Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa
File: 3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa (raw, json)
Hash identifier: t013231ljoN5MqgS667UMhHVb+Ygc6wOUXYnCwrv2sQ=
Subject key identifier: 3A:3F:7C:88:5D:AB:3D:A3:BD:A4:C6:C3:CA:25:92:EB:36:94:61:87
Certificate issuer: /CN=926C43E6DACC18978406A2C9C57272491FFF9536
Certificate serial: 1B3DC0AA6A416F9E9DD9AD0380EEDEE28594F0D2
Authority key identifier: 92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa
Signing time: Thu 20 Jun 2024 10:00:01 +0000
ROA not before: Thu 20 Jun 2024 09:55:01 +0000
ROA not after: Thu 19 Jun 2025 10:00:01 +0000
asID: 141075
IP address blocks: 103.155.224.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:3d:c0:aa:6a:41:6f:9e:9d:d9:ad:03:80:ee:de:e2:85:94:f0:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926C43E6DACC18978406A2C9C57272491FFF9536
Validity
Not Before: Jun 20 09:55:01 2024 GMT
Not After : Jun 19 10:00:01 2025 GMT
Subject: CN=3A3F7C885DAB3DA3BDA4C6C3CA2592EB36946187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8e:93:6a:b1:75:ed:a3:31:89:fc:07:fa:d7:
0b:52:62:6c:d6:49:fc:af:62:31:34:78:a4:0a:91:
cc:5e:cf:76:57:85:7f:51:83:a7:e7:25:e4:1b:e9:
26:61:cb:ce:a6:d9:a3:cb:5d:a4:0d:55:d8:64:23:
09:b6:78:3c:a0:de:4f:29:30:96:bf:44:da:47:ad:
ce:90:f5:e1:96:b9:28:f9:ba:b9:03:f4:87:d6:cc:
93:7e:21:c4:f9:06:07:70:f6:6d:c1:c4:5e:a2:a6:
5d:dd:4c:16:14:73:4d:25:34:1b:fe:a1:ba:3c:3a:
9d:80:4d:15:62:cc:86:1f:3f:2b:95:28:24:76:d8:
01:1a:7a:0a:2e:28:48:e8:f2:db:e2:9c:d5:26:8d:
6c:f8:a9:59:a0:21:35:d7:0f:b9:b3:35:e4:7a:92:
c3:b8:8a:46:91:d8:07:2c:97:a8:f8:25:7a:b9:31:
fa:7a:1a:cd:b5:37:13:15:ac:e3:0b:d9:dd:84:44:
f8:8d:7a:2f:f2:24:4a:ee:58:b8:52:73:f2:d5:dd:
c7:72:ce:63:4c:a0:38:d2:74:95:80:f5:c8:29:c6:
19:ee:b9:47:93:d0:50:21:26:f2:15:1b:d8:a8:89:
c2:a5:75:1d:55:1d:6f:00:bb:f0:11:31:7f:3e:11:
3b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3F:7C:88:5D:AB:3D:A3:BD:A4:C6:C3:CA:25:92:EB:36:94:61:87
X509v3 Authority Key Identifier:
keyid:92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/3130332e3135352e3232342e302f32332d3234203d3e20313431303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.224.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:fc:27:43:0b:4d:1d:ee:2c:2f:52:f8:b1:dd:6b:13:2a:8b:
78:1d:c0:2d:45:aa:2a:3f:b6:17:39:1a:aa:0d:11:a6:0d:8d:
