Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa
File: 3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa (raw, json)
Hash identifier: hl4szXnnru1c5umJi6R9hr5A+jsniS/G8NDW/8whsA8=
Subject key identifier: F6:A4:78:EF:C8:A5:A1:8C:94:CF:78:B1:03:46:A2:A0:A8:7D:E5:DF
Certificate issuer: /CN=81498B85C0E2937290B9B2119B132DEADBB24A5C
Certificate serial: 1B66797FDB18AE6CC0E06C2F0CB1FFB37536B2F6
Authority key identifier: 81:49:8B:85:C0:E2:93:72:90:B9:B2:11:9B:13:2D:EA:DB:B2:4A:5C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81498B85C0E2937290B9B2119B132DEADBB24A5C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa
Signing time: Thu 20 Jun 2024 16:00:01 +0000
ROA not before: Thu 20 Jun 2024 15:55:01 +0000
ROA not after: Thu 19 Jun 2025 16:00:01 +0000
asID: 141147
IP address blocks: 103.159.224.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:66:79:7f:db:18:ae:6c:c0:e0:6c:2f:0c:b1:ff:b3:75:36:b2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81498B85C0E2937290B9B2119B132DEADBB24A5C
Validity
Not Before: Jun 20 15:55:01 2024 GMT
Not After : Jun 19 16:00:01 2025 GMT
Subject: CN=F6A478EFC8A5A18C94CF78B10346A2A0A87DE5DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:d5:7a:e4:29:ed:96:9f:de:11:ba:5b:23:
a5:1a:88:b6:58:07:97:82:6d:6f:3b:8f:04:34:2b:
fe:67:ed:cf:74:d0:5d:ae:0c:92:ee:db:81:cc:d3:
2b:cb:27:88:74:23:f8:ed:8e:ef:c6:03:59:65:45:
e4:c2:89:23:43:53:f5:1e:c9:1c:fd:26:fe:ff:af:
e6:50:19:2e:44:97:cd:fb:20:5c:de:6b:6e:e8:3d:
17:23:06:7d:73:5b:42:ec:04:26:5b:5d:95:8b:7e:
f7:c5:3c:6f:4a:4b:87:2c:a3:d7:82:7d:78:2d:c8:
2f:f2:73:6d:99:9b:68:a6:d0:cd:9d:78:02:94:d6:
63:1c:aa:af:c7:49:47:be:5b:ab:25:21:ca:8f:6a:
32:4e:83:78:ee:93:bc:26:7a:d9:56:46:12:a9:32:
70:94:97:9a:1e:3e:3a:12:ff:1f:7e:5c:56:a3:7f:
ac:26:e1:f1:f5:55:42:b5:be:33:df:5f:86:2d:55:
db:bd:87:a2:95:c3:4d:83:25:4d:81:1f:f6:4a:9d:
71:c3:a0:98:fd:45:bd:fd:b3:c1:51:46:d6:db:ed:
80:73:1d:2f:f4:fc:71:4e:8b:3c:51:5e:52:06:69:
19:60:a2:8b:b8:17:21:eb:ae:40:ba:9c:3b:61:96:
ca:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A4:78:EF:C8:A5:A1:8C:94:CF:78:B1:03:46:A2:A0:A8:7D:E5:DF
X509v3 Authority Key Identifier:
keyid:81:49:8B:85:C0:E2:93:72:90:B9:B2:11:9B:13:2D:EA:DB:B2:4A:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/81498B85C0E2937290B9B2119B132DEADBB24A5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81498B85C0E2937290B9B2119B132DEADBB24A5C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a48b222-6ded-428a-888f-10454b0880c2/0/3130332e3135392e3232342e302f32332d3234203d3e20313431313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.159.224.0/23
