Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa
File: 3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa (raw, json)
Hash identifier: 2NTDN0N3a2fcLi0JauUpmbSOFigLmvDTHZI9ZqrrAbY=
Subject key identifier: C1:CD:B0:9B:B7:2A:74:20:1D:0A:B1:A0:12:CF:49:4E:E1:58:7E:C3
Certificate issuer: /CN=F9C4820743DB001E8F69D44C19320E1BF09F8F88
Certificate serial: 27EDB9CE38E039AABD71EA11D2726D64B65F6009
Authority key identifier: F9:C4:82:07:43:DB:00:1E:8F:69:D4:4C:19:32:0E:1B:F0:9F:8F:88
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9C4820743DB001E8F69D44C19320E1BF09F8F88.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa
Signing time: Tue 03 Sep 2024 01:28:04 +0000
ROA not before: Tue 03 Sep 2024 01:23:04 +0000
ROA not after: Tue 02 Sep 2025 01:28:04 +0000
asID: 133831
IP address blocks: 103.154.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:ed:b9:ce:38:e0:39:aa:bd:71:ea:11:d2:72:6d:64:b6:5f:60:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9C4820743DB001E8F69D44C19320E1BF09F8F88
Validity
Not Before: Sep 3 01:23:04 2024 GMT
Not After : Sep 2 01:28:04 2025 GMT
Subject: CN=C1CDB09BB72A74201D0AB1A012CF494EE1587EC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5c:d0:bf:2d:88:8c:fe:89:5e:20:dd:25:7f:
52:d4:66:17:45:91:78:52:7d:5b:7b:c8:a6:e4:98:
59:f5:32:c1:4d:e3:98:76:d4:03:29:8e:0c:4a:73:
37:65:13:69:1a:6a:8d:f3:cc:9d:c9:e6:1c:d6:5e:
cd:bf:33:07:f4:80:4a:90:b3:33:80:55:49:6f:d9:
9c:a0:ab:5b:4f:ac:a1:35:16:9a:58:50:a6:d2:ae:
ba:a4:15:9b:da:69:90:fb:b6:b9:ff:97:e2:2e:c2:
8a:67:c9:16:5a:68:33:b8:da:d9:a3:39:2f:ee:3e:
91:ad:07:9b:07:c0:47:64:a6:21:57:ec:f0:44:98:
04:bc:b0:49:bf:bd:f9:4e:70:6b:32:c2:37:c9:d7:
23:25:b2:b8:21:1d:f1:98:2d:62:ab:fc:c0:ab:c4:
b2:96:95:08:fd:2d:c5:e8:a8:28:e7:5b:27:63:5c:
b7:20:a8:9d:3d:a5:c3:9b:5b:9b:7e:65:ac:fa:26:
7c:7f:fc:42:10:6b:e7:9f:b9:f5:9f:b4:18:95:cc:
63:44:36:7a:6d:a3:ad:71:a0:66:8e:fe:86:14:c1:
f0:28:c6:8b:c2:7f:f6:43:b5:3d:36:11:b7:7e:5a:
67:05:7a:9b:6e:15:8b:e7:14:da:b4:7e:9d:e5:d1:
eb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:CD:B0:9B:B7:2A:74:20:1D:0A:B1:A0:12:CF:49:4E:E1:58:7E:C3
X509v3 Authority Key Identifier:
keyid:F9:C4:82:07:43:DB:00:1E:8F:69:D4:4C:19:32:0E:1B:F0:9F:8F:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/F9C4820743DB001E8F69D44C19320E1BF09F8F88.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9C4820743DB001E8F69D44C19320E1BF09F8F88.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.154.170.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:51:19:b4:b5:a1:0c:c1:2a:1e:91:54:aa:00:22:51:e1:36:
