Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa
File: 3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa (raw, json)
Hash identifier: m6OBWxFlKV5M4H7BD/tWn/T0f+v7YkM8XxkEk/L62sY=
Subject key identifier: F0:11:9B:3E:2F:54:FC:11:F3:86:C7:91:3A:15:57:C9:73:7F:DD:73
Certificate issuer: /CN=90508FF980097E19CEF65ED72A856616A6F690AB
Certificate serial: 61E096E1426101AD94B6683DE334167519C05874
Authority key identifier: 90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa
Signing time: Mon 01 Jul 2024 01:06:13 +0000
ROA not before: Mon 01 Jul 2024 01:01:13 +0000
ROA not after: Mon 30 Jun 2025 01:06:13 +0000
asID: 64315
IP address blocks: 103.119.228.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:e0:96:e1:42:61:01:ad:94:b6:68:3d:e3:34:16:75:19:c0:58:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90508FF980097E19CEF65ED72A856616A6F690AB
Validity
Not Before: Jul 1 01:01:13 2024 GMT
Not After : Jun 30 01:06:13 2025 GMT
Subject: CN=F0119B3E2F54FC11F386C7913A1557C9737FDD73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b0:19:f4:f0:24:88:35:99:5a:78:85:3c:61:
57:08:59:49:a6:44:50:86:10:2d:c6:0e:be:5f:7c:
6a:52:c7:55:bb:ae:21:bc:15:78:95:09:60:f5:36:
83:42:6f:bc:6d:57:6d:82:77:1a:25:b8:dd:e0:9e:
50:9d:c1:dc:d2:84:1b:42:c5:0b:f7:fb:81:84:ab:
6d:2d:e5:38:be:63:1a:77:e0:5c:43:e7:6e:cb:c2:
36:e2:89:86:b1:74:d3:8d:1a:2f:0c:67:96:e5:08:
d6:96:dc:66:62:38:3c:3e:9a:2d:f7:34:c1:32:bf:
83:f0:6c:a2:57:9b:e6:a3:c4:73:ac:f9:a7:a9:9f:
1b:33:88:83:5a:36:ec:42:07:21:c0:db:9f:b3:6b:
47:1e:34:86:f0:15:6b:a2:7d:ce:b8:a7:bf:8c:5c:
16:69:2c:d9:90:3e:8d:4c:05:39:45:a0:6e:e1:53:
3f:ee:89:d8:6c:0d:ca:85:03:00:27:5e:4b:37:1d:
b1:ce:12:6a:2f:68:ad:67:ae:fc:86:be:f5:87:2a:
ef:c1:13:6f:df:1d:ae:89:60:85:db:73:7e:b4:64:
ac:88:5b:39:13:e7:79:77:71:94:37:5e:aa:3a:13:
ca:09:8a:cd:93:40:96:67:27:f6:89:81:8f:08:0e:
bb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:11:9B:3E:2F:54:FC:11:F3:86:C7:91:3A:15:57:C9:73:7F:DD:73
X509v3 Authority Key Identifier:
keyid:90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3232382e302f32332d3234203d3e203634333135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.228.0/23
Signature Algorithm: sha256WithRSAEncryption
39:73:31:42:4a:e2:f5:9b:a9:3c:7f:dd:90:40:f4:d6:ec:80:
8e:f1:11:f4:2f:49:b5:4f:dc:39:c7:e4:2a:fd:e6:df:68:47:
1b:d9:88:32:7e:1e:9e:14:28:e1:2b:d2:b5:ad:0d:a4:ed:9b:
