Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32342d3234203d3e20313339393531.roa
File: 3130332e37392e3132382e302f32342d3234203d3e20313339393531.roa (raw, json)
Hash identifier: PdqEDYCYcXPLBp10Zfy4sYU5R2hSEKG/6opvTXTRApo=
Subject key identifier: D7:03:B8:A1:80:D7:91:AF:63:26:04:02:3B:77:81:23:3E:0B:76:D9
Certificate issuer: /CN=27114CFC585C5DB2E0AC5DA74F04C66C319492F1
Certificate serial: 28FDA3FE94480DC6B4926F78311416B74B7499B7
Authority key identifier: 27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32342d3234203d3e20313339393531.roa
Signing time: Wed 01 May 2024 15:00:02 +0000
ROA not before: Wed 01 May 2024 14:55:02 +0000
ROA not after: Wed 30 Apr 2025 15:00:02 +0000
asID: 139951
IP address blocks: 103.79.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:fd:a3:fe:94:48:0d:c6:b4:92:6f:78:31:14:16:b7:4b:74:99:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27114CFC585C5DB2E0AC5DA74F04C66C319492F1
Validity
Not Before: May 1 14:55:02 2024 GMT
Not After : Apr 30 15:00:02 2025 GMT
Subject: CN=D703B8A180D791AF632604023B7781233E0B76D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a8:00:de:01:b9:ae:5d:4c:6e:7e:05:26:4f:
c9:6e:b3:c8:dd:3f:64:7b:83:97:45:03:79:5e:1d:
3b:bd:1b:18:8c:62:d7:8e:a0:9b:18:d2:25:c8:e7:
3b:44:ee:ce:91:39:e8:fc:b8:8a:eb:de:07:d8:bb:
c2:2e:69:f6:7d:2a:86:a7:b5:28:3f:53:0b:9b:08:
94:e1:df:22:31:db:a0:a0:d3:a8:16:7d:7e:90:20:
21:96:95:ba:a0:e5:63:d0:24:cf:7f:0e:96:a9:65:
ec:4a:91:b0:bd:95:12:5d:8b:44:62:63:b4:53:dd:
9b:6d:a0:84:c8:ad:55:6e:8e:7f:ac:f3:fb:0c:dd:
ef:8b:75:32:f0:a3:08:fb:2d:bc:4a:67:57:8d:e2:
c8:ec:5a:2a:0e:28:ae:3c:cd:74:67:2b:c7:35:d0:
de:9f:54:c2:b4:6b:1c:15:18:9e:e9:64:c5:42:6e:
0b:24:e4:78:06:f7:33:8a:2e:b0:57:d4:f6:59:d0:
6a:cc:50:11:d7:07:33:53:ce:ea:93:77:ba:65:08:
44:12:0c:bc:85:72:b2:2a:72:73:33:bd:70:15:7c:
e6:ee:a0:d7:0c:f7:0c:ed:c8:38:98:b9:ef:00:01:
40:3c:e2:5f:e9:f3:13:e9:ec:b7:d5:ce:c0:90:52:
78:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:03:B8:A1:80:D7:91:AF:63:26:04:02:3B:77:81:23:3E:0B:76:D9
X509v3 Authority Key Identifier:
keyid:27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/3130332e37392e3132382e302f32342d3234203d3e20313339393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.79.128.0/24
Signature Algorithm: sha256WithRSAEncryption
54:19:39:db:5c:8c:cc:88:7b:c0:5a:d1:32:7d:cc:0e:b5:67:
49:4b:7a:cf:bd:f6:c9:b7:d0:f8:df:56:93:21:ec:c2:4d:1a:
