Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa
File: 3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa (raw, json)
Hash identifier: xVOwIPvBQ0n872k/gfDVvNmh+7kWsfCWp3uf32P6Pv0=
Subject key identifier: A0:70:B2:8D:0C:93:C5:AF:40:4F:57:E8:72:10:61:3C:1F:F8:42:5A
Certificate issuer: /CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA
Certificate serial: 5E39898C5BE7AC6B693BA210938DC256A1136691
Authority key identifier: 6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa
Signing time: Wed 15 May 2024 08:00:02 +0000
ROA not before: Wed 15 May 2024 07:55:02 +0000
ROA not after: Wed 14 May 2025 08:00:02 +0000
asID: 9341
IP address blocks: 103.189.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:39:89:8c:5b:e7:ac:6b:69:3b:a2:10:93:8d:c2:56:a1:13:66:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA
Validity
Not Before: May 15 07:55:02 2024 GMT
Not After : May 14 08:00:02 2025 GMT
Subject: CN=A070B28D0C93C5AF404F57E87210613C1FF8425A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2a:b9:05:0a:f7:b0:bc:53:f5:1e:2b:44:4b:
ba:40:b3:6e:46:55:82:e7:e5:da:57:ee:aa:e1:ef:
29:4d:e6:72:c6:7d:44:dd:9f:19:9c:94:53:50:8c:
df:bb:38:d8:e4:80:46:a7:67:47:95:29:99:19:e2:
d8:15:97:45:e4:64:e8:0d:73:8a:35:44:83:6b:96:
4e:d6:65:0f:47:50:97:e5:87:9e:56:b3:0f:79:cc:
f8:6d:0e:3c:d0:15:d8:e3:3e:e8:32:66:42:9b:06:
a6:eb:c2:c1:4b:20:6f:fc:0b:3e:f9:8a:f8:b5:86:
aa:61:5f:8d:32:85:bc:e5:03:69:35:14:5d:4a:6a:
9e:1b:be:37:9b:0a:1f:e6:48:7f:56:2c:2a:b1:f4:
e6:b1:79:ec:ce:6a:8c:f3:e1:07:60:4b:60:16:71:
b6:c7:ee:fb:5c:4e:75:0e:2b:11:fb:4f:e6:6e:2e:
7c:df:44:a1:1f:27:04:db:4b:d8:5e:0f:6c:21:85:
5d:4f:6a:eb:7d:af:a0:c9:8d:e6:9e:d2:e0:1a:f1:
44:91:7e:e4:1b:0f:fe:82:d0:fb:e6:98:c5:6a:eb:
99:b8:cc:6f:52:91:de:04:94:da:48:73:50:da:e8:
0a:f0:8b:34:80:9d:f5:da:b8:d7:00:75:26:4f:83:
76:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:70:B2:8D:0C:93:C5:AF:40:4F:57:E8:72:10:61:3C:1F:F8:42:5A
X509v3 Authority Key Identifier:
keyid:6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.168.0/23
Signature Algorithm: sha256WithRSAEncryption
75:09:89:c4:39:4e:5a:27:39:f8:33:49:a3:ce:d5:9e:09:6c:
35:a6:6f:3b:f5:81:df:36:d7:b7:63:89:96:77:5a:5a:fe:32:
cc:8c:aa:55:98:d5:53:a5:1c:cb:68:0d:fc:69:ef:87:cf:e9:
41:78:b5:e6:88:fa:7a:05:06:0e:a2:7b:d7:b4:de:2c:52:2a:
b4:ba:6f:9b:91:9a:13:d4:a1:79:a8:78:74:fd:69:96:77:d7:
ea:d1:09:9a:0d:97:1c:43:fc:81:70:60:b1:b4:e7:17:c0:f9:
7a:0a:41:0e:17:2b:cf:87:6b:a6:b0:cd:8b:e7:16:af:4f:17:
fd:bb:98:2c:d8:39:ce:99:80:08:04:fe:c0:15:d0:44:b6:4a:
76:8b:be:bf:d1:12:4f:5b:61:82:56:86:9a:dd:45:94:66:80:
9d:9c:80:27:ca:1e:39:02:07:75:7d:44:64:e8:ce:fe:23:da:
d0:99:32:75:8b:d2:5f:58:ee:22:40:24:60:71:cc:22:88:3b:
9f:8f:f4:f7:16:4c:91:0d:84:45:f9:a4:90:8f:a7:5b:d8:30:
29:1c:05:c4:fb:b1:45:81:d2:3a:68:82:3d:bb:5b:9b:26:ea:
23:bb:11:b2:fb:16:6a:cd:fc:6c:59:21:ef:92:b4:98:73:f4:
b0:cd:69:4c
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUXjmJjFvnrGtpO6IQk43CVqETZpEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMx
REIwOEZEQTAeFw0yNDA1MTUwNzU1MDJaFw0yNTA1MTQwODAwMDJaMDMxMTAvBgNV
BAMTKEEwNzBCMjhEMEM5M0M1QUY0MDRGNTdFODcyMTA2MTNDMUZGODQyNUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgKrkFCvewvFP1HitES7pAs25G
VYLn5dpX7qrh7ylN5nLGfUTdnxmclFNQjN+7ONjkgEanZ0eVKZkZ4tgVl0XkZOgN
c4o1RINrlk7WZQ9HUJflh55Wsw95zPhtDjzQFdjjPugyZkKbBqbrwsFLIG/8Cz75
ivi1hqphX40yhbzlA2k1FF1Kap4bvjebCh/mSH9WLCqx9OaxeezOaozz4QdgS2AW
cbbH7vtcTnUOKxH7T+ZuLnzfRKEfJwTbS9heD2whhV1Paut9r6DJjeae0uAa8USR
fuQbD/6C0PvmmMVq65m4zG9Skd4ElNpIc1Da6ArwizSAnfXauNcAdSZPg3bTAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUoHCyjQyTxa9AT1fochBhPB/4QlowHwYDVR0j
BBgwFoAUb8DJM0D/c1k0NMjv/O2Osx2wj9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
ZjY1OTkwNC0zNzAyLTQ3OTctYmQxYi00NDdhYjhjOTRlMGMvMC82RkMwQzkzMzQw
RkY3MzU5MzQzNEM4RUZGQ0VEOEVCMzFEQjA4RkRBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMxREIw
OEZEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmNjU5OTA0LTM3MDItNDc5Ny1i
ZDFiLTQ0N2FiOGM5NGUwYy8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzgyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9qDANBgkqhkiG
9w0BAQsFAAOCAQEAdQmJxDlOWic5+DNJo87VnglsNaZvO/WB3zbXt2OJlndaWv4y
zIyqVZjVU6Ucy2gN/Gnvh8/pQXi15oj6egUGDqJ717TeLFIqtLpvm5GaE9Sheah4
dP1plnfX6tEJmg2XHEP8gXBgsbTnF8D5egpBDhcrz4drprDNi+cWr08X/buYLNg5
zpmACAT+wBXQRLZKdou+v9EST1thglaGmt1FlGaAnZyAJ8oeOQIHdX1EZOjO/iPa
0JkydYvSX1juIkAkYHHMIog7n4/09xZMkQ2ERfmkkI+nW9gwKRwFxPuxRYHSOmiC
PbtbmybqI7sRsvsWas38bFkh75K0mHP0sM1pTA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:47 2025 by rpki-client