2c:47:30:a9:86:5d:23:4d:c8:0d:45:38:b1:cc:5a:ec:52:85:
f2:fc:63:21:ab:a4:7f:a8:70:99:7e:dc:6b:88:a8:af:9d:2b:
89:54:19:3c:5d:10:f0:1e:76:dc:c9:93:27:66:bb:f7:a0:80:
0c:80:6c:ac:b5:fb:09:8e:01:bf:71:95:58:fb:86:ad:35:d0:
6d:00:69:4b:31:51:1f:2a:36:7c:26:8a:1f:c1:b7:2a:74:89:
6f:22:2e:e9:35:64:2c:73:b0:38:5d:33:fa:c1:8c:36:8f:54:
42:26:27:6e:21:d3:ba:1c:0c:57:c3:85:12:35:a6:a7:f2:1a:
7c:cf:ea:f5:b5:7a:6c:8e:4b:20:8e:b2:44:bc:ac:87:45:41:
8d:2f:8b:2b:85:11:48:3d:2f:1b:65:f8:a3:ac:55:16:d6:ed:
fb:f5:eb:f2:f3:80:92:46:7b:19:a6:4e:10:a6:65:34:6d:ff:
dd:02:f1:3b:22:9d:78:0b:ca:4a:21:5b:8b:29:d2:a9:04:60:
4a:fa:cf:e0
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUYeCW4UJhAa2Utmg94zQWdRnAWHQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZB
NkY2OTBBQjAeFw0yNDA3MDEwMTAxMTNaFw0yNTA2MzAwMTA2MTNaMDMxMTAvBgNV
BAMTKEYwMTE5QjNFMkY1NEZDMTFGMzg2Qzc5MTNBMTU1N0M5NzM3RkRENzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYsBn08CSINZlaeIU8YVcIWUmm
RFCGEC3GDr5ffGpSx1W7riG8FXiVCWD1NoNCb7xtV22CdxoluN3gnlCdwdzShBtC
xQv3+4GEq20t5Ti+Yxp34FxD527LwjbiiYaxdNONGi8MZ5blCNaW3GZiODw+mi33
NMEyv4PwbKJXm+ajxHOs+aepnxsziINaNuxCByHA25+za0ceNIbwFWuifc64p7+M
XBZpLNmQPo1MBTlFoG7hUz/uidhsDcqFAwAnXks3HbHOEmovaK1nrvyGvvWHKu/B
E2/fHa6JYIXbc360ZKyIWzkT53l3cZQ3Xqo6E8oJis2TQJZnJ/aJgY8IDruBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU8BGbPi9U/BHzhseROhVXyXN/3XMwHwYDVR0j
BBgwFoAUkFCP+YAJfhnO9l7XKoVmFqb2kKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ODgzZTNiZS01N2UyLTQxMjUtYTBjNS05YTllYTUwMWJmMDUvMC85MDUwOEZGOTgw
MDk3RTE5Q0VGNjVFRDcyQTg1NjYxNkE2RjY5MEFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZBNkY2
OTBBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ODNlM2JlLTU3ZTItNDEyNS1h
MGM1LTlhOWVhNTAxYmYwNS8wLzMxMzAzMzJlMzEzMTM5MmUzMjMyMzgyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzNjM0MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3fkMA0GCSqG
SIb3DQEBCwUAA4IBAQA5czFCSuL1m6k8f92QQPTW7ICO8RH0L0m1T9w5x+Qq/ebf
aEcb2Ygyfh6eFCjhK9K1rQ2k7ZssRzCphl0jTcgNRTixzFrsUoXy/GMhq6R/qHCZ
ftxriKivnSuJVBk8XRDwHnbcyZMnZrv3oIAMgGystfsJjgG/cZVY+4atNdBtAGlL
MVEfKjZ8JoofwbcqdIlvIi7pNWQsc7A4XTP6wYw2j1RCJiduIdO6HAxXw4USNaan
8hp8z+r1tXpsjksgjrJEvKyHRUGNL4srhRFIPS8bZfijrFUW1u379evy84CSRnsZ
pk4QpmU0bf/dAvE7Ip14C8pKIVuLKdKpBGBK+s/g
-----END CERTIFICATE-----
Generated at Wed Apr 9 12:59:14 2025 by rpki-client