Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa
File: 3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa (raw, json)
Hash identifier: rxBcvYlSzsa7LvAtTgr9iAlrA1pyphm/JuM/Rkc6s+c=
Subject key identifier: 40:F5:E9:11:28:CC:CB:95:66:31:01:12:66:70:B3:C9:4F:90:49:78
Certificate issuer: /CN=DE76C61173801CDB718BA58B1A4A40B5C94E9C70
Certificate serial: 4C809E4E80BEAC5E9AB8BF3DF78147DD145277B9
Authority key identifier: DE:76:C6:11:73:80:1C:DB:71:8B:A5:8B:1A:4A:40:B5:C9:4E:9C:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa
Signing time: Tue 04 Feb 2025 15:00:00 +0000
ROA not before: Tue 04 Feb 2025 14:55:00 +0000
ROA not after: Tue 03 Feb 2026 15:00:00 +0000
asID: 136054
IP address blocks: 103.80.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:80:9e:4e:80:be:ac:5e:9a:b8:bf:3d:f7:81:47:dd:14:52:77:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DE76C61173801CDB718BA58B1A4A40B5C94E9C70
Validity
Not Before: Feb 4 14:55:00 2025 GMT
Not After : Feb 3 15:00:00 2026 GMT
Subject: CN=40F5E91128CCCB95663101126670B3C94F904978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8e:bf:c6:4c:ff:c0:65:3c:ef:fb:ea:3b:55:
16:c7:be:b0:67:a8:71:6d:b2:84:06:ef:9d:0f:12:
56:1f:ee:3c:c6:5d:66:4a:7e:d5:8e:91:74:42:21:
4d:38:8b:a1:b3:e9:13:02:ff:79:6c:08:c0:47:0a:
8d:aa:3d:31:39:e8:61:cf:c5:c7:c0:5c:c1:26:97:
32:6e:4d:af:75:d7:06:73:b1:39:0c:50:68:66:86:
ce:ec:0a:99:cd:d6:f7:b0:2a:99:f0:5c:3c:54:21:
6f:e0:d1:a9:8f:7e:fb:a9:7b:1c:d6:12:4e:38:a2:
7b:9f:24:dd:cf:8a:7e:75:8e:ea:9b:2b:f1:d0:f0:
f8:e8:c2:98:c2:9e:c2:fb:35:c6:c0:49:1d:cc:db:
12:f2:77:3b:c1:a4:80:7d:5b:7d:71:67:73:29:74:
6b:45:19:ea:4b:b4:56:f2:69:66:69:3e:0e:62:a1:
65:83:14:13:f6:35:7c:32:07:a3:37:61:16:53:30:
fd:25:a3:0d:c4:f4:38:8b:7d:44:98:3c:ca:76:fa:
66:44:db:e5:3c:f3:e3:a7:b3:a7:73:17:a0:ea:f8:
13:f9:a4:3e:53:cf:80:3a:8f:fc:70:38:32:41:28:
d9:4a:d6:fb:0a:e8:c5:81:92:ab:bc:46:78:dc:66:
8a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F5:E9:11:28:CC:CB:95:66:31:01:12:66:70:B3:C9:4F:90:49:78
X509v3 Authority Key Identifier:
keyid:DE:76:C6:11:73:80:1C:DB:71:8B:A5:8B:1A:4A:40:B5:C9:4E:9C:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.80.240.0/22
Signature Algorithm: sha256WithRSAEncryption
92:b1:a1:e9:9f:4b:c5:96:0e:e9:92:38:1d:82:7a:1e:23:77:
6a:be:eb:3c:d1:95:61:3b:3e:a9:76:db:8f:44:df:54:3f:06:
a8:88:75:72:39:e7:3a:71:28:bc:41:87:75:bd:d9:7d:e3:3a:
a1:99:a4:db:db:7a:58:a4:81:ef:ec:73:bd:0a:e8:7c:bd:9d:
0c:01:ad:4e:47:17:ae:b3:fa:4a:56:f3:fa:0f:fc:76:b7:a8:
e7:2a:79:c4:8d:d7:4d:45:b6:e6:88:8e:04:20:36:b8:25:00:
94:db:5b:3c:f5:8b:c8:93:7a:87:e0:3e:1b:ec:1e:85:29:9a:
1f:fb:a9:ba:e0:45:fd:0b:f9:4b:29:40:10:3f:80:1e:04:98:
50:6c:33:1b:19:4f:3c:06:91:0c:d0:a6:76:09:4e:09:7f:8a:
79:cc:15:99:14:bd:bb:7a:1d:15:0d:0d:21:66:08:d9:92:47:
d0:c2:df:5a:c1:35:f3:a0:54:2f:4c:18:ca:71:65:27:f1:6b:
75:66:de:5d:99:cc:49:be:87:b8:64:3a:d5:5e:db:26:35:4e:
9e:19:40:5b:09:c4:10:d4:7f:d2:c9:2b:4d:7a:90:f4:6b:62:
35:5a:43:45:65:de:1e:cd:c7:c5:04:a5:10:9e:8d:89:49:7e:
8d:36:05:2a
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUTICeToC+rF6auL8994FH3RRSd7kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREU3NkM2MTE3MzgwMUNEQjcxOEJBNThCMUE0QTQwQjVD
OTRFOUM3MDAeFw0yNTAyMDQxNDU1MDBaFw0yNjAyMDMxNTAwMDBaMDMxMTAvBgNV
BAMTKDQwRjVFOTExMjhDQ0NCOTU2NjMxMDExMjY2NzBCM0M5NEY5MDQ5NzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrjr/GTP/AZTzv++o7VRbHvrBn
qHFtsoQG750PElYf7jzGXWZKftWOkXRCIU04i6Gz6RMC/3lsCMBHCo2qPTE56GHP
xcfAXMEmlzJuTa911wZzsTkMUGhmhs7sCpnN1vewKpnwXDxUIW/g0amPfvupexzW
Ek44onufJN3Pin51juqbK/HQ8PjowpjCnsL7NcbASR3M2xLydzvBpIB9W31xZ3Mp
dGtFGepLtFbyaWZpPg5ioWWDFBP2NXwyB6M3YRZTMP0low3E9DiLfUSYPMp2+mZE
2+U88+Ons6dzF6Dq+BP5pD5Tz4A6j/xwODJBKNlK1vsK6MWBkqu8RnjcZoqlAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUQPXpESjMy5VmMQESZnCzyU+QSXgwHwYDVR0j
BBgwFoAU3nbGEXOAHNtxi6WLGkpAtclOnHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
ZjA5Y2JiOS0xYWFkLTRiMWEtYmQ0ZS0wNmZkODQ0NzJmZDcvMC9ERTc2QzYxMTcz
ODAxQ0RCNzE4QkE1OEIxQTRBNDBCNUM5NEU5QzcwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREU3NkM2MTE3MzgwMUNEQjcxOEJBNThCMUE0QTQwQjVDOTRF
OUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDljYmI5LTFhYWQtNGIxYS1i
ZDRlLTA2ZmQ4NDQ3MmZkNy8wLzMxMzAzMzJlMzgzMDJlMzIzNDMwMmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1DwMA0GCSqG
SIb3DQEBCwUAA4IBAQCSsaHpn0vFlg7pkjgdgnoeI3dqvus80ZVhOz6pdtuPRN9U
PwaoiHVyOec6cSi8QYd1vdl94zqhmaTb23pYpIHv7HO9Cuh8vZ0MAa1ORxeus/pK
VvP6D/x2t6jnKnnEjddNRbbmiI4EIDa4JQCU21s89YvIk3qH4D4b7B6FKZof+6m6
4EX9C/lLKUAQP4AeBJhQbDMbGU88BpEM0KZ2CU4Jf4p5zBWZFL27eh0VDQ0hZgjZ
kkfQwt9awTXzoFQvTBjKcWUn8Wt1Zt5dmcxJvoe4ZDrVXtsmNU6eGUBbCcQQ1H/S
yStNepD0a2I1WkNFZd4ezcfFBKUQno2JSX6NNgUq
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:08:05 2025 by rpki-client