Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa
File: 3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa (raw, json)
Hash identifier: hmevkvSv6bMvUX2UZ0vR1Na9PH3RbBatgqZgKPjcLEc=
Subject key identifier: 50:96:B8:8E:EA:24:13:9B:9E:ED:2C:9D:80:B0:AA:0B:69:07:8A:14
Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Certificate serial: 7E02763D8EC83A7051EB4E2360520ED6E33F222D
Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa
Signing time: Mon 07 Oct 2024 07:02:09 +0000
ROA not before: Mon 07 Oct 2024 06:57:09 +0000
ROA not after: Mon 06 Oct 2025 07:02:09 +0000
asID: 140413
IP address blocks: 103.151.34.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:02:76:3d:8e:c8:3a:70:51:eb:4e:23:60:52:0e:d6:e3:3f:22:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Validity
Not Before: Oct 7 06:57:09 2024 GMT
Not After : Oct 6 07:02:09 2025 GMT
Subject: CN=5096B88EEA24139B9EED2C9D80B0AA0B69078A14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3e:08:29:4f:89:cc:1b:9d:ff:bd:b2:72:dc:
01:7d:93:17:ab:de:fa:df:1f:83:27:df:06:0a:9d:
fa:d0:ed:bb:b5:8d:c7:d3:40:ee:7c:c1:50:4b:01:
7f:d5:06:76:d8:c0:e0:1f:94:70:96:e7:de:be:6f:
91:5d:8a:51:83:77:f2:4a:40:23:33:92:cd:89:a5:
3d:e9:c6:f2:67:7c:ba:00:16:9f:52:40:01:49:6d:
6a:f7:09:6e:a4:4d:bc:46:e4:ee:cd:2d:80:43:ad:
b0:ee:4d:48:e6:eb:43:5f:02:85:6e:97:ee:f1:26:
ba:20:ec:79:ed:6f:87:9c:57:c4:71:77:16:1f:b0:
7f:83:66:01:75:46:5d:67:1b:b1:e7:f3:56:b5:e4:
60:b8:4e:60:9a:ec:26:56:e7:44:c4:50:e2:05:80:
37:bb:98:fe:78:45:e3:6f:22:8f:07:71:ef:2e:4d:
08:ca:9e:d1:3b:3d:6a:ab:d2:70:e5:c9:5d:d3:a9:
4a:02:f2:2c:99:31:ef:13:7f:91:e2:ff:4e:47:45:
89:21:9e:b7:17:64:9b:94:07:a4:8c:6d:f7:50:c4:
d3:9f:21:81:1a:34:66:43:98:92:cb:e9:fb:83:c0:
18:a2:3c:e1:72:a3:a3:a2:ee:0b:2e:f6:35:43:58:
f1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:96:B8:8E:EA:24:13:9B:9E:ED:2C:9D:80:B0:AA:0B:69:07:8A:14
X509v3 Authority Key Identifier:
keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/3130332e3135312e33342e302f32332d3233203d3e20313430343133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.34.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:f9:9d:23:cc:e0:c3:02:34:9a:b1:b8:7d:32:ea:05:cf:0c:
b7:56:b6:93:31:11:d7:d8:a9:ac:56:a1:69:3c:95:6a:2d:84:
d4:09:1b:97:6f:9d:ab:b9:b1:2b:09:4e:5b:60:fa:9a:0a:e3:
ae:b3:61:d4:d1:b7:7f:67:d3:94:2a:91:82:0e:21:50:f1:11:
5a:1a:52:ff:06:b8:12:86:46:b9:44:6a:36:98:de:d3:7e:91:
88:88:88:8a:93:3b:ae:7d:cb:2b:b1:b2:38:db:a4:5e:7f:2d:
73:02:c1:9c:d8:d6:ca:00:e6:9f:bd:89:39:48:da:61:1c:bf:
e1:5e:b3:44:b0:94:74:9b:7c:b8:3d:8a:a8:ea:7d:cc:e6:dd:
ac:67:09:54:51:25:d5:19:38:ae:96:cf:c2:16:f8:6c:58:5f:
4d:b7:40:65:eb:4c:0d:bc:d1:16:97:29:d3:ca:d4:c6:d4:22:
e1:3c:05:23:8c:85:32:a6:45:5b:9c:a8:63:d1:db:79:eb:19:
23:57:11:01:8d:24:92:bc:db:6e:73:06:02:3f:ac:57:90:a4:
ef:66:ab:92:81:1e:a5:66:ed:0f:1c:97:43:77:e1:b4:97:7b:
6e:b9:66:1c:fc:1a:0b:00:b8:60:9d:6d:ac:d8:8f:bf:50:cc:
1b:29:cc:fb
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUfgJ2PY7IOnBR604jYFIO1uM/Ii0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB
ODFBOTNCRTAeFw0yNDEwMDcwNjU3MDlaFw0yNTEwMDYwNzAyMDlaMDMxMTAvBgNV
BAMTKDUwOTZCODhFRUEyNDEzOUI5RUVEMkM5RDgwQjBBQTBCNjkwNzhBMTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1PggpT4nMG53/vbJy3AF9kxer
3vrfH4Mn3wYKnfrQ7bu1jcfTQO58wVBLAX/VBnbYwOAflHCW596+b5FdilGDd/JK
QCMzks2JpT3pxvJnfLoAFp9SQAFJbWr3CW6kTbxG5O7NLYBDrbDuTUjm60NfAoVu
l+7xJrog7Hntb4ecV8RxdxYfsH+DZgF1Rl1nG7Hn81a15GC4TmCa7CZW50TEUOIF
gDe7mP54ReNvIo8Hce8uTQjKntE7PWqr0nDlyV3TqUoC8iyZMe8Tf5Hi/05HRYkh
nrcXZJuUB6SMbfdQxNOfIYEaNGZDmJLL6fuDwBiiPOFyo6Oi7gsu9jVDWPF1AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUUJa4juokE5ue7SydgLCqC2kHihQwHwYDVR0j
BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD
RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB
OTNCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i
ZWY4LTBlNzNlODQ5OTRiYy8wLzMxMzAzMzJlMzEzNTMxMmUzMzM0MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5ciMA0GCSqG
SIb3DQEBCwUAA4IBAQAq+Z0jzODDAjSasbh9MuoFzwy3VraTMRHX2KmsVqFpPJVq
LYTUCRuXb52rubErCU5bYPqaCuOus2HU0bd/Z9OUKpGCDiFQ8RFaGlL/BrgShka5
RGo2mN7TfpGIiIiKkzuufcsrsbI426Refy1zAsGc2NbKAOafvYk5SNphHL/hXrNE
sJR0m3y4PYqo6n3M5t2sZwlUUSXVGTiuls/CFvhsWF9Nt0Bl60wNvNEWlynTytTG
1CLhPAUjjIUypkVbnKhj0dt56xkjVxEBjSSSvNtucwYCP6xXkKTvZquSgR6lZu0P
HJdDd+G0l3tuuWYc/BoLALhgnW2s2I+/UMwbKcz7
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:43:57 2025 by rpki-client