Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa
File: 3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa (raw, json)
Hash identifier: g9/uiWbYKNvcIlWTchSsVUWyrLe2G9TdCOvQTSHicdU=
Subject key identifier: CE:0B:1A:58:96:84:87:C5:35:1D:97:A4:7D:98:15:AE:19:52:CD:5C
Certificate issuer: /CN=9FC1BED6B099F4E57BAD9FA6F092421927472311
Certificate serial: 5869B1858733219D8F9F7A831BC40535864B1B36
Authority key identifier: 9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa
Signing time: Wed 14 Feb 2024 10:00:00 +0000
ROA not before: Wed 14 Feb 2024 09:55:00 +0000
ROA not after: Wed 12 Feb 2025 10:00:00 +0000
asID: 138141
IP address blocks: 103.134.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:69:b1:85:87:33:21:9d:8f:9f:7a:83:1b:c4:05:35:86:4b:1b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FC1BED6B099F4E57BAD9FA6F092421927472311
Validity
Not Before: Feb 14 09:55:00 2024 GMT
Not After : Feb 12 10:00:00 2025 GMT
Subject: CN=CE0B1A58968487C5351D97A47D9815AE1952CD5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d9:2f:1a:c0:3d:17:bd:4b:f9:74:c2:df:43:
25:be:69:4a:17:ac:06:c7:de:6d:ba:ce:e0:15:6d:
d1:64:62:4d:0c:e1:e9:12:59:87:7d:d5:ce:71:07:
76:3d:fe:28:a5:29:77:8b:f5:86:f9:09:cd:9e:b6:
52:ff:fa:ae:9d:34:1a:75:86:8d:2a:3a:ad:05:18:
e5:e1:da:20:71:26:98:f1:a7:88:7f:09:b4:87:26:
6f:90:1d:30:b7:a0:8a:23:fd:04:f8:19:c6:cb:99:
a7:67:09:91:e2:ec:59:05:5a:e4:c4:9c:3a:ff:c4:
8e:ba:4e:77:39:73:bf:c1:f5:0d:d3:23:a9:e2:28:
d2:bc:15:76:a9:b9:4f:3f:53:3e:ca:0f:b1:33:ca:
c8:da:84:88:82:11:4d:3f:73:93:29:0c:e6:f1:a0:
0e:8e:5d:41:c9:73:c3:ab:da:cc:8d:08:24:a4:16:
f5:ec:e2:1b:2b:a7:cf:87:1b:de:0a:a1:e6:95:40:
24:d1:14:7f:2f:cc:55:03:a7:fe:a1:41:09:f6:7b:
e1:b6:45:01:79:0c:3b:c3:c2:b8:db:2c:b2:cd:a5:
48:2c:ec:65:d2:04:c8:2d:45:e8:20:8a:3c:b3:98:
96:91:89:dc:ed:2b:dd:31:90:38:0e:7c:98:60:9b:
ab:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0B:1A:58:96:84:87:C5:35:1D:97:A4:7D:98:15:AE:19:52:CD:5C
X509v3 Authority Key Identifier:
keyid:9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313338313431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:80:ce:a5:57:6b:2d:95:40:a0:a6:7d:b7:6a:a6:06:dd:98:
28:8a:35:2b:de:91:bc:1b:9b:c2:d0:4f:4b:67:8a:20:a9:e4:
ad:32:a8:66:98:76:94:cb:6f:1a:2c:d2:8e:9f:fc:c2:26:92:
0d:09:00:d0:5c:18:51:17:54:bc:8d:07:8a:4d:3d:3d:8b:b9:
2b:0a:7e:1d:78:65:51:e2:d0:35:00:60:f1:82:ec:bb:cc:e0:
b8:49:b7:65:da:45:82:85:40:e3:cd:80:ce:77:11:13:a7:3e:
fa:81:1b:a2:72:e1:bd:30:4b:f9:53:7c:00:38:40:19:8b:24:
ed:25:0a:be:02:f5:90:a9:41:83:bb:0b:04:82:de:6b:9c:5d:
a5:08:dd:2e:37:b0:23:1f:81:96:42:de:22:82:f6:7d:18:3d:
90:d2:e3:a0:fc:3f:83:04:05:ce:0b:b4:db:59:8c:25:34:c2:
e7:3a:82:51:35:c7:90:2c:9a:c1:bd:c5:29:12:03:08:4a:91:
2a:d4:95:7c:b8:b6:8f:51:93:42:32:57:ab:2a:e2:b5:0a:32:
74:8d:34:c2:79:63:09:b3:23:cf:8d:61:d6:36:a8:51:07:7f:
68:be:3b:15:67:74:02:a5:bd:53:2d:c4:64:e6:32:b9:18:c4:
2e:ff:37:bf
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUWGmxhYczIZ2Pn3qDG8QFNYZLGzYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTky
NzQ3MjMxMTAeFw0yNDAyMTQwOTU1MDBaFw0yNTAyMTIxMDAwMDBaMDMxMTAvBgNV
BAMTKENFMEIxQTU4OTY4NDg3QzUzNTFEOTdBNDdEOTgxNUFFMTk1MkNENUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2S8awD0XvUv5dMLfQyW+aUoX
rAbH3m26zuAVbdFkYk0M4ekSWYd91c5xB3Y9/iilKXeL9Yb5Cc2etlL/+q6dNBp1
ho0qOq0FGOXh2iBxJpjxp4h/CbSHJm+QHTC3oIoj/QT4GcbLmadnCZHi7FkFWuTE
nDr/xI66Tnc5c7/B9Q3TI6niKNK8FXapuU8/Uz7KD7EzysjahIiCEU0/c5MpDObx
oA6OXUHJc8Or2syNCCSkFvXs4hsrp8+HG94KoeaVQCTRFH8vzFUDp/6hQQn2e+G2
RQF5DDvDwrjbLLLNpUgs7GXSBMgtReggijyzmJaRidztK90xkDgOfJhgm6tDAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUzgsaWJaEh8U1HZekfZgVrhlSzVwwHwYDVR0j
BBgwFoAUn8G+1rCZ9OV7rZ+m8JJCGSdHIxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
ZjAwMjI4Zi02ZTI1LTRjOTYtOWNlNS0yZDUwMjI5YTFkMTgvMC85RkMxQkVENkIw
OTlGNEU1N0JBRDlGQTZGMDkyNDIxOTI3NDcyMzExLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTkyNzQ3
MjMxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDAyMjhmLTZlMjUtNGM5Ni05
Y2U1LTJkNTAyMjlhMWQxOC8wLzMxMzAzMzJlMzEzMzM0MmUzMTM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YSMA0GCSqG
SIb3DQEBCwUAA4IBAQANgM6lV2stlUCgpn23aqYG3ZgoijUr3pG8G5vC0E9LZ4og
qeStMqhmmHaUy28aLNKOn/zCJpINCQDQXBhRF1S8jQeKTT09i7krCn4deGVR4tA1
AGDxguy7zOC4Sbdl2kWChUDjzYDOdxETpz76gRuicuG9MEv5U3wAOEAZiyTtJQq+
AvWQqUGDuwsEgt5rnF2lCN0uN7AjH4GWQt4igvZ9GD2Q0uOg/D+DBAXOC7TbWYwl
NMLnOoJRNceQLJrBvcUpEgMISpEq1JV8uLaPUZNCMlerKuK1CjJ0jTTCeWMJsyPP
jWHWNqhRB39ovjsVZ3QCpb1TLcRk5jK5GMQu/ze/
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:43 2025 by rpki-client