Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa
File: 3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa (raw, json)
Hash identifier: hfMXDzFxEvHHtqGBF6DkCU+R2EjMLum1EWpIdqrTIlU=
Subject key identifier: E3:D3:50:58:AC:5C:12:E5:3B:54:D5:17:15:ED:B5:22:2F:D6:F4:B5
Certificate issuer: /CN=571E2EFA23FEA611810611410635E23A090F4550
Certificate serial: 1DAE33D55C644CDF72B1BE9E89D71AFE52AE8823
Authority key identifier: 57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa
Signing time: Thu 13 Mar 2025 00:22:57 +0000
ROA not before: Thu 13 Mar 2025 00:17:57 +0000
ROA not after: Thu 12 Mar 2026 00:22:57 +0000
asID: 141621
IP address blocks: 103.155.64.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:ae:33:d5:5c:64:4c:df:72:b1:be:9e:89:d7:1a:fe:52:ae:88:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571E2EFA23FEA611810611410635E23A090F4550
Validity
Not Before: Mar 13 00:17:57 2025 GMT
Not After : Mar 12 00:22:57 2026 GMT
Subject: CN=E3D35058AC5C12E53B54D51715EDB5222FD6F4B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:1a:02:93:57:16:c5:d5:27:5c:b0:2e:bf:
8c:33:9e:02:20:73:03:02:2c:c1:0b:27:34:be:1a:
c3:ef:8a:1c:37:d7:58:28:88:78:3b:13:06:e0:77:
b6:cf:50:e0:da:f1:b8:23:17:21:ae:42:34:cb:50:
70:5b:71:b0:c9:55:e1:b3:97:e0:5b:ff:5b:98:42:
20:64:ea:49:6b:5e:fe:f5:05:46:24:52:af:b9:9e:
ff:e8:2d:99:cd:13:6e:24:41:3a:cf:2d:a9:fb:18:
f9:de:87:3b:88:6d:e8:72:97:d6:e7:09:39:43:e9:
31:62:61:3b:ce:74:e1:ca:ed:ea:f1:43:bb:5d:fa:
4b:0f:a1:37:09:51:8e:c4:33:ac:68:dd:f0:0f:50:
81:c4:fd:86:fc:0f:17:67:4b:d0:bd:97:18:6b:36:
41:97:2c:8d:ab:b0:64:e2:55:4f:9e:d9:26:0b:18:
df:32:eb:90:13:fa:fe:2d:c2:b4:a2:c6:3a:df:49:
00:78:15:b9:c8:be:4b:77:d1:1e:1a:6d:c1:d1:6c:
4a:aa:41:d5:86:df:e8:24:42:c8:78:a9:3a:c9:ca:
07:47:4c:b4:85:b5:0d:6f:ac:05:12:3d:f4:b6:33:
e3:18:b5:ee:a5:14:79:8f:b7:03:ee:2e:3d:ef:99:
4b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D3:50:58:AC:5C:12:E5:3B:54:D5:17:15:ED:B5:22:2F:D6:F4:B5
X509v3 Authority Key Identifier:
keyid:57:1E:2E:FA:23:FE:A6:11:81:06:11:41:06:35:E2:3A:09:0F:45:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/571E2EFA23FEA611810611410635E23A090F4550.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/571E2EFA23FEA611810611410635E23A090F4550.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3564abfb-1962-44a9-8376-cbfb1efcdaba/0/3130332e3135352e36342e302f32332d3233203d3e20313431363231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.64.0/23
Signature Algorithm: sha256WithRSAEncryption