e1:43:6b:66:2a:9b:5e:22:92:1a:23:40:49:b8:b9:75:61:e4:
ee:3e:ca:99:15:52:46:6b:15:dc:72:30:1f:c4:74:91:1b:85:
d6:1b:44:9d:89:48:11:06:5b:5a:5f:a3:b8:96:24:29:01:c7:
95:0a:53:73:ce:3d:ed:07:29:e4:89:d5:99:4f:dd:6c:f7:3d:
ea:6b:af:5a:7f:6e:6a:a3:97:a7:d5:bb:59:d0:cc:57:76:75:
9a:8b:79:cc:95:eb:92:cd:52:e3:0f:33:fd:4c:88:00:c4:55:
aa:68:72:e8:68:ac:2d:27:03:7b:6a:01:2a:1c:66:9b:06:f8:
82:9f:42:59:40:84:86:a1:cc:20:99:1c:8f:34:54:1e:34:82:
2c:11:13:4b:0b:fb:d1:ce:42:ba:5a:2e:7a:b1:37:7d:e2:f0:
87:27:a1:6d:64:00:7d:cf:53:ba:ff:ac:7e:81:26:5f:64:6f:
98:bf:ba:bc:a9:97:91:38:66:58:ba:da:fa:d8:01:0c:93:8a:
45:94:8a:64:cb:b7:a3:11:2b:73:28:9d:29:aa:81:22:cb:88:
07:b0:e5:60
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUKP2j/pRIDca0km94MRQWt0t0mbcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjcxMTRDRkM1ODVDNURCMkUwQUM1REE3NEYwNEM2NkMz
MTk0OTJGMTAeFw0yNDA1MDExNDU1MDJaFw0yNTA0MzAxNTAwMDJaMDMxMTAvBgNV
BAMTKEQ3MDNCOEExODBENzkxQUY2MzI2MDQwMjNCNzc4MTIzM0UwQjc2RDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qADeAbmuXUxufgUmT8lus8jd
P2R7g5dFA3leHTu9GxiMYteOoJsY0iXI5ztE7s6ROej8uIrr3gfYu8IuafZ9Koan
tSg/UwubCJTh3yIx26Cg06gWfX6QICGWlbqg5WPQJM9/DpapZexKkbC9lRJdi0Ri
Y7RT3ZttoITIrVVujn+s8/sM3e+LdTLwowj7LbxKZ1eN4sjsWioOKK48zXRnK8c1
0N6fVMK0axwVGJ7pZMVCbgsk5HgG9zOKLrBX1PZZ0GrMUBHXBzNTzuqTd7plCEQS
DLyFcrIqcnMzvXAVfObuoNcM9wztyDiYue8AAUA84l/p8xPp7LfVzsCQUngdAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU1wO4oYDXka9jJgQCO3eBIz4LdtkwHwYDVR0j
BBgwFoAUJxFM/FhcXbLgrF2nTwTGbDGUkvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NWM4YjllMy1iNDRmLTQ5MGItYmY1MS05OWYyZGQyYTEzNjQvMC8yNzExNENGQzU4
NUM1REIyRTBBQzVEQTc0RjA0QzY2QzMxOTQ5MkYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjcxMTRDRkM1ODVDNURCMkUwQUM1REE3NEYwNEM2NkMzMTk0
OTJGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YzhiOWUzLWI0NGYtNDkwYi1i
ZjUxLTk5ZjJkZDJhMTM2NC8wLzMxMzAzMzJlMzczOTJlMzEzMjM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0+AMA0GCSqG
SIb3DQEBCwUAA4IBAQBUGTnbXIzMiHvAWtEyfcwOtWdJS3rPvfbJt9D431aTIezC
TRrhQ2tmKpteIpIaI0BJuLl1YeTuPsqZFVJGaxXccjAfxHSRG4XWG0SdiUgRBlta
X6O4liQpAceVClNzzj3tBynkidWZT91s9z3qa69af25qo5en1btZ0MxXdnWai3nM
leuSzVLjDzP9TIgAxFWqaHLoaKwtJwN7agEqHGabBviCn0JZQISGocwgmRyPNFQe
NIIsERNLC/vRzkK6Wi56sTd94vCHJ6FtZAB9z1O6/6x+gSZfZG+Yv7q8qZeROGZY
utr62AEMk4pFlIpky7ejEStzKJ0pqoEiy4gHsOVg
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:47 2025 by rpki-client