Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa
File: 3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa (raw, json)
Hash identifier: QOFHoPuY9NpdPQj6xa7cBpnTsr+iASD85o3lNcYlh68=
Subject key identifier: 7B:80:E4:A4:B5:3C:51:90:9A:54:60:98:D7:07:21:2A:9C:9B:D8:7F
Certificate issuer: /CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E
Certificate serial: 4142E64D2EB0B78F27D33C6902F60DBE782CFFCF
Authority key identifier: 43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa
Signing time: Sun 03 Nov 2024 15:00:01 +0000
ROA not before: Sun 03 Nov 2024 14:55:01 +0000
ROA not after: Sun 02 Nov 2025 15:00:01 +0000
asID: 136107
IP address blocks: 103.112.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:42:e6:4d:2e:b0:b7:8f:27:d3:3c:69:02:f6:0d:be:78:2c:ff:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E
Validity
Not Before: Nov 3 14:55:01 2024 GMT
Not After : Nov 2 15:00:01 2025 GMT
Subject: CN=7B80E4A4B53C51909A546098D707212A9C9BD87F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c9:8a:f8:d8:4b:b5:60:92:ce:f9:2e:e0:68:
16:9d:2b:7c:46:88:6a:ed:37:06:4a:ba:14:c9:b9:
ea:9e:51:9a:32:92:8a:0f:e9:ad:82:9c:b1:2a:b6:
11:b2:e1:23:7b:2a:07:de:3c:93:ee:ad:e5:08:d1:
ac:5e:27:24:4c:d5:0b:38:c1:41:44:24:e8:61:3d:
d3:bc:99:7b:d9:83:fe:f3:3c:2a:2f:0d:a7:aa:17:
00:b4:09:8c:55:c1:63:07:16:86:45:36:aa:3c:d9:
a5:4f:2f:4a:56:af:e9:d2:b2:35:a5:3f:07:84:99:
bd:65:e0:51:61:37:11:d2:e1:23:41:1f:1d:c4:c2:
51:17:0d:98:73:76:76:ef:81:f7:95:8f:c2:a0:5c:
99:0b:14:93:69:7d:72:b3:15:ee:45:b7:3b:ad:28:
1b:fb:b9:51:97:e4:17:24:b5:2c:52:25:83:b4:47:
37:74:78:30:76:2f:e5:06:80:6d:f0:68:29:f0:38:
21:5c:31:b0:9c:93:36:af:4e:99:60:27:ce:a0:0a:
19:0e:b7:75:b7:92:f0:dc:1d:2e:52:d4:53:ab:53:
88:e6:07:e8:27:23:6c:92:e8:7e:c7:9e:00:ed:22:
5b:38:04:21:44:ca:de:0d:f5:23:f5:ca:94:0c:ce:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:80:E4:A4:B5:3C:51:90:9A:54:60:98:D7:07:21:2A:9C:9B:D8:7F
X509v3 Authority Key Identifier:
keyid:43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3131322e3234342e302f32332d3234203d3e20313336313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.244.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:9a:f7:eb:b6:da:7c:2f:b0:bc:16:31:7d:8b:59:43:bd:41:
11:27:5c:45:d2:be:1e:05:e9:b4:48:a7:df:53:98:c5:cb:b4:
99:fe:b3:44:63:34:ab:3b:e8:57:7b:4a:e4:7d:3a:82:25:b8:
f9:a2:47:ac:72:e0:0a:da:db:b0:fa:2d:cd:0a:9e:bd:c7:fd:
27:41:d5:d2:d3:74:3d:6d:f9:fd:7c:0c:9e:7e:bd:91:76:61:
89:b9:73:73:cb:44:9a:2b:a0:f0:29:3a:eb:50:e3:5f:02:ad:
5a:3c:54:a5:93:b2:c0:b6:de:39:f7:96:82:43:47:96:d5:08:
f7:8f:84:c5:31:25:ef:79:1e:71:4b:fc:2e:1c:18:2e:68:c5:
8c:6d:cb:ba:45:3a:6f:31:be:df:15:ca:cf:31:83:ac:c7:2d:
06:cb:da:9d:89:bd:bc:1f:35:ff:d7:6f:13:ed:05:f5:e4:e9:
44:b4:98:f3:4f:1f:07:00:48:dd:d3:80:32:b1:4d:f3:5d:a1:
65:a2:b6:10:c8:74:0f:0a:cf:76:8c:f9:4c:05:0b:c5:94:f3:
bd:2f:87:b0:51:4f:a6:b1:78:be:c1:87:68:57:34:06:f3:63:
da:21:bc:22:e4:57:38:a6:a1:67:ee:2d:90:03:67:50:1f:e6:
b0:65:fd:27
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUQULmTS6wt48n0zxpAvYNvngs/88wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDM5QTQ5ODE1NDlBQkIxNTFCMTJENkVDODVGQzhEMERC
Rjk5QTgxRTAeFw0yNDExMDMxNDU1MDFaFw0yNTExMDIxNTAwMDFaMDMxMTAvBgNV
BAMTKDdCODBFNEE0QjUzQzUxOTA5QTU0NjA5OEQ3MDcyMTJBOUM5QkQ4N0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxyYr42Eu1YJLO+S7gaBadK3xG
iGrtNwZKuhTJueqeUZoykooP6a2CnLEqthGy4SN7KgfePJPureUI0axeJyRM1Qs4
wUFEJOhhPdO8mXvZg/7zPCovDaeqFwC0CYxVwWMHFoZFNqo82aVPL0pWr+nSsjWl
PweEmb1l4FFhNxHS4SNBHx3EwlEXDZhzdnbvgfeVj8KgXJkLFJNpfXKzFe5Ftzut
KBv7uVGX5BcktSxSJYO0Rzd0eDB2L+UGgG3waCnwOCFcMbCckzavTplgJ86gChkO
t3W3kvDcHS5S1FOrU4jmB+gnI2yS6H7HngDtIls4BCFEyt4N9SP1ypQMzp/5AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUe4DkpLU8UZCaVGCY1wchKpyb2H8wHwYDVR0j
BBgwFoAUQ5pJgVSauxUbEtbshfyNDb+ZqB4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
YTQ3MjMxZi0wMmRkLTQ5ZTgtYWEyNS0yZDU0YzBhOTk5Y2EvMC80MzlBNDk4MTU0
OUFCQjE1MUIxMkQ2RUM4NUZDOEQwREJGOTlBODFFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDM5QTQ5ODE1NDlBQkIxNTFCMTJENkVDODVGQzhEMERCRjk5
QTgxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNDcyMzFmLTAyZGQtNDllOC1h
YTI1LTJkNTRjMGE5OTljYS8wLzMxMzAzMzJlMzEzMTMyMmUzMjM0MzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFncPQwDQYJ
KoZIhvcNAQELBQADggEBAE2a9+u22nwvsLwWMX2LWUO9QREnXEXSvh4F6bRIp99T
mMXLtJn+s0RjNKs76Fd7SuR9OoIluPmiR6xy4Ara27D6Lc0Knr3H/SdB1dLTdD1t
+f18DJ5+vZF2YYm5c3PLRJoroPApOutQ418CrVo8VKWTssC23jn3loJDR5bVCPeP
hMUxJe95HnFL/C4cGC5oxYxty7pFOm8xvt8Vys8xg6zHLQbL2p2JvbwfNf/XbxPt
BfXk6US0mPNPHwcASN3TgDKxTfNdoWWithDIdA8Kz3aM+UwFC8WU870vh7BRT6ax
eL7Bh2hXNAbzY9ohvCLkVzimoWfuLZADZ1Af5rBl/Sc=
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:39 2025 by rpki-client