu7BqK3Hg+VqHlJGTTQ6dJv
4UTuJNNPaIgAewXGtQ5deCwdsFXwePSh67U=
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:15:19 2025 by rpki-client