95:2b:95:66:8f:bc:3e:75:0d:70:86:4e:67:5f:23:bf:66:d3:
ab:df:63:01:a6:da:03:39:bc:74:ba:70:ae:47:1e:11:f9:00:
dd:cc:7c:80:97:8e:c7:b5:e7:54:89:85:ac:5d:56:76:2d:34:
c0:72:e7:7d:8b:53:84:50:96:6f:7d:0b:6e:dc:11:9c:6a:21:
f9:35:34:b9:5b:4d:06:7d:b0:d2:e8:b2:8e:37:3a:fe:b4:a8:
0a:f5:f5:c7:f2:fe:5a:be:42:cc:1a:29:ca:b4:47:7a:1b:64:
27:d7:41:5c:a5:a6:32:4d:fd:a6:80:64:82:03:f5:cc:0d:20:
5d:39:07:d4:df:e0:b2:b2:c1:dd:0f:34:0a:4a:ee:38:04:66:
79:b1:23:cb:6c:36:5d:2b:4f:01:ff:99:d4:07:f5:71:5b:2a:
eb:ba:a0:ff:36:ea:36:17:96:6d:42:d8:72:d9:98:d4:c6:e4:
1b:dc:fd:63:86:da:b9:8c:d6:0e:15:24:d3:9a:4f:5d:fe:59:
c1:6a:39:cb:7d:93:c9:e8:2c:14:de:da:33:9d:8d:9b:25:fe:
0f:2a:4d:19:ff:a3:0f:48:d8:43:81:52:04:77:59:12:0d:4d:
71:a7:e9:6d:38:14:d3:e9:aa:0c:9b:ca:07:5e:ba:fb:a4:66:
8a:c2:84:bf
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUHa4z1VxkTN9ysb6eidca/lKuiCMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0Ew
OTBGNDU1MDAeFw0yNTAzMTMwMDE3NTdaFw0yNjAzMTIwMDIyNTdaMDMxMTAvBgNV
BAMTKEUzRDM1MDU4QUM1QzEyRTUzQjU0RDUxNzE1RURCNTIyMkZENkY0QjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCavRoCk1cWxdUnXLAuv4wzngIg
cwMCLMELJzS+GsPvihw311goiHg7Ewbgd7bPUODa8bgjFyGuQjTLUHBbcbDJVeGz
l+Bb/1uYQiBk6klrXv71BUYkUq+5nv/oLZnNE24kQTrPLan7GPnehzuIbehyl9bn
CTlD6TFiYTvOdOHK7erxQ7td+ksPoTcJUY7EM6xo3fAPUIHE/Yb8DxdnS9C9lxhr
NkGXLI2rsGTiVU+e2SYLGN8y65AT+v4twrSixjrfSQB4FbnIvkt30R4abcHRbEqq
QdWG3+gkQsh4qTrJygdHTLSFtQ1vrAUSPfS2M+MYte6lFHmPtwPuLj3vmUuPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU49NQWKxcEuU7VNUXFe21Ii/W9LUwHwYDVR0j
BBgwFoAUVx4u+iP+phGBBhFBBjXiOgkPRVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
NTY0YWJmYi0xOTYyLTQ0YTktODM3Ni1jYmZiMWVmY2RhYmEvMC81NzFFMkVGQTIz
RkVBNjExODEwNjExNDEwNjM1RTIzQTA5MEY0NTUwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTcxRTJFRkEyM0ZFQTYxMTgxMDYxMTQxMDYzNUUyM0EwOTBG
NDU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NjRhYmZiLTE5NjItNDRhOS04
Mzc2LWNiZmIxZWZjZGFiYS8wLzMxMzAzMzJlMzEzNTM1MmUzNjM0MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzYzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5tAMA0GCSqG
SIb3DQEBCwUAA4IBAQCVK5Vmj7w+dQ1whk5nXyO/ZtOr32MBptoDObx0unCuRx4R
+QDdzHyAl47HtedUiYWsXVZ2LTTAcud9i1OEUJZvfQtu3BGcaiH5NTS5W00GfbDS
6LKONzr+tKgK9fXH8v5avkLMGinKtEd6G2Qn10FcpaYyTf2mgGSCA/XMDSBdOQfU
3+CyssHdDzQKSu44BGZ5sSPLbDZdK08B/5nUB/VxWyrruqD/Nuo2F5ZtQthy2ZjU
xuQb3P1jhtq5jNYOFSTTmk9d/lnBajnLfZPJ6CwU3toznY2bJf4PKk0Z/6MPSNhD
gVIEd1kSDU1xp+ltOBTT6aoMm8oHXrr7pGaKwoS/
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:34:06 2025 by rpki-client