6b:f2:65:70:80:e7:93:8c:84:5a:9d:ca:2c:e6:41:17:4b:7f:
1f:63:05:b5:dc:c5:4a:78:a7:67:cf:36:db:04:39:48:63:23:
e2:7e:97:40:16:7a:0a:94:53:d2:17:c0:c8:5b:fa:f1:af:2c:
8d:15:4b:dc:b3:ec:e3:1b:58:81:90:43:49:fe:b7:f7:21:0f:
af:14:e4:64:3c:b2:ee:13:9a:e3:88:ae:60:ff:1b:1c:f1:2f:
f3:42:f4:83:71:1c:e6:7a:9c:85:6f:f2:83:d0:5f:0f:b4:40:
d3:d4:1a:3c:5e:1e:07:70:3a:48:63:8d:df:c0:33:2b:40:f6:
f9:78:c0:db:0d:30:c5:72:fb:49:d8:48:ec:69:e7:28:27:03:
49:5b:94:7a:7a:7b:7e:d2:a2:2a:9c:ae:4f:ca:a0:cb:e4:d6:
6b:d6:a4:30:ab:fe:90:88:41:1b:4c:60:8d:74:9a:07:8a:f5:
77:f8:60:1a:05:e8:f1:09:8a:06:dc:09:10:25:48:96:68:f9:
de:17:8b:04:95:da:9f:1c:e7:3d:cb:0a:7b:d6:b4:74:ff:ee:
b7:3d:b2:54:4b:b4:53:45:79:96:94:4e:ff:0d:68:99:b9:d9:
e2:c2:29:68
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUJ+25zjjgOaq9ceoR0nJtZLZfYAkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjlDNDgyMDc0M0RCMDAxRThGNjlENDRDMTkzMjBFMUJG
MDlGOEY4ODAeFw0yNDA5MDMwMTIzMDRaFw0yNTA5MDIwMTI4MDRaMDMxMTAvBgNV
BAMTKEMxQ0RCMDlCQjcyQTc0MjAxRDBBQjFBMDEyQ0Y0OTRFRTE1ODdFQzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXNC/LYiM/oleIN0lf1LUZhdF
kXhSfVt7yKbkmFn1MsFN45h21AMpjgxKczdlE2kaao3zzJ3J5hzWXs2/Mwf0gEqQ
szOAVUlv2Zygq1tPrKE1FppYUKbSrrqkFZvaaZD7trn/l+IuwopnyRZaaDO42tmj
OS/uPpGtB5sHwEdkpiFX7PBEmAS8sEm/vflOcGsywjfJ1yMlsrghHfGYLWKr/MCr
xLKWlQj9LcXoqCjnWydjXLcgqJ09pcObW5t+Zaz6Jnx//EIQa+efufWftBiVzGNE
Nnpto61xoGaO/oYUwfAoxovCf/ZDtT02Ebd+WmcFeptuFYvnFNq0fp3l0etPAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUwc2wm7cqdCAdCrGgEs9JTuFYfsMwHwYDVR0j
BBgwFoAU+cSCB0PbAB6PadRMGTIOG/Cfj4gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
MjUxZDZjZi1jN2IxLTQ2ODctOTIwMy1kMTYxY2M0MGI2YTIvMC9GOUM0ODIwNzQz
REIwMDFFOEY2OUQ0NEMxOTMyMEUxQkYwOUY4Rjg4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjlDNDgyMDc0M0RCMDAxRThGNjlENDRDMTkzMjBFMUJGMDlG
OEY4OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyNTFkNmNmLWM3YjEtNDY4Ny05
MjAzLWQxNjFjYzQwYjZhMi8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzAyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMzMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmqowDQYJ
KoZIhvcNAQELBQADggEBAE1RGbS1oQzBKh6RVKoAIlHhNmvyZXCA55OMhFqdyizm
QRdLfx9jBbXcxUp4p2fPNtsEOUhjI+J+l0AWegqUU9IXwMhb+vGvLI0VS9yz7OMb
WIGQQ0n+t/chD68U5GQ8su4TmuOIrmD/GxzxL/NC9INxHOZ6nIVv8oPQXw+0QNPU
GjxeHgdwOkhjjd/AMytA9vl4wNsNMMVy+0nYSOxp5ygnA0lblHp6e37Soiqcrk/K
oMvk1mvWpDCr/pCIQRtMYI10mgeK9Xf4YBoF6PEJigbcCRAlSJZo+d4XiwSV2p8c
5z3LCnvWtHT/7rc9slRLtFNFeZaUTv8NaJm52eLCKWg=
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:49 2025 by rpki-client