Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa
File: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (raw, json)
Hash identifier: 2w5XwJtYHGp7kLGkRgJLESPyKEX6dzPi8sNumuXEyGY=
Subject key identifier: A1:4B:3F:AE:65:96:8A:56:A5:2E:4C:E7:89:F6:90:3C:E6:B2:2B:01
Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Certificate serial: 56B1B4144F33D4A0ABEEEF4C54E79E155B582088
Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa
Signing time: Sun 25 Aug 2024 06:00:02 +0000
ROA not before: Sun 25 Aug 2024 05:55:02 +0000
ROA not after: Sun 24 Aug 2025 06:00:02 +0000
asID: 58474
IP address blocks: 103.28.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:b1:b4:14:4f:33:d4:a0:ab:ee:ef:4c:54:e7:9e:15:5b:58:20:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Validity
Not Before: Aug 25 05:55:02 2024 GMT
Not After : Aug 24 06:00:02 2025 GMT
Subject: CN=A14B3FAE65968A56A52E4CE789F6903CE6B22B01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:54:63:1b:b9:ae:ca:d0:c4:81:b2:e0:9c:
c6:85:ed:05:ae:6a:15:aa:31:e2:c7:76:a2:25:f6:
57:b9:0d:1e:be:33:d1:9e:86:a8:05:0e:b5:0d:19:
d5:47:8f:e6:7b:19:ac:42:82:e3:71:56:2e:9f:eb:
58:4c:e3:6e:6e:7f:35:51:74:0e:a9:1b:21:6c:57:
bc:5a:c1:29:96:e5:8c:2b:ff:3d:6d:fe:22:59:85:
45:9f:fc:e1:92:7e:7a:b0:e2:ad:2b:17:17:03:36:
5b:b4:0a:8b:9d:a7:0e:17:3b:1c:c0:cd:cb:7c:4c:
26:d9:30:4a:fc:9e:94:4f:3b:7b:5e:04:ff:97:d2:
f5:e6:eb:8a:26:b0:4f:63:8c:d0:a3:6d:86:66:64:
ce:39:78:cc:76:a3:4d:01:bc:a8:49:cd:c8:43:b4:
28:11:01:b4:f9:96:05:01:55:d4:92:60:b3:e3:5a:
70:bd:13:fa:fd:62:ad:eb:98:34:b5:61:68:2c:49:
16:9e:d6:24:3b:1f:c8:b6:52:15:ca:68:9d:4f:89:
ed:53:00:1b:3c:70:54:65:c0:d3:0b:27:df:a6:b0:
9f:5a:a7:e8:a6:49:e9:82:b1:6b:34:61:da:49:a8:
f2:ed:50:65:2a:78:a1:bb:76:1b:bf:6e:b2:52:3a:
1e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4B:3F:AE:65:96:8A:56:A5:2E:4C:E7:89:F6:90:3C:E6:B2:2B:01
X509v3 Authority Key Identifier:
keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35382e302f32342d3234203d3e203538343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.28.58.0/24
Signature Algorithm: sha256WithRSAEncryption
37:81:d5:73:6b:55:19:65:40:e0:56:69:df:41:49:5e:8f:d1:
03:0b:d2:58:77:8b:86:a5:a6:0f:3d:d7:06:19:a9:20:e2:55:
ee:6e:9b:64:d0:03:96:4a:8c:f2:04:69:d8:91:14:44:75:1f:
86:e5:28:c2:ed:1f:f0:ac:2a:b0:42:92:06:ab:a5:2f:cf:65:
ad:c2:10:0d:1b:7c:d3:1e:2a:ad:b4:ec:02:a4:8c:d1:4e:da:
10:6e:f6:7f:23:ca:01:01:1b:2b:9c:65:94:36:9b:37:da:64:
7a:cc:a5:c9:2d:b8:33:e7:59:e2:82:a7:fe:13:fd:34:c3:f7:
54:27:85:3f:1a:6f:0e:b4:ec:0e:39:e6:36:66:37:a9:57:62:
96:da:4b:ab:8b:d2:4d:91:6b:e1:7e:7c:0b:b5:24:4e:1e:d2:
e2:db:8c:94:3e:e9:6d:11:ca:c9:c7:b4:44:6e:ca:0f:0c:2c:
91:d7:10:d6:f6:e1:80:a6:50:89:08:0b:30:bb:69:8b:73:2d:
74:8a:50:3c:0f:43:7d:4d:88:a9:59:95:85:7f:fb:19:81:6c:
08:1b:a0:95:2f:42:32:d0:06:76:79:76:91:34:2c:97:45:de:
d2:ab:5b:88:e8:f0:96:f6:43:3f:01:c1:d2:40:28:ed:28:34:
bb:0f:d6:58
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUVrG0FE8z1KCr7u9MVOeeFVtYIIgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz
REEyRjA5ODAeFw0yNDA4MjUwNTU1MDJaFw0yNTA4MjQwNjAwMDJaMDMxMTAvBgNV
BAMTKEExNEIzRkFFNjU5NjhBNTZBNTJFNENFNzg5RjY5MDNDRTZCMjJCMDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD+1RjG7muytDEgbLgnMaF7QWu
ahWqMeLHdqIl9le5DR6+M9GehqgFDrUNGdVHj+Z7GaxCguNxVi6f61hM425ufzVR
dA6pGyFsV7xawSmW5Ywr/z1t/iJZhUWf/OGSfnqw4q0rFxcDNlu0Coudpw4XOxzA
zct8TCbZMEr8npRPO3teBP+X0vXm64omsE9jjNCjbYZmZM45eMx2o00BvKhJzchD
tCgRAbT5lgUBVdSSYLPjWnC9E/r9Yq3rmDS1YWgsSRae1iQ7H8i2UhXKaJ1Pie1T
ABs8cFRlwNMLJ9+msJ9ap+imSemCsWs0YdpJqPLtUGUqeKG7dhu/brJSOh6vAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUoUs/rmWWilalLkznifaQPOayKwEwHwYDVR0j
BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0
QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy
RjA5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i
M2ZmLTcwYzE0NGVkZmVjZS8wLzMxMzAzMzJlMzIzODJlMzUzODJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM1MzgzNDM3MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHDowDQYJKoZIhvcN
AQELBQADggEBADeB1XNrVRllQOBWad9BSV6P0QML0lh3i4alpg891wYZqSDiVe5u
m2TQA5ZKjPIEadiRFER1H4blKMLtH/CsKrBCkgarpS/PZa3CEA0bfNMeKq207AKk
jNFO2hBu9n8jygEBGyucZZQ2mzfaZHrMpcktuDPnWeKCp/4T/TTD91QnhT8abw60
7A455jZmN6lXYpbaS6uL0k2Ra+F+fAu1JE4e0uLbjJQ+6W0RysnHtERuyg8MLJHX
ENb24YCmUIkICzC7aYtzLXSKUDwPQ31NiKlZlYV/+xmBbAgboJUvQjLQBnZ5dpE0
LJdF3tKrW4jo8Jb2Qz8BwdJAKO0oNLsP1lg=
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:23 2025 by rpki-client