Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa
File: 3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa (raw, json)
Hash identifier: KIBNFpdbg6BRQCIPOHqspYOBoezcUYWgmcH91SlD2KY=
Subject key identifier: 31:FF:51:6F:80:C6:6C:49:DE:F4:C5:D4:2C:0D:DB:8A:E8:B9:EA:29
Certificate issuer: /CN=DEF44331E724964F28697DEABAF2313CDCEEFACE
Certificate serial: 5E2C7079E2E6CD1FA92EC012B0FE1A65E72EF37D
Authority key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa
Signing time: Mon 01 Jul 2024 01:05:25 +0000
ROA not before: Mon 01 Jul 2024 01:00:25 +0000
ROA not after: Mon 30 Jun 2025 01:05:25 +0000
asID: 137312
IP address blocks: 103.108.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:2c:70:79:e2:e6:cd:1f:a9:2e:c0:12:b0:fe:1a:65:e7:2e:f3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE
Validity
Not Before: Jul 1 01:00:25 2024 GMT
Not After : Jun 30 01:05:25 2025 GMT
Subject: CN=31FF516F80C66C49DEF4C5D42C0DDB8AE8B9EA29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:c4:61:df:c6:91:9b:a8:27:cd:ef:a0:3b:
c0:c1:41:b4:4b:92:d0:ac:fa:84:02:37:68:c7:56:
54:d4:ac:d5:fc:8d:ee:c4:66:e0:56:12:54:28:27:
20:dc:c1:6b:89:69:2a:14:f6:10:53:7b:fc:94:33:
4e:e3:57:e6:9b:28:34:90:c0:30:f4:9c:aa:6b:c3:
59:9c:c9:96:22:b5:17:ad:1a:3a:5f:57:60:8c:68:
66:71:ac:90:9e:43:ab:3b:2f:7a:34:12:77:6c:5b:
c9:7d:dd:93:40:ff:a6:17:40:93:e0:de:38:62:d9:
17:10:64:19:98:c1:07:40:d4:05:be:32:be:aa:35:
7a:53:ff:c5:2d:07:8d:39:76:5d:72:c6:db:ac:20:
71:fd:68:bb:17:23:1b:6b:76:88:f0:3e:83:77:a1:
b3:e5:03:b7:62:d3:06:43:95:20:e7:e8:f9:9f:5e:
3a:9b:c5:7b:3a:02:09:2a:4d:18:c5:e2:b3:a7:2b:
62:b1:9f:25:c1:21:a0:6e:58:98:e2:49:81:c4:6f:
63:82:a0:0d:2b:0d:65:67:a3:be:6e:f0:81:41:09:
cb:43:07:a1:36:a8:5c:bc:53:0d:7c:53:25:7f:56:
d7:cb:71:54:b4:5d:19:4c:37:25:5d:99:35:d2:40:
57:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FF:51:6F:80:C6:6C:49:DE:F4:C5:D4:2C:0D:DB:8A:E8:B9:EA:29
X509v3 Authority Key Identifier:
keyid:DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.108.191.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:f2:ec:fa:32:ae:94:a2:28:de:c1:98:25:4b:39:2a:96:37:
f2:bd:f7:1e:b2:b4:59:18:60:89:05:39:cc:76:7a:94:0c:46:
2c:de:9b:fa:3d:a1:83:c6:f2:ed:60:11:35:c5:fa:24:34:b7:
7d:20:0b:96:93:16:b7:1e:d4:4d:d2:3a:2d:e2:e8:3b:1e:dc:
45:9a:c7:e3:ef:20:c4:b8:c6:04:9f:9d:85:c7:7a:8d:14:09:
ac:10:17:70:95:40:96:0b:5a:fd:96:94:84:6a:ee:9d:f4:1c:
1d:44:93:7f:5a:99:db:8c:1a:3f:92:9d:91:60:2e:b8:74:36:
2a:a3:bb:ba:25:4d:5d:71:85:36:c7:1f:c3:16:77:0b:c1:5c:
0a:1a:63:0d:99:98:d5:b1:ad:1d:e4:f8:22:28:48:2f:cc:30:
c3:60:30:75:0f:68:c7:2a:be:c0:3d:1f:d6:06:0c:85:c4:9e:
15:b8:26:12:d8:ff:d1:14:92:62:64:a9:be:5d:5a:fe:06:c7:
35:c7:96:62:2e:50:8d:cd:1a:a4:d2:ee:06:20:ac:34:1e:28:
b8:93:bc:e8:1e:da:46:86:03:56:46:9e:a7:c5:82:52:d1:b4:
03:37:0f:93:88:b8:c6:43:d0:3c:65:26:d8:c1:33:ff:8f:2a:
3c:41:21:aa
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUXixweeLmzR+pLsASsP4aZecu830wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NE
Q0VFRkFDRTAeFw0yNDA3MDEwMTAwMjVaFw0yNTA2MzAwMTA1MjVaMDMxMTAvBgNV
BAMTKDMxRkY1MTZGODBDNjZDNDlERUY0QzVENDJDMEREQjhBRThCOUVBMjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVcRh38aRm6gnze+gO8DBQbRL
ktCs+oQCN2jHVlTUrNX8je7EZuBWElQoJyDcwWuJaSoU9hBTe/yUM07jV+abKDSQ
wDD0nKprw1mcyZYitRetGjpfV2CMaGZxrJCeQ6s7L3o0EndsW8l93ZNA/6YXQJPg
3jhi2RcQZBmYwQdA1AW+Mr6qNXpT/8UtB405dl1yxtusIHH9aLsXIxtrdojwPoN3
obPlA7di0wZDlSDn6PmfXjqbxXs6AgkqTRjF4rOnK2KxnyXBIaBuWJjiSYHEb2OC
oA0rDWVno75u8IFBCctDB6E2qFy8Uw18UyV/VtfLcVS0XRlMNyVdmTXSQFcpAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUMf9Rb4DGbEne9MXULA3biui56ikwHwYDVR0j
BBgwFoAU3vRDMecklk8oaX3quvIxPNzu+s4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
MTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMC9ERUY0NDMzMUU3
MjQ5NjRGMjg2OTdERUFCQUYyMzEzQ0RDRUVGQUNFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NEQ0VF
RkFDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdlLTI2NTUtNDJiMS1i
YWY3LTQyZWMxY2YxOTJhYS8wLzMxMzAzMzJlMzEzMDM4MmUzMTM5MzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbL8wDQYJ
KoZIhvcNAQELBQADggEBAODy7PoyrpSiKN7BmCVLOSqWN/K99x6ytFkYYIkFOcx2
epQMRizem/o9oYPG8u1gETXF+iQ0t30gC5aTFrce1E3SOi3i6Dse3EWax+PvIMS4
xgSfnYXHeo0UCawQF3CVQJYLWv2WlIRq7p30HB1Ek39amduMGj+SnZFgLrh0Niqj
u7olTV1xhTbHH8MWdwvBXAoaYw2ZmNWxrR3k+CIoSC/MMMNgMHUPaMcqvsA9H9YG
DIXEnhW4JhLY/9EUkmJkqb5dWv4GxzXHlmIuUI3NGqTS7gYgrDQeKLiTvOge2kaG
A1ZGnqfFglLRtAM3D5OIuMZD0DxlJtjBM/+PKjxBIao=
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:42 2025 by rpki-client