ef:0b:39:51:62:22:bc:2d:61:3b:0a:69:d1:b6:a9:d5:cf:ef:
ac:2f:c1:5a:5e:86:48:71:9c:4b:02:1f:67:81:2a:8d:2b:e1:
ff:35:0f:38:48:dc:57:3c:80:ff:11:4a:8e:3d:a2:ee:15:b2:
96:68:e0:da:85:87:a2:72:63:77:db:ef:d6:ff:d6:b0:7d:31:
fb:60:0f:12:53:cc:ae:db:25:f1:80:c6:d0:b9:b1:49:78:54:
7a:b2:6c:8b:8e:0f:0a:08:ff:c1:13:43:f0:a3:fb:cc:5a:98:
15:67:84:73:0e:1e:e3:9d:9e:0e:39:36:6b:a0:8d:2f:68:d0:
9b:7f:82:c2:d8:7b:bc:5d:3c:9c:28:73:51:96:83:47:ae:80:
0f:44:e2:d5:85:11:d3:cd:cc:05:1e:b0:44:93:cd:a4:37:15:
4d:71:6d:a1:68:30:c8:f9:7f:76:35:da:9e:34:53:ac:2f:d0:
01:83:51:5e:10:ba:55:4b:45:f0:55:a5:44:c1:f3:42:6f:a4:
80:6d:5f:8b:64:ef:1d:9a:0b:1a:c0:93:a9:71:63:fe:5d:3b:
6a:5a:2c:8b
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUGz3AqmpBb56d2a0DgO7e4oWU8NIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkx
RkZGOTUzNjAeFw0yNDA2MjAwOTU1MDFaFw0yNTA2MTkxMDAwMDFaMDMxMTAvBgNV
BAMTKDNBM0Y3Qzg4NURBQjNEQTNCREE0QzZDM0NBMjU5MkVCMzY5NDYxODcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDojpNqsXXtozGJ/Af61wtSYmzW
SfyvYjE0eKQKkcxez3ZXhX9Rg6fnJeQb6SZhy86m2aPLXaQNVdhkIwm2eDyg3k8p
MJa/RNpHrc6Q9eGWuSj5urkD9IfWzJN+IcT5Bgdw9m3BxF6ipl3dTBYUc00lNBv+
obo8Op2ATRVizIYfPyuVKCR22AEaegouKEjo8tvinNUmjWz4qVmgITXXD7mzNeR6
ksO4ikaR2Acsl6j4JXq5Mfp6Gs21NxMVrOML2d2ERPiNei/yJEruWLhSc/LV3cdy
zmNMoDjSdJWA9cgpxhnuuUeT0FAhJvIVG9ioicKldR1VHW8Au/ARMX8+ETuNAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUOj98iF2rPaO9pMbDyiWS6zaUYYcwHwYDVR0j
BBgwFoAUkmxD5trMGJeEBqLJxXJySR//lTYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
MzViYzEzMC05NjRhLTQ3YjgtOTIyYi04MzA2OWRlNjdhN2MvMC85MjZDNDNFNkRB
Q0MxODk3ODQwNkEyQzlDNTcyNzI0OTFGRkY5NTM2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkxRkZG
OTUzNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzNWJjMTMwLTk2NGEtNDdiOC05
MjJiLTgzMDY5ZGU2N2E3Yy8wLzMxMzAzMzJlMzEzNTM1MmUzMjMyMzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+AwDQYJ
KoZIhvcNAQELBQADggEBAKX8J0MLTR3uLC9S+LHdaxMqi3gdwC1Fqio/thc5GqoN
EaYNje8LOVFiIrwtYTsKadG2qdXP76wvwVpehkhxnEsCH2eBKo0r4f81DzhI3Fc8
gP8RSo49ou4VspZo4NqFh6JyY3fb79b/1rB9MftgDxJTzK7bJfGAxtC5sUl4VHqy
bIuODwoI/8ETQ/Cj+8xamBVnhHMOHuOdng45NmugjS9o0Jt/gsLYe7xdPJwoc1GW
g0eugA9E4tWFEdPNzAUesESTzaQ3FU1xbaFoMMj5f3Y12p40U6wv0AGDUV4QulVL
RfBVpUTB80JvpIBtX4tk7x2aCxrAk6lxY/5dO2paLIs=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:35 2025 by rpki-client