Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32332d3234203d3e20313339393531.roa
File: 3130332e37392e3132382e302f32332d3234203d3e20313339393531.roa (raw, json)
Hash identifier: ZL34hhxgSVm8YMiIofnGZ8eIEEK0rTf5wpsCzmwT6wA=
Subject key identifier: 23:3E:E6:0C:5D:CC:72:25:94:4A:D0:CE:56:49:C2:90:1F:84:57:60
Certificate issuer: /CN=27114CFC585C5DB2E0AC5DA74F04C66C319492F1
Certificate serial: 67E466EC7CBBE7C5F78C187D62272F4C56C0A75B
Authority key identifier: 27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32332d3234203d3e20313339393531.roa
Signing time: Wed 05 Mar 2025 07:00:02 +0000
ROA not before: Wed 05 Mar 2025 06:55:02 +0000
ROA not after: Wed 04 Mar 2026 07:00:02 +0000
asID: 139951
IP address blocks: 103.79.128.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:e4:66:ec:7c:bb:e7:c5:f7:8c:18:7d:62:27:2f:4c:56:c0:a7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27114CFC585C5DB2E0AC5DA74F04C66C319492F1
Validity
Not Before: Mar 5 06:55:02 2025 GMT
Not After : Mar 4 07:00:02 2026 GMT
Subject: CN=233EE60C5DCC7225944AD0CE5649C2901F845760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:ca:73:3f:88:f4:66:3e:ca:b8:5c:74:c8:
f6:6c:5d:87:e7:29:c6:12:d1:92:d7:0e:0c:3e:ec:
6f:b4:20:e2:e2:b8:bb:fb:0f:7c:d0:26:b6:1b:b9:
69:ea:af:5b:de:d6:3c:c5:21:28:e8:60:55:4a:ff:
10:fc:dd:51:5d:7c:ce:78:89:32:88:b2:48:c8:76:
d1:bf:b3:b8:29:08:28:9b:31:7c:52:61:7b:6f:9f:
bf:56:8a:83:82:00:93:dd:4b:33:8a:da:2f:0d:d5:
e8:81:d4:59:b7:a0:39:c4:c2:38:08:c4:4a:34:04:
b7:93:bd:6f:0b:e2:d4:83:90:73:c0:d5:af:8e:3c:
80:55:58:22:9e:9b:58:10:7e:34:84:52:bd:63:ef:
9e:fa:2d:99:0c:d5:15:1a:90:26:8e:fd:16:55:bd:
f8:35:2f:63:10:9e:8d:63:c8:7e:54:b6:f1:0d:e7:
57:0d:00:a2:f1:ce:49:94:28:4a:03:81:69:e2:22:
ae:15:1e:e0:2f:7b:ed:c1:a7:67:d4:53:7c:17:99:
64:69:4e:9f:54:18:da:b2:6f:93:1c:ad:d1:c9:bf:
8f:bb:e0:49:a4:7a:4f:c2:0b:32:1b:b8:cb:e9:b9:
29:f4:85:6a:4a:72:ba:10:1c:5d:f9:d5:d4:cb:8f:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3E:E6:0C:5D:CC:72:25:94:4A:D0:CE:56:49:C2:90:1F:84:57:60
X509v3 Authority Key Identifier:
keyid:27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32332d3234203d3e20313339393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.79.128.0/23
Signature Algorithm: sha256WithRSAEncryption
34:de:b1:99:45:4c:e9:25:10:48:65:8e:f9:97:f6:c3:a8:ba:
81:71:ec:2c:9e:81:66:98:57:61:90:b4:33:1c:a8:0f:85:02:
