Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa
File: 3130332e3136392e302e302f32332d3234203d3e20313432333235.roa (raw, json)
Hash identifier: kS5BqB0fQsybN4YzA6LLybAUUgYhEkwegd5mZxZdL2I=
Subject key identifier: 8B:DB:F7:3E:61:93:88:DD:D0:49:77:A2:50:A9:8D:0C:54:06:AF:61
Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7
Certificate serial: 6C4F21FAD22A83FEAD7E0FFB9B073600E982BAB0
Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa
Signing time: Thu 05 Dec 2024 11:01:15 +0000
ROA not before: Thu 05 Dec 2024 10:56:15 +0000
ROA not after: Thu 04 Dec 2025 11:01:15 +0000
asID: 142325
IP address blocks: 103.169.0.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:4f:21:fa:d2:2a:83:fe:ad:7e:0f:fb:9b:07:36:00:e9:82:ba:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7
Validity
Not Before: Dec 5 10:56:15 2024 GMT
Not After : Dec 4 11:01:15 2025 GMT
Subject: CN=8BDBF73E619388DDD04977A250A98D0C5406AF61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:08:2f:cb:e4:c5:e0:99:18:1f:eb:7f:5e:
e6:4d:23:99:c0:02:f6:bd:94:c7:6a:21:ad:31:8f:
f7:a2:7e:87:a7:e3:a7:06:50:df:8d:20:d9:c9:d9:
99:eb:fb:a6:4c:6c:e1:d9:47:6e:d6:2c:c7:f6:02:
a7:08:ba:bf:51:a1:09:3a:f5:fc:12:78:66:00:9c:
da:4a:3e:e4:7b:73:32:3e:53:b4:d4:60:12:20:be:
4f:7f:03:57:7e:a1:c9:de:7a:d5:29:5f:98:26:55:
9a:89:62:8b:62:fb:f9:6e:29:5f:e3:73:1b:13:b2:
fc:e0:c9:84:fd:63:8a:66:3d:5b:fe:ad:a6:65:6b:
f1:58:10:96:2c:86:31:50:ef:fd:3e:0f:a2:14:36:
53:21:39:aa:ff:98:b3:90:d0:f4:c6:83:15:15:a5:
bc:da:91:c2:25:66:8a:86:e1:e6:6d:72:2c:9c:20:
04:73:3f:01:99:a3:77:09:fc:09:d8:04:de:b6:de:
7d:f4:ab:3d:11:58:ff:e1:ba:72:8d:6c:cf:35:08:
bd:50:31:24:09:cf:0c:56:b1:30:b2:97:ed:5f:02:
b0:d0:57:5f:b4:e2:6a:7b:ff:05:84:b8:62:23:5a:
3c:0d:52:ec:c3:5c:24:ce:99:09:47:91:7d:04:ed:
23:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DB:F7:3E:61:93:88:DD:D0:49:77:A2:50:A9:8D:0C:54:06:AF:61
X509v3 Authority Key Identifier:
keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32332d3234203d3e20313432333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.0.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:83:3e:c4:64:22:03:bb:8f:bb:11:2f:f9:05:fc:92:44:9a:
85:6a:10:6d:b5:76:80:a4:6e:24:b3:87:fb:42:b4:08:2d:31:
9c:65:14:75:d0:0d:96:ea:df:7f:e6:cd:82:6d:ae:fe:d0:4c:
2d:55:e0:7b:3a:7f:ef:b9:c8:a4:a6:1b:d9:53:80:a9:f1:da:
84:7a:ad:6c:ff:32:95:fc:cb:5a:2e:42:4a:58:25:3d:ab:31:
cc:8f:95:31:5d:e5:25:c9:bf:94:53:b6:c1:ca:97:3a:a0:ad:
aa:99:f3:06:ab:d2:d5:b8:07:7e:d2:77:7e:19:e4:d1:b5:22:
c8:72:ea:52:71:c4:cb:2e:3b:dc:b5:02:e2:4a:0a:2a:0a:86:
f0:42:1a:ec:f2:0a:b0:be:ae:5f:87:cf:d8:3d:da:fc:13:7e:
7c:5e:fe:8e:63:bb:d0:07:6d:c4:e5:b0:e8:01:a3:d9:13:99:
e9:e5:b8:9e:f0:bb:27:c3:09:88:47:b0:63:84:14:a1:d2:79:
e0:ac:58:3f:46:51:47:37:ae:07:84:5c:f2:ee:f9:20:bd:16:
60:e0:41:63:06:24:a3:90:76:03:56:b7:93:52:c6:c3:f9:16:
38:9c:92:47:7e:f4:1e:e7:18:46:cb:76:14:21:74:7e:2a:a1:
9b:a2:bd:f3
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUbE8h+tIqg/6tfg/7mwc2AOmCurAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG
N0NCMkZFNzAeFw0yNDEyMDUxMDU2MTVaFw0yNTEyMDQxMTAxMTVaMDMxMTAvBgNV
BAMTKDhCREJGNzNFNjE5Mzg4REREMDQ5NzdBMjUwQTk4RDBDNTQwNkFGNjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAewgvy+TF4JkYH+t/XuZNI5nA
Ava9lMdqIa0xj/eifoen46cGUN+NINnJ2Znr+6ZMbOHZR27WLMf2AqcIur9RoQk6
9fwSeGYAnNpKPuR7czI+U7TUYBIgvk9/A1d+ocneetUpX5gmVZqJYoti+/luKV/j
cxsTsvzgyYT9Y4pmPVv+raZla/FYEJYshjFQ7/0+D6IUNlMhOar/mLOQ0PTGgxUV
pbzakcIlZoqG4eZtciycIARzPwGZo3cJ/AnYBN623n30qz0RWP/hunKNbM81CL1Q
MSQJzwxWsTCyl+1fArDQV1+04mp7/wWEuGIjWjwNUuzDXCTOmQlHkX0E7SNzAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUi9v3PmGTiN3QSXeiUKmNDFQGr2EwHwYDVR0j
BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5
OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC
MkZFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhM2NjMmMxLTE0NmMtNDhhOS1i
MDAzLTdiZDgzODIyMDg0ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMDJlMzAyZjMyMzMy
ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWepADANBgkqhkiG
9w0BAQsFAAOCAQEAjIM+xGQiA7uPuxEv+QX8kkSahWoQbbV2gKRuJLOH+0K0CC0x
nGUUddANlurff+bNgm2u/tBMLVXgezp/77nIpKYb2VOAqfHahHqtbP8ylfzLWi5C
SlglPasxzI+VMV3lJcm/lFO2wcqXOqCtqpnzBqvS1bgHftJ3fhnk0bUiyHLqUnHE
yy473LUC4koKKgqG8EIa7PIKsL6uX4fP2D3a/BN+fF7+jmO70AdtxOWw6AGj2ROZ
6eW4nvC7J8MJiEewY4QUodJ54KxYP0ZRRzeuB4Rc8u75IL0WYOBBYwYko5B2A1a3
k1LGw/kWOJySR370HucYRst2FCF0fiqhm6K98w==
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:40:26 2025 by rpki-client