Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3130332e3231352e31392e302f32342d3234203d3e203634303331.roa
File: 3130332e3231352e31392e302f32342d3234203d3e203634303331.roa (raw, json)
Hash identifier: VEGQ96RWQqZFWdsMC5rPZ07rp9QmnGtSO63CEA/1uX8=
Subject key identifier: 2E:B7:73:BE:6B:C0:23:F8:60:C1:ED:4F:65:F6:F6:A2:A4:99:6F:D5
Certificate issuer: /CN=A781200DA8EA5D34C742642B1E502D67A5B2279E
Certificate serial: 742B0B5C807CAB6D004E940FA13EB724F92117CE
Authority key identifier: A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3130332e3231352e31392e302f32342d3234203d3e203634303331.roa
Signing time: Sat 14 Sep 2024 04:00:01 +0000
ROA not before: Sat 14 Sep 2024 03:55:01 +0000
ROA not after: Sat 13 Sep 2025 04:00:01 +0000
asID: 64031
IP address blocks: 103.215.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:2b:0b:5c:80:7c:ab:6d:00:4e:94:0f:a1:3e:b7:24:f9:21:17:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A781200DA8EA5D34C742642B1E502D67A5B2279E
Validity
Not Before: Sep 14 03:55:01 2024 GMT
Not After : Sep 13 04:00:01 2025 GMT
Subject: CN=2EB773BE6BC023F860C1ED4F65F6F6A2A4996FD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:db:3b:6b:8e:fc:7f:d0:04:3a:bf:76:eb:85:
ee:50:15:89:f2:bb:91:24:13:b5:da:ae:3a:f7:a6:
3c:37:3a:fa:17:4c:b0:13:bc:e1:89:87:d0:45:52:
b2:f7:29:03:24:1f:d3:a0:bd:12:51:fe:5d:d3:d0:
4e:4f:df:1b:51:dd:5b:0b:dc:45:47:4e:de:90:a6:
0f:c8:76:70:bd:36:24:da:f6:37:74:86:54:d8:e4:
3f:61:af:a6:cf:7f:0e:6a:b8:0b:31:c8:55:36:dc:
2b:f4:33:d8:65:0d:9a:13:7c:47:f0:db:32:29:99:
82:25:9e:e7:a7:1d:b6:b4:4f:cf:6e:f6:f0:4c:3b:
6f:ef:27:a4:70:ba:ef:77:0f:49:6d:ce:8e:ac:84:
e3:62:72:97:fa:6a:15:2f:0e:77:54:d0:10:31:60:
1f:0e:80:38:61:be:28:6d:66:62:39:55:e4:bd:2b:
ac:54:dd:76:1e:68:4b:86:3b:ec:b2:7d:60:0b:b9:
1b:63:8f:12:ca:0d:2e:d7:15:41:a4:c1:3b:07:23:
0f:3d:0d:fd:ec:e8:44:ff:65:13:a1:e1:9e:79:88:
24:4d:b9:07:53:98:05:b8:51:75:d8:b1:70:c5:47:
3a:a3:a3:2f:81:f4:e6:9e:de:94:02:cf:eb:17:4b:
ad:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B7:73:BE:6B:C0:23:F8:60:C1:ED:4F:65:F6:F6:A2:A4:99:6F:D5
X509v3 Authority Key Identifier:
keyid:A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3130332e3231352e31392e302f32342d3234203d3e203634303331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.215.19.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e1:f8:98:8e:61:0c:8c:76:69:2a:5c:af:82:64:59:ab:30:
e9:b3:40:db:f2:25:9f:da:cc:bd:c0:0e:06:b3:62:b8:c9:7f:
92:08:40:2e:64:7a:45:7a:e8:55:db:a3:bc:c9:d6:33:77:6f:
55:84:4f:bc:f1:34:62:ba:a1:c4:03:b2:72:b5:44:5a:cd:e7:
ec:be:42:42:a5:f5:82:5d:79:3e:15:42:31:36:89:8e:59:02:
fe:d6:db:71:80:62:e9:0b:cc:f7:ae:ca:32:61:81:bf:2c:a7:
63:20:ad:60:9d:b1:30:86:7d:0d:75:f6:46:62:6f:11:83:c7:
b4:63:01:da:3a:32:df:ef:ca:be:11:66:13:1e:b8:a1:32:c4:
fb:ab:fd:2f:4d:2b:45:36:2f:02:59:38:16:a3:13:d3:b4:75:
5a:aa:b3:50:f0:72:a7:58:0b:5b:53:5c:87:d5:6a:83:74:1c:
5e:32:9f:7e:2d:5b:86:18:2a:54:75:66:5c:66:88:f9:62:ca:
26:c9:fe:26:10:c8:17:12:87:3a:20:dd:b7:6e:32:ce:23:f6:
59:44:ee:94:cd:4b:41:a4:1e:fa:7f:a4:ef:92:6e:52:da:64:
aa:e2:ac:e8:94:85:3c:70:2c:82:32:ea:8c:bd:29:c2:99:56:
d9:87:23:14
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUdCsLXIB8q20ATpQPoT63JPkhF84wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdB
NUIyMjc5RTAeFw0yNDA5MTQwMzU1MDFaFw0yNTA5MTMwNDAwMDFaMDMxMTAvBgNV
BAMTKDJFQjc3M0JFNkJDMDIzRjg2MEMxRUQ0RjY1RjZGNkEyQTQ5OTZGRDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp2ztrjvx/0AQ6v3brhe5QFYny
u5EkE7Xarjr3pjw3OvoXTLATvOGJh9BFUrL3KQMkH9OgvRJR/l3T0E5P3xtR3VsL
3EVHTt6Qpg/IdnC9NiTa9jd0hlTY5D9hr6bPfw5quAsxyFU23Cv0M9hlDZoTfEfw
2zIpmYIlnuenHba0T89u9vBMO2/vJ6Rwuu93D0ltzo6shONicpf6ahUvDndU0BAx
YB8OgDhhvihtZmI5VeS9K6xU3XYeaEuGO+yyfWALuRtjjxLKDS7XFUGkwTsHIw89
Df3s6ET/ZROh4Z55iCRNuQdTmAW4UXXYsXDFRzqjoy+B9Oae3pQCz+sXS62NAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQULrdzvmvAI/hgwe1PZfb2oqSZb9UwHwYDVR0j
BBgwFoAUp4EgDajqXTTHQmQrHlAtZ6WyJ54wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
ZDcwY2MzNy0xZmE2LTRmYTAtYTg4Yy00MDhhZWQyOGQ5YWEvMC9BNzgxMjAwREE4
RUE1RDM0Qzc0MjY0MkIxRTUwMkQ2N0E1QjIyNzlFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdBNUIy
Mjc5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkNzBjYzM3LTFmYTYtNGZhMC1h
ODhjLTQwOGFlZDI4ZDlhYS8wLzMxMzAzMzJlMzIzMTM1MmUzMTM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzYzNDMwMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfXEzANBgkqhkiG
9w0BAQsFAAOCAQEAdOH4mI5hDIx2aSpcr4JkWasw6bNA2/Iln9rMvcAOBrNiuMl/
kghALmR6RXroVdujvMnWM3dvVYRPvPE0YrqhxAOycrVEWs3n7L5CQqX1gl15PhVC
MTaJjlkC/tbbcYBi6QvM967KMmGBvyynYyCtYJ2xMIZ9DXX2RmJvEYPHtGMB2joy
3+/KvhFmEx64oTLE+6v9L00rRTYvAlk4FqMT07R1WqqzUPByp1gLW1Nch9Vqg3Qc
XjKffi1bhhgqVHVmXGaI+WLKJsn+JhDIFxKHOiDdt24yziP2WUTulM1LQaQe+n+k
75JuUtpkquKs6JSFPHAsgjLqjL0pwplW2YcjFA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:36 2025 by rpki-client