Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1dfd4234-1323-4f0e-b686-1d72acb88029/0/3130332e38312e3235342e302f32342d3234203d3e20313530353533.roa
File: 3130332e38312e3235342e302f32342d3234203d3e20313530353533.roa (raw, json)
Hash identifier: E2z3KSns6iTpnPXpRNJQCkLuXAdqTPQfcSqYdPzsxRI=
Subject key identifier: 18:FF:BB:88:7C:8B:F6:91:D2:B5:20:04:70:A2:1A:E9:1A:12:6B:12
Certificate issuer: /CN=743D7544160232918AB5AB2CD90221B4C4E978E5
Certificate serial: 66CF3DEC45C3644CD1CDF436BBBC9B8B011AC3BE
Authority key identifier: 74:3D:75:44:16:02:32:91:8A:B5:AB:2C:D9:02:21:B4:C4:E9:78:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/743D7544160232918AB5AB2CD90221B4C4E978E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1dfd4234-1323-4f0e-b686-1d72acb88029/0/3130332e38312e3235342e302f32342d3234203d3e20313530353533.roa
Signing time: Mon 20 Jan 2025 10:01:06 +0000
ROA not before: Mon 20 Jan 2025 09:56:06 +0000
ROA not after: Mon 19 Jan 2026 10:01:06 +0000
asID: 150553
IP address blocks: 103.81.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:cf:3d:ec:45:c3:64:4c:d1:cd:f4:36:bb:bc:9b:8b:01:1a:c3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=743D7544160232918AB5AB2CD90221B4C4E978E5
Validity
Not Before: Jan 20 09:56:06 2025 GMT
Not After : Jan 19 10:01:06 2026 GMT
Subject: CN=18FFBB887C8BF691D2B5200470A21AE91A126B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:c6:c2:e6:ba:ac:33:81:f1:27:b4:9e:9e:
cb:95:65:ec:75:d7:41:f0:d5:27:85:ce:e4:b5:0d:
1f:b4:e6:21:1b:65:6e:f0:fc:f6:4d:50:f8:20:61:
e9:3b:f0:40:5a:89:2c:9a:c6:8c:21:63:09:39:53:
a8:e3:86:22:f8:96:24:09:20:56:4a:50:e5:94:bf:
d1:0e:a5:f5:c7:15:bb:d5:89:1c:cd:cc:55:a8:01:
78:e0:53:a3:81:98:67:83:79:ca:92:f9:83:c3:1b:
19:2e:be:78:01:d8:6c:e3:23:bd:8d:72:1a:e3:87:
08:7e:99:79:a6:d9:8d:b8:4a:3f:af:3f:d0:93:5f:
ad:ff:41:e2:1c:05:31:9a:9f:ac:2c:ae:df:71:de:
c0:2b:05:da:81:d1:45:d8:2b:12:52:e2:0b:ce:f8:
73:d3:d7:f7:c8:95:f8:d7:69:64:67:b1:9e:9f:d2:
8a:37:f2:6a:da:54:2c:f1:2c:61:af:11:6c:f8:50:
7f:cd:3f:0d:86:49:0d:3a:57:f0:2b:d5:fd:1d:4a:
45:4e:75:e4:bb:cb:c8:a1:b2:0c:26:32:19:fe:9e:
2d:f2:1e:aa:54:c8:20:75:71:f2:b1:4d:ed:ad:56:
04:43:1a:a4:2a:c1:7c:89:dd:52:f9:a4:31:27:4d:
bd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FF:BB:88:7C:8B:F6:91:D2:B5:20:04:70:A2:1A:E9:1A:12:6B:12
X509v3 Authority Key Identifier:
keyid:74:3D:75:44:16:02:32:91:8A:B5:AB:2C:D9:02:21:B4:C4:E9:78:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1dfd4234-1323-4f0e-b686-1d72acb88029/0/743D7544160232918AB5AB2CD90221B4C4E978E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/743D7544160232918AB5AB2CD90221B4C4E978E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1dfd4234-1323-4f0e-b686-1d72acb88029/0/3130332e38312e3235342e302f32342d3234203d3e20313530353533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.81.254.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:97:a4:df:86:1d:d0:8f:08:f3:29:e4:bc:10:c5:4c:5c:c5:
8a:03:0f:b4:4d:5e:02:a6:3e:48:bb:6f:24:f4:21:5a:f8:d9:
49:c6:bb:a1:1d:d3:82:cb:d9:bf:bd:44:e0:7b:34:76:9a:3c:
41:b0:c8:b1:fc:97:a8:b0:77:5d:92:69:11:6a:be:04:59:26:
37:c7:d3:3a:cc:d1:45:3c:15:a3:09:ce:00:fd:ca:57:40:0d:
a9:33:4f:20:b0:c0:32:be:0c:cd:5b:12:97:f7:94:58:d5:e6:
50:fb:8f:ac:43:ea:e4:fb:29:91:05:f7:74:7e:20:72:17:25:
b7:b4:c2:30:82:cc:21:8b:50:56:b3:36:6e:c7:b3:a1:de:6b:
19:52:e1:4a:34:70:e2:f1:3d:a0:b7:fd:24:63:46:da:10:c0:
8d:c2:8a:25:09:b3:f2:fe:61:ef:60:1a:30:da:6a:75:f8:5b:
70:dc:d7:48:2d:1b:d3:e4:70:2c:c9:e0:14:da:bd:b1:fa:0c:
45:d6:f7:df:b1:e6:54:44:03:b3:50:cb:d3:09:84:51:09:d5:
1b:60:c7:0d:d9:42:c4:9b:d3:b2:30:20:eb:ef:ec:d1:62:fd:
c5:87:d9:69:7f:39:35:f7:92:62:5c:fe:f1:22:d1:fd:f3:04:
5a:ed:71:eb
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUZs897EXDZEzRzfQ2u7ybiwEaw74wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzQzRDc1NDQxNjAyMzI5MThBQjVBQjJDRDkwMjIxQjRD
NEU5NzhFNTAeFw0yNTAxMjAwOTU2MDZaFw0yNjAxMTkxMDAxMDZaMDMxMTAvBgNV
BAMTKDE4RkZCQjg4N0M4QkY2OTFEMkI1MjAwNDcwQTIxQUU5MUExMjZCMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwFcbC5rqsM4HxJ7SensuVZex1
10Hw1SeFzuS1DR+05iEbZW7w/PZNUPggYek78EBaiSyaxowhYwk5U6jjhiL4liQJ
IFZKUOWUv9EOpfXHFbvViRzNzFWoAXjgU6OBmGeDecqS+YPDGxkuvngB2GzjI72N
chrjhwh+mXmm2Y24Sj+vP9CTX63/QeIcBTGan6wsrt9x3sArBdqB0UXYKxJS4gvO
+HPT1/fIlfjXaWRnsZ6f0oo38mraVCzxLGGvEWz4UH/NPw2GSQ06V/Ar1f0dSkVO
deS7y8ihsgwmMhn+ni3yHqpUyCB1cfKxTe2tVgRDGqQqwXyJ3VL5pDEnTb0ZAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUGP+7iHyL9pHStSAEcKIa6RoSaxIwHwYDVR0j
BBgwFoAUdD11RBYCMpGKtass2QIhtMTpeOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
ZGZkNDIzNC0xMzIzLTRmMGUtYjY4Ni0xZDcyYWNiODgwMjkvMC83NDNENzU0NDE2
MDIzMjkxOEFCNUFCMkNEOTAyMjFCNEM0RTk3OEU1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzQzRDc1NDQxNjAyMzI5MThBQjVBQjJDRDkwMjIxQjRDNEU5
NzhFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZmQ0MjM0LTEzMjMtNGYwZS1i
Njg2LTFkNzJhY2I4ODAyOS8wLzMxMzAzMzJlMzgzMTJlMzIzNTM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1H+MA0GCSqG
SIb3DQEBCwUAA4IBAQCul6Tfhh3QjwjzKeS8EMVMXMWKAw+0TV4Cpj5Iu28k9CFa
+NlJxruhHdOCy9m/vUTgezR2mjxBsMix/JeosHddkmkRar4EWSY3x9M6zNFFPBWj
Cc4A/cpXQA2pM08gsMAyvgzNWxKX95RY1eZQ+4+sQ+rk+ymRBfd0fiByFyW3tMIw
gswhi1BWszZux7Oh3msZUuFKNHDi8T2gt/0kY0baEMCNwoolCbPy/mHvYBow2mp1
+Ftw3NdILRvT5HAsyeAU2r2x+gxF1vffseZURAOzUMvTCYRRCdUbYMcN2ULEm9Oy
MCDr7+zRYv3Fh9lpfzk195JiXP7xItH98wRa7XHr
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:49:00 2025 by rpki-client