Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa
File: 3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa (raw, json)
Hash identifier: dR97kutQJDfdqRMw3g6v2Ivop1oOeZPQjWSUUweIFKQ=
Subject key identifier: 37:1B:0B:03:DC:80:CA:D4:BB:18:51:BB:DA:0C:CF:2F:8E:D1:7B:AC
Certificate issuer: /CN=9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F
Certificate serial: 335BD9A83F647356AC4C1F8F53B45413B354AF32
Authority key identifier: 9A:F7:BD:04:7F:3C:54:F9:CE:58:26:DC:91:96:C2:A3:2E:4A:7C:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa
Signing time: Wed 25 Sep 2024 12:00:00 +0000
ROA not before: Wed 25 Sep 2024 11:55:00 +0000
ROA not after: Wed 24 Sep 2025 12:00:00 +0000
asID: 151553
IP address blocks: 103.255.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:5b:d9:a8:3f:64:73:56:ac:4c:1f:8f:53:b4:54:13:b3:54:af:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F
Validity
Not Before: Sep 25 11:55:00 2024 GMT
Not After : Sep 24 12:00:00 2025 GMT
Subject: CN=371B0B03DC80CAD4BB1851BBDA0CCF2F8ED17BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2d:73:bb:85:b5:d4:59:72:91:53:0e:4f:33:
a5:c4:26:f5:00:cc:4a:0e:27:5d:80:e6:ac:81:94:
55:f8:ce:58:29:cd:73:70:0d:c7:c6:d4:c7:91:ba:
a1:83:77:a3:b2:69:2f:84:0e:af:d8:ed:d4:ef:d4:
c7:ff:fc:30:c9:60:3e:e4:62:88:4f:35:64:1f:50:
7b:ba:1d:42:93:91:29:30:f5:56:47:2e:02:52:96:
c1:26:66:d9:32:5c:1e:bb:65:b4:08:b7:b7:93:5f:
59:eb:68:30:a9:47:b2:23:c9:49:e8:ae:b4:44:be:
48:ae:a6:66:50:66:5c:48:c7:a3:15:54:a0:e1:52:
68:12:fa:82:41:fe:98:59:94:53:0e:be:bf:09:78:
57:b8:23:a3:97:c3:10:c5:8f:66:cc:8c:83:b8:78:
d7:ea:5c:64:ea:84:29:ce:5b:a9:b4:93:e4:ac:48:
cd:8f:ce:7b:db:bb:2e:cf:8a:13:c3:27:75:3f:8e:
76:bc:12:89:d7:df:0c:45:95:f8:d3:0e:59:21:1d:
a7:b3:00:4d:29:79:c6:6a:92:cb:c1:bb:b5:30:10:
4f:42:b7:46:10:60:97:3a:74:5a:7d:90:32:9f:f4:
1d:34:8e:5e:f2:cf:e2:e4:b6:8a:2e:64:f2:8d:06:
f4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:1B:0B:03:DC:80:CA:D4:BB:18:51:BB:DA:0C:CF:2F:8E:D1:7B:AC
X509v3 Authority Key Identifier:
keyid:9A:F7:BD:04:7F:3C:54:F9:CE:58:26:DC:91:96:C2:A3:2E:4A:7C:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF7BD047F3C54F9CE5826DC9196C2A32E4A7C5F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/357fb17e-9d58-4d51-846e-0a84c8699142/0/3130332e3235352e39392e302f32342d3234203d3e20313531353533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.255.99.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:55:dc:f0:56:bc:c2:bc:5f:98:37:cb:7a:33:bc:e5:fb:06:
