Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa
File: 3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa (raw, json)
Hash identifier: rvmmuygSDQqp3VTFfTdTUgUhuWy6VU7o/YE+GwA04qY=
Subject key identifier: 9A:F1:C7:B8:5E:48:17:12:F3:A9:43:59:00:CF:89:A6:19:D5:FF:6D
Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6
Certificate serial: 468A1CD1F03C6085623772CDDCEF27B3E2380E03
Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa
Signing time: Tue 24 Sep 2024 17:12:33 +0000
ROA not before: Tue 24 Sep 2024 17:07:33 +0000
ROA not after: Tue 23 Sep 2025 17:12:33 +0000
asID: 133354
IP address blocks: 103.232.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:8a:1c:d1:f0:3c:60:85:62:37:72:cd:dc:ef:27:b3:e2:38:0e:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6
Validity
Not Before: Sep 24 17:07:33 2024 GMT
Not After : Sep 23 17:12:33 2025 GMT
Subject: CN=9AF1C7B85E481712F3A9435900CF89A619D5FF6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3f:58:29:80:90:a9:04:8f:0c:fd:4c:fa:35:
81:d8:08:19:7d:03:c6:ab:d7:17:01:7a:0c:7e:d6:
84:c6:90:55:02:17:28:c3:55:d3:cd:6f:05:eb:b5:
1f:03:99:30:75:a2:fd:dd:d2:70:71:a2:34:83:ce:
0b:1a:d0:30:2e:f3:71:c6:81:af:85:a3:b8:be:7c:
57:22:09:00:6d:a1:c0:88:f9:9a:06:6a:0b:0c:0c:
36:e7:1a:7e:4f:5a:55:42:1f:e2:eb:d1:2f:ca:2d:
0c:9b:b5:77:96:27:5c:f1:a3:28:f7:1b:2d:3d:d0:
f3:fd:a3:b3:d4:14:7d:95:a3:81:2e:2d:57:7a:2b:
7a:1f:64:26:d3:5c:0a:14:a1:a9:9f:b9:7e:49:5c:
e2:77:4e:7f:98:46:f4:ab:4c:9d:57:9c:c7:1f:3d:
5a:27:0c:f8:30:c6:2e:a2:2e:14:68:4c:e1:46:8b:
b1:11:5c:62:fc:4e:e8:77:89:b0:73:67:1a:ea:93:
23:af:b6:ad:b1:87:47:f2:fb:ca:40:9c:33:1d:e5:
c3:26:85:23:0c:29:ca:5c:ff:c8:a1:20:e3:ac:f0:
7c:ed:89:7a:61:ff:0e:fe:f7:e4:01:2e:81:30:74:
65:7f:82:af:f7:07:7f:96:05:73:ca:0e:69:ab:08:
cb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F1:C7:B8:5E:48:17:12:F3:A9:43:59:00:CF:89:A6:19:D5:FF:6D
X509v3 Authority Key Identifier:
keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.232.32.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:18:4a:38:d5:96:f4:0b:f9:6c:0a:96:74:2b:5c:ab:0e:ef:
83:c7:b8:c2:93:91:05:fe:65:dd:76:d4:82:0c:27:7c:4c:1c:
59:d6:59:f4:58:b6:f9:88:27:d8:57:e6:26:18:73:85:d6:eb:
71:e0:07:92:c4:0f:76:d8:36:25:29:ae:ec:a9:41:8f:79:03:
66:e4:eb:73:d3:25:60:0c:16:c4:c9:b4:bc:17:4b:0a:eb:cc:
5a:b0:1a:4c:6a:33:48:83:cf:fa:e8:6f:e4:b3:69:b0:68:df:
66:6e:c8:2c:bb:f9:fb:47:a5:90:20:0b:a3:7a:91:a1:eb:6c:
a8:62:3b:90:c4:fa:55:c8:3a:aa:2a:5b:01:6b:6d:db:4b:18:
fb:58:f3:8f:84:71:b7:6d:fd:00:fe:a4:5e:a4:01:fd:b4:87:
90:2a:a6:5e:fb:10:64:cb:a9:33:9e:dc:25:69:9a:60:f6:7e:
d3:d1:b6:11:6c:c2:2c:ba:1c:97:b6:2d:36:e7:3d:9a:52:7d:
19:76:87:34:0f:7b:ee:08:ed:db:f1:a4:05:be:87:5e:34:c3:
fd:15:b6:81:eb:6f:25:c6:8f:12:a3:3c:94:56:62:b1:0f:7d:
1a:d1:8e:1c:c6:c5:63:4c:63:ff:3f:cc:3b:f3:f8:30:42:76:
bb:83:ab:72
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIURooc0fA8YIViN3LN3O8ns+I4DgMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2
OTNDMkZDNjAeFw0yNDA5MjQxNzA3MzNaFw0yNTA5MjMxNzEyMzNaMDMxMTAvBgNV
BAMTKDlBRjFDN0I4NUU0ODE3MTJGM0E5NDM1OTAwQ0Y4OUE2MTlENUZGNkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4P1gpgJCpBI8M/Uz6NYHYCBl9
A8ar1xcBegx+1oTGkFUCFyjDVdPNbwXrtR8DmTB1ov3d0nBxojSDzgsa0DAu83HG
ga+Fo7i+fFciCQBtocCI+ZoGagsMDDbnGn5PWlVCH+Lr0S/KLQybtXeWJ1zxoyj3
Gy090PP9o7PUFH2Vo4EuLVd6K3ofZCbTXAoUoamfuX5JXOJ3Tn+YRvSrTJ1XnMcf
PVonDPgwxi6iLhRoTOFGi7ERXGL8Tuh3ibBzZxrqkyOvtq2xh0fy+8pAnDMd5cMm
hSMMKcpc/8ihIOOs8HztiXph/w7+9+QBLoEwdGV/gq/3B3+WBXPKDmmrCMv9AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUmvHHuF5IFxLzqUNZAM+JphnV/20wHwYDVR0j
BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE
MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND
MkZDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h
MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMzMyMmUzMzMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ggMA0GCSqG
SIb3DQEBCwUAA4IBAQDdGEo41Zb0C/lsCpZ0K1yrDu+Dx7jCk5EF/mXddtSCDCd8
TBxZ1ln0WLb5iCfYV+YmGHOF1utx4AeSxA922DYlKa7sqUGPeQNm5Otz0yVgDBbE
ybS8F0sK68xasBpMajNIg8/66G/ks2mwaN9mbsgsu/n7R6WQIAujepGh62yoYjuQ
xPpVyDqqKlsBa23bSxj7WPOPhHG3bf0A/qRepAH9tIeQKqZe+xBky6kzntwlaZpg
9n7T0bYRbMIsuhyXti025z2aUn0Zdoc0D3vuCO3b8aQFvodeNMP9FbaB628lxo8S
ozyUVmKxD30a0Y4cxsVjTGP/P8w78/gwQna7g6ty
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:20 2025 by rpki-client