Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39332e302f32342d3234203d3e20313333383233.roa
File: 3130332e35342e39332e302f32342d3234203d3e20313333383233.roa (raw, json)
Hash identifier: /sxwdh5+OtxXAGTYR7aj++1jHVBESLDkQaA5vts3J0c=
Subject key identifier: 59:97:B8:2C:E6:02:A5:13:F1:FF:1A:12:34:DA:30:B6:41:5F:B8:B3
Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7
Certificate serial: 757DB4F008C10D7D6B16C47F61B3855C026F11F8
Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39332e302f32342d3234203d3e20313333383233.roa
Signing time: Fri 09 Aug 2024 08:00:02 +0000
ROA not before: Fri 09 Aug 2024 07:55:02 +0000
ROA not after: Fri 08 Aug 2025 08:00:02 +0000
asID: 133823
IP address blocks: 103.54.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:7d:b4:f0:08:c1:0d:7d:6b:16:c4:7f:61:b3:85:5c:02:6f:11:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7
Validity
Not Before: Aug 9 07:55:02 2024 GMT
Not After : Aug 8 08:00:02 2025 GMT
Subject: CN=5997B82CE602A513F1FF1A1234DA30B6415FB8B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e1:e6:c4:38:e9:c1:46:b8:af:58:b6:ea:59:
71:1d:49:f7:9d:30:25:41:44:0b:10:1c:de:d7:7c:
41:0d:e8:2b:92:80:cf:f1:89:21:2a:d1:34:e4:08:
b8:a1:2b:98:4e:c1:71:ee:4f:36:c0:0f:6b:9a:81:
39:3d:61:78:76:88:88:1a:39:e4:63:45:d8:13:6f:
98:7a:88:d0:4c:f8:57:28:20:f4:9a:9d:a4:d9:f1:
7c:ae:31:59:af:c0:f0:90:65:e5:08:ed:9a:ba:b4:
63:46:6f:42:83:96:82:08:bb:2e:a3:95:81:76:df:
77:ab:fd:14:f7:1a:bd:2a:ab:31:7f:37:89:27:24:
76:d3:5d:eb:45:7a:7a:6f:ce:00:3b:6a:59:80:a6:
15:c7:3b:d8:cb:a3:f6:e6:d7:71:7b:f5:1b:d4:99:
cb:19:b6:15:52:07:b2:5a:11:b3:7e:40:10:68:5a:
19:20:e8:fe:75:b9:e5:25:85:5a:54:ce:b4:05:28:
51:35:b2:61:ed:ca:c2:4f:ff:a3:23:f5:9d:6b:13:
29:7f:32:0c:5d:73:27:51:aa:cf:7a:b7:bb:06:46:
b1:c1:4d:3f:a9:85:c2:dd:35:bd:a8:df:36:64:03:
74:21:19:5b:88:45:77:3c:a1:fa:69:b5:15:c2:e8:
54:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:97:B8:2C:E6:02:A5:13:F1:FF:1A:12:34:DA:30:B6:41:5F:B8:B3
X509v3 Authority Key Identifier:
keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e35342e39332e302f32342d3234203d3e20313333383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.93.0/24
Signature Algorithm: sha256WithRSAEncryption
78:c1:c5:18:9d:13:58:37:e2:1e:89:24:7e:39:71:ca:6b:90:
c0:ba:9d:8c:7e:86:dc:1e:7c:e7:86:71:10:77:05:d6:d1:8f:
98:6a:c1:f2:4e:ba:6e:6c:17:14:9e:e1:eb:4d:43:7a:6b:6b:
60:0d:68:7c:ac:3e:e7:fe:a0:ec:ef:c5:6f:94:df:69:4d:69:
d6:9b:78:5d:a3:bf:8a:33:2b:8c:60:03:bf:0e:70:7d:a5:2e:
1a:1b:03:ef:65:5f:df:5f:87:9a:65:2f:c1:bd:c0:85:33:7a:
40:00:3a:dd:3a:d1:51:e1:5a:06:33:67:c8:75:ce:a2:5e:00:
64:6f:36:d9:9c:e3:66:11:ff:a0:35:f6:2a:ac:5f:0e:7d:84:
b9:d6:8e:7e:7f:cc:e8:1c:e7:99:be:5c:2d:30:73:fe:58:77:
b8:55:c3:e6:09:a1:8c:d2:67:d9:6e:17:a9:6b:4d:5a:9c:33:
1f:7f:62:ed:c0:2e:a7:05:73:f3:07:c5:3d:c0:1f:c4:ce:bc:
5f:b8:a5:72:3e:ad:d1:2d:ec:75:29:fd:00:82:82:ec:a0:24:
9e:f2:3f:42:74:03:f1:18:70:d6:5e:06:6e:7a:4d:3d:d9:bd:
9d:d6:ce:fa:e8:4d:20:7d:24:d2:44:76:3d:cf:fa:16:75:15:
82:86:06:04
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUdX208AjBDX1rFsR/YbOFXAJvEfgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3
NEM4MUFCNzAeFw0yNDA4MDkwNzU1MDJaFw0yNTA4MDgwODAwMDJaMDMxMTAvBgNV
BAMTKDU5OTdCODJDRTYwMkE1MTNGMUZGMUExMjM0REEzMEI2NDE1RkI4QjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC54ebEOOnBRrivWLbqWXEdSfed
MCVBRAsQHN7XfEEN6CuSgM/xiSEq0TTkCLihK5hOwXHuTzbAD2uagTk9YXh2iIga
OeRjRdgTb5h6iNBM+FcoIPSanaTZ8XyuMVmvwPCQZeUI7Zq6tGNGb0KDloIIuy6j
lYF233er/RT3Gr0qqzF/N4knJHbTXetFenpvzgA7almAphXHO9jLo/bm13F79RvU
mcsZthVSB7JaEbN+QBBoWhkg6P51ueUlhVpUzrQFKFE1smHtysJP/6Mj9Z1rEyl/
MgxdcydRqs96t7sGRrHBTT+phcLdNb2o3zZkA3QhGVuIRXc8ofpptRXC6FSBAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUWZe4LOYCpRPx/xoSNNowtkFfuLMwHwYDVR0j
BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF
M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4
MUFCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04
YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzUzNDJlMzkzMzJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc2XTANBgkqhkiG
9w0BAQsFAAOCAQEAeMHFGJ0TWDfiHokkfjlxymuQwLqdjH6G3B5854ZxEHcF1tGP
mGrB8k66bmwXFJ7h601DemtrYA1ofKw+5/6g7O/Fb5TfaU1p1pt4XaO/ijMrjGAD
vw5wfaUuGhsD72Vf31+HmmUvwb3AhTN6QAA63TrRUeFaBjNnyHXOol4AZG822Zzj
ZhH/oDX2KqxfDn2EudaOfn/M6Bznmb5cLTBz/lh3uFXD5gmhjNJn2W4XqWtNWpwz
H39i7cAupwVz8wfFPcAfxM68X7ilcj6t0S3sdSn9AIKC7KAknvI/QnQD8Rhw1l4G
bnpNPdm9ndbO+uhNIH0k0kR2Pc/6FnUVgoYGBA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:46 2025 by rpki-client