Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f04e97d3-71c3-4d0a-8b04-7088fe382bc3/0/3130332e3137322e3131392e302f32342d3234203d3e20313432333935.roa
File: 3130332e3137322e3131392e302f32342d3234203d3e20313432333935.roa (raw, json)
Hash identifier: 0hLdQrCPmSqy2GEz7e0MT9LiOU5rKBHEBCg28r4gnFg=
Subject key identifier: 64:49:BE:43:C6:56:F6:6C:CF:00:99:8E:23:02:60:5A:0B:B7:78:0C
Certificate issuer: /CN=082F7822D1C63E1ED5DA833913215FE68925FF6E
Certificate serial: 6E778A14DD88AABB86F52CD9BBA990996F4A04C8
Authority key identifier: 08:2F:78:22:D1:C6:3E:1E:D5:DA:83:39:13:21:5F:E6:89:25:FF:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/082F7822D1C63E1ED5DA833913215FE68925FF6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f04e97d3-71c3-4d0a-8b04-7088fe382bc3/0/3130332e3137322e3131392e302f32342d3234203d3e20313432333935.roa
Signing time: Fri 21 Feb 2025 07:47:45 +0000
ROA not before: Fri 21 Feb 2025 07:42:45 +0000
ROA not after: Fri 20 Feb 2026 07:47:45 +0000
asID: 142395
IP address blocks: 103.172.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:77:8a:14:dd:88:aa:bb:86:f5:2c:d9:bb:a9:90:99:6f:4a:04:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=082F7822D1C63E1ED5DA833913215FE68925FF6E
Validity
Not Before: Feb 21 07:42:45 2025 GMT
Not After : Feb 20 07:47:45 2026 GMT
Subject: CN=6449BE43C656F66CCF00998E2302605A0BB7780C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fa:1e:f4:d0:14:10:78:0d:72:33:d3:42:18:
4a:76:48:8b:01:45:25:ed:b5:00:ca:dc:bb:e1:8b:
8e:9b:c6:7a:96:d0:0f:56:99:94:ce:84:68:e7:17:
2d:1e:69:3c:3e:0c:9d:38:94:ce:60:4c:cd:ad:76:
81:24:3b:0b:0e:2a:14:82:5b:3f:be:3d:9e:34:c1:
be:00:d4:6b:d6:a1:3f:14:2b:cb:54:a3:d2:0c:5e:
03:ac:9c:73:ce:f9:e5:3a:4e:23:e2:6f:91:53:76:
1e:4a:3e:22:7c:80:2e:dd:bf:f6:68:aa:3c:0c:60:
bc:b9:d7:2a:27:f0:10:ad:19:1c:fa:a6:2a:6c:d5:
fe:11:4d:85:d3:b1:79:9d:24:e6:1a:b6:16:d6:72:
b0:75:51:69:5a:fa:31:b0:2d:32:b6:b9:dc:2a:82:
e5:3e:61:66:19:fa:1e:95:5e:39:5e:2c:8d:1c:d1:
a7:8c:99:1c:ed:01:af:93:e9:53:37:50:99:ba:33:
8c:ad:62:63:31:88:c8:c6:e1:53:2a:c5:be:36:ac:
fd:3a:8f:47:3a:01:e1:ae:3f:53:19:24:48:5d:29:
ea:8f:f0:f3:97:3d:d7:91:91:a7:9e:86:a4:bf:b9:
0e:04:a1:12:43:05:82:99:99:ca:1b:3f:56:5f:d6:
67:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:49:BE:43:C6:56:F6:6C:CF:00:99:8E:23:02:60:5A:0B:B7:78:0C
X509v3 Authority Key Identifier:
keyid:08:2F:78:22:D1:C6:3E:1E:D5:DA:83:39:13:21:5F:E6:89:25:FF:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f04e97d3-71c3-4d0a-8b04-7088fe382bc3/0/082F7822D1C63E1ED5DA833913215FE68925FF6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/082F7822D1C63E1ED5DA833913215FE68925FF6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f04e97d3-71c3-4d0a-8b04-7088fe382bc3/0/3130332e3137322e3131392e302f32342d3234203d3e20313432333935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.119.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:ac:95:8c:8c:12:e2:cc:42:c3:5b:fc:21:be:4f:00:e6:c0:
