Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa
File: 3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa (raw, json)
Hash identifier: ORKr4ha8P6tv9X5zA4ht6mjFvslVRbnM+gzBN7aD/Sw=
Subject key identifier: CC:08:54:29:8A:64:F3:E6:7C:FB:C4:0D:A1:94:27:F2:12:DC:A0:11
Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499
Certificate serial: 2FEF01B3DF43E04632209A356C03BF59654D3421
Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa
Signing time: Thu 03 Oct 2024 14:00:02 +0000
ROA not before: Thu 03 Oct 2024 13:55:02 +0000
ROA not after: Thu 02 Oct 2025 14:00:02 +0000
asID: 151586
IP address blocks: 103.119.236.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:ef:01:b3:df:43:e0:46:32:20:9a:35:6c:03:bf:59:65:4d:34:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499
Validity
Not Before: Oct 3 13:55:02 2024 GMT
Not After : Oct 2 14:00:02 2025 GMT
Subject: CN=CC0854298A64F3E67CFBC40DA19427F212DCA011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:1a:4b:b2:5c:03:18:af:33:4b:e8:6e:4f:
75:7b:45:6f:4e:92:f6:91:2a:e0:4d:50:d6:36:bd:
98:25:0a:ab:e2:49:2e:fc:57:01:0a:37:00:cf:d3:
f4:8b:f9:0e:65:0a:97:15:55:cb:c0:6e:33:7c:6f:
e4:39:c2:3b:11:25:a2:37:f1:ce:31:eb:8f:db:45:
14:0f:52:54:42:ab:34:c5:a0:f7:3f:22:1b:b7:27:
af:1c:55:80:21:6b:78:7a:2a:cc:80:01:cc:f7:32:
5c:01:aa:c3:3f:1c:23:82:36:1e:5f:47:d7:f1:9c:
26:99:d6:35:7a:46:0e:35:f1:8e:16:92:33:e4:8d:
a8:2f:ba:cb:e5:45:ec:af:a0:92:06:44:8b:bd:1e:
44:c7:84:a4:95:9f:36:cd:3c:b6:d5:a3:96:d9:b2:
b0:f7:e7:7d:20:49:00:44:9f:06:05:ea:ea:ce:68:
12:59:41:ed:85:bb:04:9a:c4:53:cc:2a:21:ed:4c:
72:c3:51:c3:99:37:6f:70:e0:b9:75:99:5b:af:ff:
56:1a:5b:07:b4:44:f2:eb:e0:e1:8d:c5:91:27:9b:
05:d9:a6:86:82:34:e4:7c:cf:7f:68:b4:12:fe:27:
ab:5b:9f:a0:86:dd:a7:e6:f1:4e:da:02:83:ae:b1:
d1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:08:54:29:8A:64:F3:E6:7C:FB:C4:0D:A1:94:27:F2:12:DC:A0:11
X509v3 Authority Key Identifier:
keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.236.0/23
Signature Algorithm: sha256WithRSAEncryption
45:45:7d:10:23:2e:38:46:82:06:51:85:29:3c:42:d0:dd:0e:
95:65:68:b9:d4:11:7a:18:1d:3c:63:e1:86:88:44:ea:38:d0:
c0:26:fb:20:3b:fd:49:61:c1:d3:cd:bc:c1:49:b1:fc:8c:7a:
d8:2f:48:15:0d:38:15:a5:be:13:e7:15:b7:03:44:2d:c3:4b:
6d:d8:5b:f6:5b:a9:ad:ba:6e:f1:f4:7b:46:61:d1:b9:11:de:
5c:4c:fb:21:a0:18:5e:19:b4:71:ea:a9:26:ec:28:34:78:0e:
cb:a9:ef:21:6c:47:7d:99:d4:e3:a9:aa:20:c5:44:74:c2:c0:
db:46:1b:a0:cd:ef:0b:4c:59:21:16:04:50:e2:fb:dc:fd:69:
a8:95:e2:0e:c7:86:49:25:10:d7:40:79:da:7c:c2:04:5e:07:
ae:ac:9d:0a:19:c2:bb:98:3d:9b:e3:f4:0d:82:a5:65:fe:22:
c7:f3:ee:e1:fb:49:88:55:7b:53:ed:7b:fa:12:40:5d:de:d8:
9d:38:94:3d:ce:4b:d6:2a:68:5a:15:e2:8a:23:e3:6d:63:9a:
35:7b:ae:d8:ad:84:e7:aa:2b:91:5a:a3:a1:75:21:de:57:4a:
5b:09:fb:c9:5f:c6:0e:eb:43:44:44:88:10:ca:12:b9:f6:37:
5c:71:08:5a
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUL+8Bs99D4EYyIJo1bAO/WWVNNCEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2
MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV
BAMTKENDMDg1NDI5OEE2NEYzRTY3Q0ZCQzQwREExOTQyN0YyMTJEQ0EwMTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cBpLslwDGK8zS+huT3V7RW9O
kvaRKuBNUNY2vZglCqviSS78VwEKNwDP0/SL+Q5lCpcVVcvAbjN8b+Q5wjsRJaI3
8c4x64/bRRQPUlRCqzTFoPc/Ihu3J68cVYAha3h6KsyAAcz3MlwBqsM/HCOCNh5f
R9fxnCaZ1jV6Rg418Y4WkjPkjagvusvlReyvoJIGRIu9HkTHhKSVnzbNPLbVo5bZ
srD3530gSQBEnwYF6urOaBJZQe2FuwSaxFPMKiHtTHLDUcOZN29w4Ll1mVuv/1Ya
Wwe0RPLr4OGNxZEnmwXZpoaCNOR8z39otBL+J6tbn6CG3afm8U7aAoOusdH1AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUzAhUKYpk8+Z8+8QNoZQn8hLcoBEwHwYDVR0j
BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE
NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3
MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05
OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzYyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnd+wwDQYJ
KoZIhvcNAQELBQADggEBAEVFfRAjLjhGggZRhSk8QtDdDpVlaLnUEXoYHTxj4YaI
ROo40MAm+yA7/UlhwdPNvMFJsfyMetgvSBUNOBWlvhPnFbcDRC3DS23YW/Zbqa26
bvH0e0Zh0bkR3lxM+yGgGF4ZtHHqqSbsKDR4Dsup7yFsR32Z1OOpqiDFRHTCwNtG
G6DN7wtMWSEWBFDi+9z9aaiV4g7HhkklENdAedp8wgReB66snQoZwruYPZvj9A2C
pWX+Isfz7uH7SYhVe1Pte/oSQF3e2J04lD3OS9YqaFoV4ooj421jmjV7rtithOeq
K5Fao6F1Id5XSlsJ+8lfxg7rQ0REiBDKErn2N1xxCFo=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:22:27 2025 by rpki-client