Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa
File: 3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa (raw, json)
Hash identifier: 18Hkz/XR+bc2+4hLanlNPrrmjy5COqEUY7Uy7tOHT7Q=
Subject key identifier: 90:BD:C1:0E:A4:97:82:9C:DD:3B:36:73:19:5C:4E:EF:A5:6E:7A:FC
Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499
Certificate serial: 16D09D7465445588C9ED93692A6E267531A5EE34
Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa
Signing time: Thu 03 Oct 2024 14:00:02 +0000
ROA not before: Thu 03 Oct 2024 13:55:02 +0000
ROA not after: Thu 02 Oct 2025 14:00:02 +0000
asID: 151586
IP address blocks: 103.119.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:d0:9d:74:65:44:55:88:c9:ed:93:69:2a:6e:26:75:31:a5:ee:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499
Validity
Not Before: Oct 3 13:55:02 2024 GMT
Not After : Oct 2 14:00:02 2025 GMT
Subject: CN=90BDC10EA497829CDD3B3673195C4EEFA56E7AFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b3:dd:3b:81:90:13:a4:5c:03:97:86:74:e0:
51:e2:56:4f:0d:b9:6f:df:9a:07:13:ac:35:c4:3f:
60:31:7a:53:03:0d:95:13:00:55:b6:0c:60:74:0a:
cb:41:c2:c7:23:f9:2d:fe:30:51:ba:67:82:02:dc:
ea:f0:5b:6f:4a:85:53:ea:e9:8f:00:96:26:e8:5f:
85:6e:de:b2:44:5d:98:d1:39:5a:16:62:62:00:64:
87:ab:bb:c6:62:53:cd:5c:b0:2d:e0:f8:55:15:9f:
ec:2d:91:c0:f7:f2:80:e3:62:62:79:8f:f8:a5:a3:
61:4a:b7:03:ae:28:8b:85:1a:56:93:70:ac:fd:5c:
96:74:57:27:a5:b2:61:04:21:a1:1c:58:eb:a2:e3:
03:31:2c:11:5e:fa:2d:94:85:9e:55:36:02:9b:bb:
7e:ea:70:60:1c:2e:ed:a7:02:c4:f2:15:01:04:ae:
81:4b:9d:f0:86:65:36:1f:2f:ac:1e:cc:d7:f8:cd:
68:22:dc:10:1a:4a:9b:1e:70:60:93:ee:1d:72:d5:
3b:13:fd:9f:1b:b7:54:aa:8f:c1:01:1b:1a:2b:52:
d9:8c:2c:17:66:98:39:2c:ed:2f:d2:3c:20:da:93:
03:f0:2f:61:6b:1c:17:23:8e:a6:8d:55:60:3a:f7:
37:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BD:C1:0E:A4:97:82:9C:DD:3B:36:73:19:5C:4E:EF:A5:6E:7A:FC
X509v3 Authority Key Identifier:
keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.237.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:15:73:15:92:4d:61:3f:40:88:cd:ff:b0:82:f0:45:b3:8e:
91:c1:ab:ee:7c:f9:5c:fb:57:fa:b9:71:30:a5:11:0e:bd:06:
d4:30:17:c2:5d:fa:e7:0f:00:44:98:1d:39:54:50:58:2f:af:
d3:20:48:1b:69:c9:3a:cb:7e:ca:58:dd:6f:81:74:30:54:ea:
23:de:7e:68:9b:4e:17:5d:c7:ca:71:59:f9:90:2c:88:66:d0:
1f:7c:b2:5a:3a:be:0b:13:6f:f8:3f:e2:30:4f:d3:83:79:df:
20:ad:07:62:02:e0:8c:78:ce:2d:15:c0:9d:08:47:00:20:6e:
43:40:34:7f:c1:be:3d:ae:d3:8f:ab:d0:fc:8d:b4:68:6e:78:
bd:81:20:a6:79:c7:7e:35:dc:3a:bf:c9:d8:2f:7b:00:cd:1e:
b5:90:a6:e4:ef:c0:41:d1:7a:b7:90:95:f6:81:53:3d:e6:16:
96:e7:db:2f:87:3a:5c:3b:5f:de:b5:e9:ec:b4:4d:3a:76:15:
33:7c:a6:41:5f:7b:04:71:31:14:30:a6:21:ef:3c:2d:33:42:
7b:09:77:73:ef:6e:27:3f:bc:e6:4f:24:8c:4a:f9:6c:78:d5:
2e:57:81:fd:ff:2e:5c:cf:f8:95:85:63:6e:a6:70:ee:f8:ea:
09:02:ba:43
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUFtCddGVEVYjJ7ZNpKm4mdTGl7jQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2
MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV
BAMTKDkwQkRDMTBFQTQ5NzgyOUNERDNCMzY3MzE5NUM0RUVGQTU2RTdBRkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKs907gZATpFwDl4Z04FHiVk8N
uW/fmgcTrDXEP2AxelMDDZUTAFW2DGB0CstBwscj+S3+MFG6Z4IC3OrwW29KhVPq
6Y8AliboX4Vu3rJEXZjROVoWYmIAZIeru8ZiU81csC3g+FUVn+wtkcD38oDjYmJ5
j/ilo2FKtwOuKIuFGlaTcKz9XJZ0VyelsmEEIaEcWOui4wMxLBFe+i2UhZ5VNgKb
u37qcGAcLu2nAsTyFQEEroFLnfCGZTYfL6wezNf4zWgi3BAaSpsecGCT7h1y1TsT
/Z8bt1Sqj8EBGxorUtmMLBdmmDks7S/SPCDakwPwL2FrHBcjjqaNVWA69zdTAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUkL3BDqSXgpzdOzZzGVxO76VuevwwHwYDVR0j
BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE
NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3
MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05
OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzcyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+0wDQYJ
KoZIhvcNAQELBQADggEBAC0VcxWSTWE/QIjN/7CC8EWzjpHBq+58+Vz7V/q5cTCl
EQ69BtQwF8Jd+ucPAESYHTlUUFgvr9MgSBtpyTrLfspY3W+BdDBU6iPefmibThdd
x8pxWfmQLIhm0B98slo6vgsTb/g/4jBP04N53yCtB2IC4Ix4zi0VwJ0IRwAgbkNA
NH/Bvj2u04+r0PyNtGhueL2BIKZ5x3413Dq/ydgvewDNHrWQpuTvwEHRereQlfaB
Uz3mFpbn2y+HOlw7X9616ey0TTp2FTN8pkFfewRxMRQwpiHvPC0zQnsJd3Pvbic/
vOZPJIxK+Wx41S5Xgf3/LlzP+JWFY26mcO746gkCukM=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:42:49 2025 by rpki-client