0d:bd:5d:26:0b:6d:25:07:f6:0c:24:77:9d:04:d0:b9:3f:fe:
b9:e0:1c:3f:9f:49:b7:ff:02:e6:1d:90:f4:cd:91:9f:4a:77:
61:1b:5a:27:66:9d:a5:b3:f1:9f:4b:40:60:42:46:34:4a:5d:
f9:78:25:a4:3c:60:4c:a2:eb:4f:20:e5:82:0f:cf:65:4d:2e:
6f:f1:79:66:ef:5d:d3:1c:15:69:65:2b:7b:f3:a8:35:98:78:
76:4c:5a:31:bb:35:f6:d7:38:c4:38:0a:fc:55:6d:08:a2:2c:
9d:68:20:79:90:a2:6d:91:74:db:87:da:92:39:68:0a:12:08:
d6:0a:a3:ff:46:2d:e5:df:2f:f7:96:8e:4e:0a:ec:41:bb:24:
0a:45:73:bd:b8:62:ba:db:36:59:38:6c:2e:3f:ad:f9:29:b5:
8c:b7:8d:7a:42:24:dd:ec:18:b3:79:1c:7f:87:7c:60:64:8e:
62:3b:9a:d0:28:78:c5:cf:84:be:7a:42:45:cd:a6:5e:b1:11:
da:4b:f6:57:83:fd:d0:4d:4c:82:2a:5d:03:dc:b6:ae:c3:05:
b4:03:9a:a0
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUZ+Rm7Hy758X3jBh9YicvTFbAp1swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjcxMTRDRkM1ODVDNURCMkUwQUM1REE3NEYwNEM2NkMz
MTk0OTJGMTAeFw0yNTAzMDUwNjU1MDJaFw0yNjAzMDQwNzAwMDJaMDMxMTAvBgNV
BAMTKDIzM0VFNjBDNURDQzcyMjU5NDRBRDBDRTU2NDlDMjkwMUY4NDU3NjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DcpzP4j0Zj7KuFx0yPZsXYfn
KcYS0ZLXDgw+7G+0IOLiuLv7D3zQJrYbuWnqr1ve1jzFISjoYFVK/xD83VFdfM54
iTKIskjIdtG/s7gpCCibMXxSYXtvn79WioOCAJPdSzOK2i8N1eiB1Fm3oDnEwjgI
xEo0BLeTvW8L4tSDkHPA1a+OPIBVWCKem1gQfjSEUr1j7576LZkM1RUakCaO/RZV
vfg1L2MQno1jyH5UtvEN51cNAKLxzkmUKEoDgWniIq4VHuAve+3Bp2fUU3wXmWRp
Tp9UGNqyb5McrdHJv4+74Emkek/CCzIbuMvpuSn0hWpKcroQHF351dTLj2dbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUIz7mDF3MciWUStDOVknCkB+EV2AwHwYDVR0j
BBgwFoAUJxFM/FhcXbLgrF2nTwTGbDGUkvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NWM4YjllMy1iNDRmLTQ5MGItYmY1MS05OWYyZGQyYTEzNjQvMC8yNzExNENGQzU4
NUM1REIyRTBBQzVEQTc0RjA0QzY2QzMxOTQ5MkYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjcxMTRDRkM1ODVDNURCMkUwQUM1REE3NEYwNEM2NkMzMTk0
OTJGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YzhiOWUzLWI0NGYtNDkwYi1i
ZjUxLTk5ZjJkZDJhMTM2NC8wLzMxMzAzMzJlMzczOTJlMzEzMjM4MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0+AMA0GCSqG
SIb3DQEBCwUAA4IBAQA03rGZRUzpJRBIZY75l/bDqLqBcewsnoFmmFdhkLQzHKgP
hQINvV0mC20lB/YMJHedBNC5P/654Bw/n0m3/wLmHZD0zZGfSndhG1onZp2ls/Gf
S0BgQkY0Sl35eCWkPGBMoutPIOWCD89lTS5v8Xlm713THBVpZSt786g1mHh2TFox
uzX21zjEOAr8VW0IoiydaCB5kKJtkXTbh9qSOWgKEgjWCqP/Ri3l3y/3lo5OCuxB
uyQKRXO9uGK62zZZOGwuP635KbWMt416QiTd7BizeRx/h3xgZI5iO5rQKHjFz4S+
ekJFzaZesRHaS/ZXg/3QTUyCKl0D3LauwwW0A5qg
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:19 2025 by rpki-client