Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa
File: 3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa (raw, json)
Hash identifier: GAwtToex2w5c1oE5kK2HhFt5YAgQTNZTOaMFuiSdHW0=
Subject key identifier: DC:74:D9:C3:27:E3:2A:D5:D3:29:0E:C2:8C:D1:E4:DA:00:8E:56:BA
Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75
Certificate serial: 11D0AB18B37E5E47A75E27B8DE2D937255C3BCBF
Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa
Signing time: Wed 01 May 2024 22:00:00 +0000
ROA not before: Wed 01 May 2024 21:55:00 +0000
ROA not after: Wed 30 Apr 2025 22:00:00 +0000
asID: 138064
IP address blocks: 103.122.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:d0:ab:18:b3:7e:5e:47:a7:5e:27:b8:de:2d:93:72:55:c3:bc:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75
Validity
Not Before: May 1 21:55:00 2024 GMT
Not After : Apr 30 22:00:00 2025 GMT
Subject: CN=DC74D9C327E32AD5D3290EC28CD1E4DA008E56BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e1:40:9a:45:ea:f9:e0:b3:5b:1d:d5:6e:d5:
5e:77:a6:43:51:a5:2a:b1:70:0b:2f:8e:e9:10:97:
57:57:87:b3:c6:ab:42:c1:bc:e5:6d:99:b0:c2:cc:
e6:83:5a:a6:7e:cb:a1:55:c1:50:1b:a6:66:db:c4:
b3:12:1f:3f:a2:d9:a3:81:13:f3:8b:90:49:f1:d6:
6c:6f:bd:8f:b1:c2:10:5b:b9:f4:d8:47:8a:07:b3:
41:24:45:ab:c7:7d:55:b8:c4:a2:ee:19:0b:80:95:
34:9c:0f:04:8b:87:48:4b:16:e7:e5:4c:5b:ed:19:
3e:52:4e:2a:86:4f:c8:e1:e3:83:39:5f:fe:e9:ed:
1f:0a:67:bd:54:19:02:e4:6a:ae:8b:1d:5c:87:e0:
3e:59:ed:e9:b7:84:ea:44:ce:39:9b:f5:04:bf:f3:
ff:a1:08:88:2a:3f:31:f8:60:a6:a6:4b:4b:1d:41:
de:e1:0a:4b:d1:71:5b:9e:9d:84:81:c5:f2:14:30:
c3:c8:1d:c5:61:fc:04:0b:10:be:e2:69:32:14:91:
2c:35:4d:f1:85:71:91:e3:1a:3c:f4:76:3a:18:1e:
c3:68:5a:4b:65:8b:d2:fb:f4:87:91:86:d4:70:d3:
ba:7e:d7:f0:6a:a6:66:eb:7c:47:39:2e:54:07:5e:
1e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:74:D9:C3:27:E3:2A:D5:D3:29:0E:C2:8C:D1:E4:DA:00:8E:56:BA
X509v3 Authority Key Identifier:
keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.122.64.0/22
Signature Algorithm: sha256WithRSAEncryption
32:7f:64:19:b7:ca:67:cc:ff:13:56:60:1d:2a:8e:c0:d4:a1:
32:9e:5b:34:b7:f7:e1:71:7a:b7:b8:70:85:e8:0a:87:03:3a:
b7:69:e4:2e:76:09:82:ed:e2:3e:60:74:db:f9:ee:c5:ff:2a:
a6:66:8d:c0:a3:3b:9e:e5:d5:0a:7b:53:0e:c2:1e:d8:1b:f8:
82:31:47:a4:d8:16:61:b8:a0:57:15:8a:5e:b1:74:61:22:d3:
e3:48:cc:fe:b5:ba:2d:12:aa:25:d7:ae:cd:aa:b8:44:c4:26:
c4:34:2c:33:72:ea:8c:b4:7a:07:78:f0:50:f7:08:03:b8:ce:
52:ee:ab:ca:f7:d5:13:24:39:f4:a1:ba:2f:a8:7c:b5:cc:5a:
6b:e0:fb:f4:05:95:c1:71:cf:1e:ba:59:3a:f0:32:b6:25:26:
ab:15:ad:19:ea:41:e3:3e:ae:e2:49:3b:92:8e:4f:84:1c:5e:
37:53:9b:14:e4:60:75:6a:29:36:13:2f:b0:ae:6f:00:d3:dc:
96:f5:eb:58:2d:2e:41:ac:8c:f3:ad:b1:fc:68:79:8a:9b:95:
05:5e:36:05:6b:e9:c4:0c:ca:0a:ee:52:2e:9e:0c:48:1a:63:
b1:db:18:45:f9:2c:ea:0d:f0:91:72:29:4a:03:1d:63:88:0a:
2f:6f:ec:c3
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUEdCrGLN+XkenXie43i2TclXDvL8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB
Qjg5Q0M3NTAeFw0yNDA1MDEyMTU1MDBaFw0yNTA0MzAyMjAwMDBaMDMxMTAvBgNV
BAMTKERDNzREOUMzMjdFMzJBRDVEMzI5MEVDMjhDRDFFNERBMDA4RTU2QkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx4UCaRer54LNbHdVu1V53pkNR
pSqxcAsvjukQl1dXh7PGq0LBvOVtmbDCzOaDWqZ+y6FVwVAbpmbbxLMSHz+i2aOB
E/OLkEnx1mxvvY+xwhBbufTYR4oHs0EkRavHfVW4xKLuGQuAlTScDwSLh0hLFufl
TFvtGT5STiqGT8jh44M5X/7p7R8KZ71UGQLkaq6LHVyH4D5Z7em3hOpEzjmb9QS/
8/+hCIgqPzH4YKamS0sdQd7hCkvRcVuenYSBxfIUMMPIHcVh/AQLEL7iaTIUkSw1
TfGFcZHjGjz0djoYHsNoWktli9L79IeRhtRw07p+1/BqpmbrfEc5LlQHXh4NAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU3HTZwyfjKtXTKQ7CjNHk2gCOVrowHwYDVR0j
BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx
MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5
Q0M3NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04
ZmU5LTk3YWEzMDkxZGUwZC8wLzMxMzAzMzJlMzEzMjMyMmUzNjM0MmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3pAMA0GCSqG
SIb3DQEBCwUAA4IBAQAyf2QZt8pnzP8TVmAdKo7A1KEynls0t/fhcXq3uHCF6AqH
Azq3aeQudgmC7eI+YHTb+e7F/yqmZo3Aozue5dUKe1MOwh7YG/iCMUek2BZhuKBX
FYpesXRhItPjSMz+tbotEqol167NqrhExCbENCwzcuqMtHoHePBQ9wgDuM5S7qvK
99UTJDn0obovqHy1zFpr4Pv0BZXBcc8eulk68DK2JSarFa0Z6kHjPq7iSTuSjk+E
HF43U5sU5GB1aik2Ey+wrm8A09yW9etYLS5BrIzzrbH8aHmKm5UFXjYFa+nEDMoK
7lIungxIGmOx2xhF+SzqDfCRcilKAx1jiAovb+zD
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:23 2025 by rpki-client