11:b3:47:b7:35:a9:1a:5c:b3:23:07:2e:77:e8:00:e6:c5:32:
d5:4d:f9:34:71:33:10:62:b8:cf:37:71:48:0b:81:27:f7:5a:
30:23:a1:db:68:82:c1:53:7f:ed:13:6e:40:cd:26:e9:7f:58:
21:b6:b0:49:64:28:65:80:dc:a2:df:3e:96:01:a5:eb:28:b5:
c0:07:bc:b8:e1:87:0b:81:00:c2:8e:ce:04:e0:dc:97:fa:4b:
ce:03:03:d5:64:76:19:d2:bd:f4:ef:2a:6e:2a:1e:6b:b9:05:
78:84:3c:a3:80:4e:5a:48:8c:ca:b9:1d:55:03:d3:62:a4:25:
0c:60:de:1d:e6:eb:14:6e:dd:17:6f:a6:14:a4:c0:69:f8:58:
f9:9e:5c:8d:77:f0:05:56:f4:52:a3:1f:3e:7d:3b:3c:c8:93:
88:41:56:33:d5:dd:5c:88:55:ec:08:1a:45:65:37:bf:30:4e:
fd:63:6f:57:f1:28:c6:df:fc:9d:a4:93:16:51:d1:51:ce:46:
3f:d7:f4:41:3b:8e:b1:82:34:3c:b1:4a:97:68:1c:70:55:60:
67:a4:12:aa:51:97:a7:7e:c0:10:ca:6e:43:c0:ab:12:a5:73:
be:51:2b:43
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUbneKFN2IqruG9SzZu6mQmW9KBMgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDgyRjc4MjJEMUM2M0UxRUQ1REE4MzM5MTMyMTVGRTY4
OTI1RkY2RTAeFw0yNTAyMjEwNzQyNDVaFw0yNjAyMjAwNzQ3NDVaMDMxMTAvBgNV
BAMTKDY0NDlCRTQzQzY1NkY2NkNDRjAwOTk4RTIzMDI2MDVBMEJCNzc4MEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl+h700BQQeA1yM9NCGEp2SIsB
RSXttQDK3Lvhi46bxnqW0A9WmZTOhGjnFy0eaTw+DJ04lM5gTM2tdoEkOwsOKhSC
Wz++PZ40wb4A1GvWoT8UK8tUo9IMXgOsnHPO+eU6TiPib5FTdh5KPiJ8gC7dv/Zo
qjwMYLy51yon8BCtGRz6pips1f4RTYXTsXmdJOYathbWcrB1UWla+jGwLTK2udwq
guU+YWYZ+h6VXjleLI0c0aeMmRztAa+T6VM3UJm6M4ytYmMxiMjG4VMqxb42rP06
j0c6AeGuP1MZJEhdKeqP8POXPdeRkaeehqS/uQ4EoRJDBYKZmcobP1Zf1mcLAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUZEm+Q8ZW9mzPAJmOIwJgWgu3eAwwHwYDVR0j
BBgwFoAUCC94ItHGPh7V2oM5EyFf5okl/24wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
MDRlOTdkMy03MWMzLTRkMGEtOGIwNC03MDg4ZmUzODJiYzMvMC8wODJGNzgyMkQx
QzYzRTFFRDVEQTgzMzkxMzIxNUZFNjg5MjVGRjZFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDgyRjc4MjJEMUM2M0UxRUQ1REE4MzM5MTMyMTVGRTY4OTI1
RkY2RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwNGU5N2QzLTcxYzMtNGQwYS04
YjA0LTcwODhmZTM4MmJjMy8wLzMxMzAzMzJlMzEzNzMyMmUzMTMxMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrHcwDQYJ
KoZIhvcNAQELBQADggEBANmslYyMEuLMQsNb/CG+TwDmwBGzR7c1qRpcsyMHLnfo
AObFMtVN+TRxMxBiuM83cUgLgSf3WjAjodtogsFTf+0TbkDNJul/WCG2sElkKGWA
3KLfPpYBpesotcAHvLjhhwuBAMKOzgTg3Jf6S84DA9VkdhnSvfTvKm4qHmu5BXiE
PKOATlpIjMq5HVUD02KkJQxg3h3m6xRu3RdvphSkwGn4WPmeXI138AVW9FKjHz59
OzzIk4hBVjPV3VyIVewIGkVlN78wTv1jb1fxKMbf/J2kkxZR0VHORj/X9EE7jrGC
NDyxSpdoHHBVYGekEqpRl6d+wBDKbkPAqxKlc75RK0M=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:25 2025 by rpki-client