Signature Algorithm: sha256WithRSAEncryption
55:97:5d:22:7a:cf:a3:dc:4d:ab:ee:bf:ad:2c:24:7b:23:5d:
ba:6b:c2:4f:cc:a9:75:80:27:30:75:c0:ad:de:8a:a6:cf:fb:
cd:ab:00:fa:37:7e:89:a8:36:74:5f:69:61:10:73:5b:17:cd:
ef:ee:bb:e0:0b:ed:24:33:1c:f2:37:76:a5:08:79:02:60:69:
1c:6e:5c:7b:3f:d7:a1:d8:e8:a0:6f:56:58:39:2c:41:3e:e3:
bb:60:54:33:31:9d:38:c9:4e:7d:a5:56:4c:79:52:73:a9:e8:
2b:fb:2b:95:20:52:bb:aa:c4:2a:20:5b:bd:6d:f8:59:ea:ed:
87:29:07:4c:d0:7f:28:97:77:89:ea:ef:36:ff:46:9a:27:d4:
6c:3e:90:25:e2:05:92:78:fe:db:b2:20:11:77:52:f6:28:3a:
09:40:3d:3b:ab:a9:f2:44:99:af:2a:c7:30:85:c7:4e:3e:59:
f9:1d:12:74:3c:23:8d:e6:42:a8:97:0c:65:8c:9a:20:bc:eb:
89:ff:a4:4d:67:bf:86:6f:d8:49:8a:7c:d8:32:6d:8b:28:9d:
a0:4a:c1:cb:0f:de:91:9b:28:0d:eb:08:0f:d3:d1:34:2c:22:
9f:e1:fd:39:19:a6:31:62:d0:a1:8d:d4:33:78:bd:44:51:62:
cc:4b:90:3f
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUG2Z5f9sYrmzA4GwvDLH/s3U2svYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODE0OThCODVDMEUyOTM3MjkwQjlCMjExOUIxMzJERUFE
QkIyNEE1QzAeFw0yNDA2MjAxNTU1MDFaFw0yNTA2MTkxNjAwMDFaMDMxMTAvBgNV
BAMTKEY2QTQ3OEVGQzhBNUExOEM5NENGNzhCMTAzNDZBMkEwQTg3REU1REYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt+dV65Cntlp/eEbpbI6UaiLZY
B5eCbW87jwQ0K/5n7c900F2uDJLu24HM0yvLJ4h0I/jtju/GA1llReTCiSNDU/Ue
yRz9Jv7/r+ZQGS5El837IFzea27oPRcjBn1zW0LsBCZbXZWLfvfFPG9KS4cso9eC
fXgtyC/yc22Zm2im0M2deAKU1mMcqq/HSUe+W6slIcqPajJOg3juk7wmetlWRhKp
MnCUl5oePjoS/x9+XFajf6wm4fH1VUK1vjPfX4YtVdu9h6KVw02DJU2BH/ZKnXHD
oJj9Rb39s8FRRtbb7YBzHS/0/HFOizxRXlIGaRlgoou4FyHrrkC6nDthlsqfAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU9qR478iloYyUz3ixA0aioKh95d8wHwYDVR0j
BBgwFoAUgUmLhcDik3KQubIRmxMt6tuySlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YTQ4YjIyMi02ZGVkLTQyOGEtODg4Zi0xMDQ1NGIwODgwYzIvMC84MTQ5OEI4NUMw
RTI5MzcyOTBCOUIyMTE5QjEzMkRFQURCQjI0QTVDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODE0OThCODVDMEUyOTM3MjkwQjlCMjExOUIxMzJERUFEQkIy
NEE1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhNDhiMjIyLTZkZWQtNDI4YS04
ODhmLTEwNDU0YjA4ODBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMyMzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn+AwDQYJ
KoZIhvcNAQELBQADggEBAFWXXSJ6z6PcTavuv60sJHsjXbprwk/MqXWAJzB1wK3e
iqbP+82rAPo3fomoNnRfaWEQc1sXze/uu+AL7SQzHPI3dqUIeQJgaRxuXHs/16HY
6KBvVlg5LEE+47tgVDMxnTjJTn2lVkx5UnOp6Cv7K5UgUruqxCogW71t+Fnq7Ycp
B0zQfyiXd4nq7zb/Rpon1Gw+kCXiBZJ4/tuyIBF3UvYoOglAPTurqfJEma8qxzCF
x04+WfkdEnQ8I43mQqiXDGWMmiC864n/pE1nv4Zv2EmKfNgybYsonaBKwcsP3pGb
KA3rCA/T0TQsIp/h/TkZpjFi0KGN1DN4vURRYsxLkD8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:10:11 2025 by rpki-client