Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa
File: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (raw, json)
Hash identifier: q69O6q72IpI9qzFsBeR2mJvG7/bCCqp4Cr4mZpwTGXM=
Subject key identifier: 0A:58:1E:C0:BE:EB:DD:0E:16:FE:29:DD:8D:26:FF:F6:1A:1D:03:5D
Certificate issuer: /CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Certificate serial: 5C053D8DB7AD59E725621868962192EF4E1CCDC3
Authority key identifier: 53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa
Signing time: Tue 21 May 2024 04:28:05 +0000
ROA not before: Tue 21 May 2024 04:23:05 +0000
ROA not after: Tue 20 May 2025 04:28:05 +0000
asID: 151575
IP address blocks: 103.99.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:05:3d:8d:b7:ad:59:e7:25:62:18:68:96:21:92:ef:4e:1c:cd:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Validity
Not Before: May 21 04:23:05 2024 GMT
Not After : May 20 04:28:05 2025 GMT
Subject: CN=0A581EC0BEEBDD0E16FE29DD8D26FFF61A1D035D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:41:5f:77:32:b9:26:6c:83:dd:12:27:47:75:
e2:cc:6e:dd:d9:11:a2:e6:19:3d:ef:33:cd:69:5c:
c1:f6:d2:6d:63:db:32:46:2b:88:10:6d:ea:4d:91:
0f:1f:7d:ec:58:da:2f:8b:0e:4a:8e:fe:80:d6:26:
2a:35:4b:8b:42:2b:37:55:48:3c:78:b4:5e:cd:1f:
8a:b5:dd:c1:e1:17:9b:90:a4:a1:95:09:e0:f5:69:
eb:b2:91:52:e1:9a:77:01:53:4c:17:0f:05:17:c7:
53:b3:8a:35:f7:a0:bd:f7:08:1a:e1:12:31:a7:db:
bd:52:69:92:42:13:1e:49:5c:d5:9c:eb:d3:1f:87:
f4:06:a7:cf:5a:75:81:37:7a:cf:1f:ed:ae:c3:b9:
50:7b:a6:95:a3:0a:29:4d:2c:aa:a6:a8:69:8d:a3:
32:24:12:be:bf:16:66:4e:ee:7c:c0:9a:a5:a6:03:
42:40:82:09:a9:19:97:b1:96:93:6f:46:a6:fb:98:
30:cc:28:f0:f1:0a:6a:e0:8e:ec:64:9d:26:54:78:
49:f5:13:b4:f1:ac:cc:26:2e:df:b3:15:97:1d:81:
29:b4:39:b0:21:dc:54:e0:18:0e:5f:d3:e0:ad:3f:
d0:c5:60:0a:65:6e:72:31:54:78:eb:99:70:57:a2:
9f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:58:1E:C0:BE:EB:DD:0E:16:FE:29:DD:8D:26:FF:F6:1A:1D:03:5D
X509v3 Authority Key Identifier:
keyid:53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/53576544C2D7C29DEC5245A4A81C19686D1160AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.99.137.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ab:d4:bf:81:73:8c:98:45:44:32:c0:a7:a4:37:bf:cf:97:
90:9a:24:2b:50:67:fc:2d:5c:4e:81:60:ff:f1:91:71:d5:f4:
17:bb:d8:3a:11:96:bc:21:a3:95:43:52:1a:06:82:d3:f6:94:
43:46:e8:ca:fc:b9:1b:64:5c:77:45:90:97:18:b4:09:09:30:
5f:46:85:ba:a8:68:db:2c:40:28:75:c0:18:c5:ad:72:dc:24:
4a:66:4d:97:90:22:79:c1:d1:64:e1:cd:f1:01:6d:cf:3e:ec:
dd:7a:07:84:82:af:43:89:c2:e3:2b:5b:00:44:02:79:60:54:
01:dd:4d:3d:fd:df:15:8a:ae:de:a7:ca:9a:b3:55:72:95:c6:
0f:c7:9b:52:3a:19:50:cd:df:f4:55:87:ab:d9:8c:c2:ce:3f:
99:78:3a:52:95:6f:b9:bf:49:da:2c:a6:8f:e0:bb:9c:6f:57:
4f:f1:58:6f:c2:b8:d1:6a:87:7d:15:07:f5:fb:0e:96:9b:89:
ff:56:ad:d4:39:f6:9b:c3:91:b3:f8:54:17:55:a9:fe:52:25:
fd:cb:71:f2:68:63:0c:37:7a:61:90:b0:ff:99:ff:72:9b:be:
c0:59:5e:1a:5e:ca:8a:c9:90:60:6f:db:e8:cc:52:0b:b8:84:
a2:25:4a:94
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUXAU9jbetWeclYhholiGS704czcMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTM1NzY1NDRDMkQ3QzI5REVDNTI0NUE0QTgxQzE5Njg2
RDExNjBBQTAeFw0yNDA1MjEwNDIzMDVaFw0yNTA1MjAwNDI4MDVaMDMxMTAvBgNV
BAMTKDBBNTgxRUMwQkVFQkREMEUxNkZFMjlERDhEMjZGRkY2MUExRDAzNUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzQV93MrkmbIPdEidHdeLMbt3Z
EaLmGT3vM81pXMH20m1j2zJGK4gQbepNkQ8ffexY2i+LDkqO/oDWJio1S4tCKzdV
SDx4tF7NH4q13cHhF5uQpKGVCeD1aeuykVLhmncBU0wXDwUXx1OzijX3oL33CBrh
EjGn271SaZJCEx5JXNWc69Mfh/QGp89adYE3es8f7a7DuVB7ppWjCilNLKqmqGmN
ozIkEr6/FmZO7nzAmqWmA0JAggmpGZexlpNvRqb7mDDMKPDxCmrgjuxknSZUeEn1
E7TxrMwmLt+zFZcdgSm0ObAh3FTgGA5f0+CtP9DFYAplbnIxVHjrmXBXop+1AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUClgewL7r3Q4W/indjSb/9hodA10wHwYDVR0j
BBgwFoAUU1dlRMLXwp3sUkWkqBwZaG0RYKowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
MTdlYTBlNi00M2VhLTQzMWUtYTAxMy0wYjIwMWIyYzBkOWUvMC81MzU3NjU0NEMy
RDdDMjlERUM1MjQ1QTRBODFDMTk2ODZEMTE2MEFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTM1NzY1NDRDMkQ3QzI5REVDNTI0NUE0QTgxQzE5Njg2RDEx
NjBBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExN2VhMGU2LTQzZWEtNDMxZS1h
MDEzLTBiMjAxYjJjMGQ5ZS8wLzMxMzAzMzJlMzkzOTJlMzEzMzM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2OJMA0GCSqG
SIb3DQEBCwUAA4IBAQAJq9S/gXOMmEVEMsCnpDe/z5eQmiQrUGf8LVxOgWD/8ZFx
1fQXu9g6EZa8IaOVQ1IaBoLT9pRDRujK/LkbZFx3RZCXGLQJCTBfRoW6qGjbLEAo
dcAYxa1y3CRKZk2XkCJ5wdFk4c3xAW3PPuzdegeEgq9DicLjK1sARAJ5YFQB3U09
/d8Viq7ep8qas1VylcYPx5tSOhlQzd/0VYer2YzCzj+ZeDpSlW+5v0naLKaP4Luc
b1dP8VhvwrjRaod9FQf1+w6Wm4n/Vq3UOfabw5Gz+FQXVan+UiX9y3HyaGMMN3ph
kLD/mf9ym77AWV4aXsqKyZBgb9vozFILuISiJUqU
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:07:34 2025 by rpki-client