Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa
File: 3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa (raw, json)
Hash identifier: 2Hf0voiLyRB5yquDwOqQGzECahxM0QLqpt8+luqMRjw=
Subject key identifier: 26:13:83:C5:2F:60:D1:10:0B:F2:6E:44:82:D0:5B:56:B0:D9:A4:BE
Certificate issuer: /CN=061065EDF2843A4462114BCE0A173E21A84A019E
Certificate serial: 538AF0354408AD4E93DC1BBAA7C4AB698F516D3E
Authority key identifier: 06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa
Signing time: Thu 05 Sep 2024 04:00:00 +0000
ROA not before: Thu 05 Sep 2024 03:55:00 +0000
ROA not after: Thu 04 Sep 2025 04:00:00 +0000
asID: 139952
IP address blocks: 103.174.112.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:8a:f0:35:44:08:ad:4e:93:dc:1b:ba:a7:c4:ab:69:8f:51:6d:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061065EDF2843A4462114BCE0A173E21A84A019E
Validity
Not Before: Sep 5 03:55:00 2024 GMT
Not After : Sep 4 04:00:00 2025 GMT
Subject: CN=261383C52F60D1100BF26E4482D05B56B0D9A4BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:84:cc:06:e0:6a:df:92:3c:a3:f3:d7:b3:f5:
53:60:a4:93:2a:78:87:98:a7:a8:de:0f:0f:e9:ba:
65:9f:33:8f:7d:8a:08:c3:2d:9c:8b:d4:b8:72:b3:
e2:6c:12:c0:b7:59:f2:45:21:ef:80:c2:4c:99:ee:
f7:86:88:68:d0:6b:57:c2:93:75:e8:17:be:c5:f2:
8d:62:0a:2b:82:2b:4f:0a:67:9d:b7:71:9f:13:83:
1a:6b:b3:0d:c1:10:02:e7:46:ce:bb:6d:ed:78:0f:
a7:f8:87:39:81:19:03:3b:ce:93:a0:a6:1b:97:5f:
12:19:28:56:bb:af:56:ff:dd:85:54:cd:22:f3:7d:
e2:ea:ec:14:9e:cf:2d:b9:4f:d5:71:7b:ee:a7:b5:
cf:30:cd:40:3d:90:65:64:23:54:03:54:25:ee:a5:
be:58:30:42:e0:ea:3b:02:00:97:36:99:08:b4:17:
27:6c:c5:9c:42:a7:5b:71:2c:8d:34:d4:c8:b6:49:
bb:6b:da:91:eb:85:cd:04:1d:b2:5b:aa:6b:9e:06:
78:85:0e:e6:a0:d0:0a:b8:01:1a:60:a1:aa:27:e4:
f8:c3:32:aa:50:5f:d0:3e:e6:69:6a:69:57:95:5a:
22:ce:3a:a7:74:be:fe:56:7e:ca:90:fb:f6:78:71:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:13:83:C5:2F:60:D1:10:0B:F2:6E:44:82:D0:5B:56:B0:D9:A4:BE
X509v3 Authority Key Identifier:
keyid:06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32332d3233203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.112.0/23
Signature Algorithm: sha256WithRSAEncryption
35:4f:95:35:f7:39:8f:21:30:55:7b:da:00:99:c2:6d:9a:c5:
78:4d:d6:83:de:2c:78:78:63:78:a1:0d:3b:87:ad:e4:65:bc:
f9:6c:e6:40:ca:8a:63:a3:07:ec:0c:44:81:e4:a7:bd:06:03:
3f:93:d5:bf:47:54:62:fe:d9:ec:bb:6c:8f:5c:46:03:4e:95:
44:da:0d:27:ae:ee:09:bd:93:f6:c8:e0:07:4a:2f:74:e2:bd:
f3:d7:df:76:ee:a6:54:34:9c:2b:4c:61:71:34:1e:a2:e9:17:
f7:72:2a:5a:f2:f1:cb:a9:81:62:db:fc:94:ea:36:95:9e:d7:
37:24:88:ad:b4:7c:be:27:75:2b:92:15:59:68:e0:ff:f0:94:
a8:d8:77:47:eb:d0:87:76:fd:7d:06:81:2b:ed:82:61:63:4d:
65:52:76:3c:d8:cc:cf:4b:19:9a:e3:bc:1c:32:89:45:2b:b1:
28:b6:b8:a9:0d:3c:ea:37:89:bd:1f:ba:9f:dd:5a:4c:80:b9:
5c:f2:ca:f9:34:15:03:07:f4:ff:a1:37:e7:dc:1c:5e:98:fc:
f6:d3:43:2e:05:a3:68:e8:4c:0c:66:39:b8:e4:d4:4f:45:41:
21:c8:9a:d1:49:dc:d5:e9:1c:8d:1c:8b:0a:4f:fd:86:1c:cf:
8a:3b:39:60
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUU4rwNUQIrU6T3Bu6p8SraY9RbT4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFB
ODRBMDE5RTAeFw0yNDA5MDUwMzU1MDBaFw0yNTA5MDQwNDAwMDBaMDMxMTAvBgNV
BAMTKDI2MTM4M0M1MkY2MEQxMTAwQkYyNkU0NDgyRDA1QjU2QjBEOUE0QkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQhMwG4Grfkjyj89ez9VNgpJMq
eIeYp6jeDw/pumWfM499igjDLZyL1Lhys+JsEsC3WfJFIe+AwkyZ7veGiGjQa1fC
k3XoF77F8o1iCiuCK08KZ523cZ8Tgxprsw3BEALnRs67be14D6f4hzmBGQM7zpOg
phuXXxIZKFa7r1b/3YVUzSLzfeLq7BSezy25T9Vxe+6ntc8wzUA9kGVkI1QDVCXu
pb5YMELg6jsCAJc2mQi0FydsxZxCp1txLI001Mi2Sbtr2pHrhc0EHbJbqmueBniF
Duag0Aq4ARpgoaon5PjDMqpQX9A+5mlqaVeVWiLOOqd0vv5WfsqQ+/Z4cS69AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUJhODxS9g0RAL8m5EgtBbVrDZpL4wHwYDVR0j
BBgwFoAUBhBl7fKEOkRiEUvOChc+IahKAZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
YzM2MjRjNC1iZmRjLTRlNDgtOGVhMC1lYjA1NjA1YzYyMTMvMC8wNjEwNjVFREYy
ODQzQTQ0NjIxMTRCQ0UwQTE3M0UyMUE4NEEwMTlFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDYxMDY1RURGMjg0M0E0NDYyMTE0QkNFMEExNzNFMjFBODRB
MDE5RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzYyNGM0LWJmZGMtNGU0OC04
ZWEwLWViMDU2MDVjNjIxMy8wLzMxMzAzMzJlMzEzNzM0MmUzMTMxMzIyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrnAwDQYJ
KoZIhvcNAQELBQADggEBADVPlTX3OY8hMFV72gCZwm2axXhN1oPeLHh4Y3ihDTuH
reRlvPls5kDKimOjB+wMRIHkp70GAz+T1b9HVGL+2ey7bI9cRgNOlUTaDSeu7gm9
k/bI4AdKL3TivfPX33buplQ0nCtMYXE0HqLpF/dyKlry8cupgWLb/JTqNpWe1zck
iK20fL4ndSuSFVlo4P/wlKjYd0fr0Id2/X0GgSvtgmFjTWVSdjzYzM9LGZrjvBwy
iUUrsSi2uKkNPOo3ib0fup/dWkyAuVzyyvk0FQMH9P+hN+fcHF6Y/PbTQy4Fo2jo
TAxmObjk1E9FQSHImtFJ3NXpHI0ciwpP/YYcz4o7OWA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:27 2025 by rpki-client