ca:83:a9:a4:45:68:ac:c2:11:81:ff:d2:98:e4:23:9a:b8:8e:
41:cd:62:b7:00:65:d0:42:68:85:65:5d:0e:13:9c:f4:aa:40:
2e:89:bf:ba:a1:35:74:44:30:42:1f:b3:3c:17:79:b0:5c:4c:
c3:4a:0e:e3:d1:4a:7b:1c:f4:aa:47:e0:d3:ac:7d:02:f8:3f:
d4:99:c8:82:54:fc:97:39:a7:64:d2:6a:14:74:c7:68:79:8e:
33:9a:8c:f3:4c:9a:24:0b:98:1d:81:fe:8a:00:95:63:11:64:
4a:59:6a:1a:d1:dd:9e:5b:86:83:a6:95:2d:98:c3:42:f5:47:
43:bb:19:a4:6c:af:92:cd:86:63:3d:d8:87:d5:7a:4e:23:f5:
18:8f:0c:bb:5f:31:95:a5:7d:7f:19:50:79:f9:17:49:4a:d1:
80:26:ff:99:19:2a:de:0d:2e:14:7b:c6:c3:93:c8:be:4e:a1:
c2:28:1b:65:68:db:81:1e:9c:87:59:d2:36:1f:40:7f:e2:23:
c8:09:8c:fd:9b:a8:68:0d:2c:8f:cc:57:7e:7b:23:15:bf:d0:
02:50:43:92:ff:e1:47:14:2f:a2:75:3c:76:b5:6d:c3:4f:b7:
5e:69:59:f6
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUM1vZqD9kc1asTB+PU7RUE7NUrzIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUFGN0JEMDQ3RjNDNTRGOUNFNTgyNkRDOTE5NkMyQTMy
RTRBN0M1RjAeFw0yNDA5MjUxMTU1MDBaFw0yNTA5MjQxMjAwMDBaMDMxMTAvBgNV
BAMTKDM3MUIwQjAzREM4MENBRDRCQjE4NTFCQkRBMENDRjJGOEVEMTdCQUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmLXO7hbXUWXKRUw5PM6XEJvUA
zEoOJ12A5qyBlFX4zlgpzXNwDcfG1MeRuqGDd6OyaS+EDq/Y7dTv1Mf//DDJYD7k
YohPNWQfUHu6HUKTkSkw9VZHLgJSlsEmZtkyXB67ZbQIt7eTX1nraDCpR7IjyUno
rrREvkiupmZQZlxIx6MVVKDhUmgS+oJB/phZlFMOvr8JeFe4I6OXwxDFj2bMjIO4
eNfqXGTqhCnOW6m0k+SsSM2Pznvbuy7PihPDJ3U/jna8EonX3wxFlfjTDlkhHaez
AE0pecZqksvBu7UwEE9Ct0YQYJc6dFp9kDKf9B00jl7yz+LktoouZPKNBvRZAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUNxsLA9yAytS7GFG72gzPL47Re6wwHwYDVR0j
BBgwFoAUmve9BH88VPnOWCbckZbCoy5KfF8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
NTdmYjE3ZS05ZDU4LTRkNTEtODQ2ZS0wYTg0Yzg2OTkxNDIvMC85QUY3QkQwNDdG
M0M1NEY5Q0U1ODI2REM5MTk2QzJBMzJFNEE3QzVGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUFGN0JEMDQ3RjNDNTRGOUNFNTgyNkRDOTE5NkMyQTMyRTRB
N0M1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1N2ZiMTdlLTlkNTgtNGQ1MS04
NDZlLTBhODRjODY5OTE0Mi8wLzMxMzAzMzJlMzIzNTM1MmUzOTM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/9jMA0GCSqG
SIb3DQEBCwUAA4IBAQCnVdzwVrzCvF+YN8t6M7zl+wbKg6mkRWiswhGB/9KY5COa
uI5BzWK3AGXQQmiFZV0OE5z0qkAuib+6oTV0RDBCH7M8F3mwXEzDSg7j0Up7HPSq
R+DTrH0C+D/UmciCVPyXOadk0moUdMdoeY4zmozzTJokC5gdgf6KAJVjEWRKWWoa
0d2eW4aDppUtmMNC9UdDuxmkbK+SzYZjPdiH1XpOI/UYjwy7XzGVpX1/GVB5+RdJ
StGAJv+ZGSreDS4Ue8bDk8i+TqHCKBtlaNuBHpyHWdI2H0B/4iPICYz9m6hoDSyP
zFd+eyMVv9ACUEOS/+FHFC+idTx2tW3DT7deaVn2
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:23:23 2025 by rpki-client