Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa
File: 3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa (raw, json)
Hash identifier: nXd+T08BzwUBsTCm772rTt3T7OGX+ISh5lyg0yjVkpU=
Subject key identifier: 9F:57:C4:8B:4C:BD:E4:B6:EE:14:8B:FB:B3:E2:B3:03:49:3E:21:61
Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Certificate serial: 7D3856F8C6C0A8B49AB753A0F84EC3AC3B888B88
Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa
Signing time: Wed 20 Nov 2024 10:03:10 +0000
ROA not before: Wed 20 Nov 2024 09:58:10 +0000
ROA not after: Wed 19 Nov 2025 10:03:10 +0000
asID: 58487
IP address blocks: 103.253.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:38:56:f8:c6:c0:a8:b4:9a:b7:53:a0:f8:4e:c3:ac:3b:88:8b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Validity
Not Before: Nov 20 09:58:10 2024 GMT
Not After : Nov 19 10:03:10 2025 GMT
Subject: CN=9F57C48B4CBDE4B6EE148BFBB3E2B303493E2161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8a:03:34:97:cd:f5:19:9e:8a:5d:42:dd:9c:
e4:4e:a7:dd:8f:89:db:1b:b8:53:69:97:60:a2:45:
fd:9d:e4:59:ab:c8:36:c2:d3:f0:4e:68:79:92:7f:
db:bf:c4:d1:5f:7f:fa:0d:3b:89:3a:70:44:3b:bc:
06:39:0a:b5:05:21:72:c2:f2:c3:20:f6:6a:f3:c2:
62:bf:18:c8:65:14:1a:b4:a2:2d:9d:91:55:68:51:
dd:a0:98:bb:ec:59:be:b2:20:99:c4:bb:94:62:4c:
21:8b:a5:63:eb:af:2e:8c:12:8f:78:28:87:7a:38:
27:70:68:24:59:bc:34:f4:3f:16:9d:3e:4d:c5:95:
02:a4:be:c3:e4:65:74:d0:84:e0:37:c4:7f:30:0a:
43:4d:ad:71:9c:ff:7f:9f:cd:0a:55:0c:37:aa:7d:
22:dc:c5:a8:8e:5f:f0:78:41:23:4d:f1:dd:fd:91:
1d:2a:9b:c9:79:5f:77:47:e2:46:87:af:3b:88:e9:
62:a2:40:f4:b9:0b:da:40:7f:a1:26:af:33:22:88:
c3:8e:04:66:29:50:80:9b:3c:7b:29:7f:fc:e1:f9:
a8:05:76:46:78:07:4b:2b:d5:6d:77:8c:64:8a:54:
77:58:dc:75:f7:be:1b:86:bf:d7:fa:e6:6b:18:b5:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:57:C4:8B:4C:BD:E4:B6:EE:14:8B:FB:B3:E2:B3:03:49:3E:21:61
X509v3 Authority Key Identifier:
keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.253.213.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:f4:03:85:7f:94:c2:88:bb:06:b0:a4:c4:27:26:85:a0:53:
fb:81:fd:97:17:72:a5:37:7d:f0:01:d4:29:5c:0f:83:5f:ee:
08:49:79:a3:8c:3e:34:40:4c:9b:49:47:54:4a:56:e4:83:c9:
fd:3a:f8:c4:d1:53:6d:0c:02:2d:4c:8f:c9:b7:b7:9d:16:66:
aa:15:05:9b:58:a7:c4:e9:b0:84:b4:8a:18:ba:86:de:e4:67:
7d:e5:55:1f:23:f6:4a:46:cb:2d:d4:aa:73:a2:29:10:49:ab:
b5:40:59:5f:05:1f:9e:57:de:e3:e3:a4:b0:b7:c4:09:86:a7:
7e:ca:24:ad:70:1d:88:52:33:a8:74:4d:45:de:19:58:0e:6f:
9d:71:14:c7:6b:62:75:ff:91:e2:3a:0f:a8:cf:d3:62:69:1f:
1e:37:da:92:f7:55:1c:56:0f:50:5e:f2:78:64:7d:c4:d7:fe:
5b:ec:32:05:11:61:77:85:9c:55:7b:64:ee:60:c2:6c:8e:9d:
a7:77:5d:57:fa:c8:0c:c5:d4:cf:bd:18:c1:40:c4:0c:ea:5c:
cb:d2:28:44:e5:e5:f0:e8:30:8a:5f:3c:8d:45:ca:3a:17:1f:
7c:28:c3:1c:f0:52:78:95:c7:40:38:e8:b2:80:71:77:63:24:
36:9c:e6:44
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUfThW+MbAqLSat1Og+E7DrDuIi4gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5
MkFBQkU2RTAeFw0yNDExMjAwOTU4MTBaFw0yNTExMTkxMDAzMTBaMDMxMTAvBgNV
BAMTKDlGNTdDNDhCNENCREU0QjZFRTE0OEJGQkIzRTJCMzAzNDkzRTIxNjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAigM0l831GZ6KXULdnOROp92P
idsbuFNpl2CiRf2d5FmryDbC0/BOaHmSf9u/xNFff/oNO4k6cEQ7vAY5CrUFIXLC
8sMg9mrzwmK/GMhlFBq0oi2dkVVoUd2gmLvsWb6yIJnEu5RiTCGLpWPrry6MEo94
KId6OCdwaCRZvDT0PxadPk3FlQKkvsPkZXTQhOA3xH8wCkNNrXGc/3+fzQpVDDeq
fSLcxaiOX/B4QSNN8d39kR0qm8l5X3dH4kaHrzuI6WKiQPS5C9pAf6EmrzMiiMOO
BGYpUICbPHspf/zh+agFdkZ4B0sr1W13jGSKVHdY3HX3vhuGv9f65msYtTb1AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUn1fEi0y95LbuFIv7s+KzA0k+IWEwHwYDVR0j
BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx
NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB
QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05
N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3VMA0GCSqG
SIb3DQEBCwUAA4IBAQAf9AOFf5TCiLsGsKTEJyaFoFP7gf2XF3KlN33wAdQpXA+D
X+4ISXmjjD40QEybSUdUSlbkg8n9OvjE0VNtDAItTI/Jt7edFmaqFQWbWKfE6bCE
tIoYuobe5Gd95VUfI/ZKRsst1KpzoikQSau1QFlfBR+eV97j46Swt8QJhqd+yiSt
cB2IUjOodE1F3hlYDm+dcRTHa2J1/5HiOg+oz9NiaR8eN9qS91UcVg9QXvJ4ZH3E
1/5b7DIFEWF3hZxVe2TuYMJsjp2nd11X+sgMxdTPvRjBQMQM6lzL0ihE5eXw6DCK
XzyNRco6Fx98KMMc8FJ4lcdAOOiygHF3YyQ2nOZE
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:46 2025 by rpki-client