Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa
File: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (raw, json)
Hash identifier: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=
Subject key identifier: 8B:A8:BE:05:9E:E2:AA:36:AA:52:DF:24:AE:0A:6A:D4:65:6A:75:56
Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24
Certificate serial: 5DDB734D54A3AE4E0EE5945AA8F67A9484C46FC1
Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa
Signing time: Wed 12 Feb 2025 00:00:01 +0000
ROA not before: Tue 11 Feb 2025 23:55:01 +0000
ROA not after: Wed 11 Feb 2026 00:00:01 +0000
asID: 150966
IP address blocks: 103.130.82.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:db:73:4d:54:a3:ae:4e:0e:e5:94:5a:a8:f6:7a:94:84:c4:6f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24
Validity
Not Before: Feb 11 23:55:01 2025 GMT
Not After : Feb 11 00:00:01 2026 GMT
Subject: CN=8BA8BE059EE2AA36AA52DF24AE0A6AD4656A7556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a6:64:a9:01:b0:32:3e:11:43:d0:de:95:82:
0f:b7:6d:b6:da:be:db:be:46:89:16:03:d0:4b:39:
8e:20:9d:7e:de:d7:5c:a4:a6:8f:f5:97:53:e9:e6:
4f:9e:72:cb:54:04:2e:ec:b5:eb:ca:55:e9:e3:76:
6d:e2:aa:71:9b:bd:a0:70:7d:bd:a4:4d:e5:e5:0b:
70:b2:8d:57:a0:d5:09:9d:c6:1c:58:68:3c:3d:63:
2d:82:f3:b3:64:b4:fb:df:98:6c:33:cc:7c:3d:70:
bf:0d:2b:18:a4:d1:68:1a:53:bd:f0:47:b1:73:1e:
9e:cc:1c:bd:74:c0:c3:09:b2:9c:91:a4:69:6c:ed:
91:a7:48:85:96:15:22:d2:64:80:ca:f5:d2:7a:28:
1f:ae:9b:e8:29:28:3b:71:30:e0:07:e6:87:6d:aa:
a1:d5:f6:e0:06:ed:87:26:20:6e:3a:28:c0:38:52:
70:1b:39:94:cb:b5:c4:52:2b:1e:f2:04:2f:18:32:
4f:75:77:45:bb:e7:4a:26:4e:e3:67:2b:91:06:8b:
49:0e:ff:2c:8e:e2:99:7f:0a:ee:22:e9:db:fc:67:
b9:cc:7f:2b:57:7a:c9:72:2b:ab:79:2e:68:a4:77:
78:54:88:3b:fb:8e:84:aa:06:78:d8:4c:45:04:53:
cb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A8:BE:05:9E:E2:AA:36:AA:52:DF:24:AE:0A:6A:D4:65:6A:75:56
X509v3 Authority Key Identifier:
keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.82.0/23
Signature Algorithm: sha256WithRSAEncryption
53:02:17:67:99:57:be:5a:52:0d:40:90:83:82:36:69:51:c9:
76:eb:3a:16:33:2f:61:d6:b9:71:e6:8d:ae:de:b3:bf:f8:f1:
7c:b9:9b:cc:7b:9c:ae:f5:1d:77:ba:49:1f:f4:db:76:09:bd:
87:bc:a9:a8:00:d4:cd:96:51:d9:0b:69:40:fd:c4:53:2b:83:
c6:ce:3f:aa:8e:b2:1c:fb:55:38:7c:5e:63:cd:53:fa:d5:b3:
f4:04:24:17:2f:c6:8a:02:d4:dc:a8:65:f4:ae:c2:4a:c3:09:
63:95:6f:c6:83:04:29:f7:2b:2e:00:f5:99:fd:c0:c0:a5:4c:
ff:5e:1e:09:9e:bb:fe:84:99:0b:f7:1c:0f:4e:16:9f:f9:3a:
b6:28:35:17:fe:ff:e6:6f:20:3b:ee:c7:16:af:4f:cc:6a:e1:
2a:24:80:45:d8:7f:cc:48:ef:c7:c2:68:9e:a7:76:38:4b:7a:
36:75:92:1b:ff:06:ed:1a:bd:22:f6:fa:4d:87:06:77:9a:af:
75:52:a8:a8:68:71:c8:ac:6d:d4:35:37:23:f0:14:27:32:f9:
bc:5b:db:d8:75:bb:34:22:26:95:29:f0:5f:f6:b4:5b:2e:20:
51:eb:92:5e:ff:80:30:1b:09:fd:a2:34:70:90:68:b3:16:c4:
62:20:ec:e9
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUXdtzTVSjrk4O5ZRaqPZ6lITEb8EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0
RTRBMkMyNDAeFw0yNTAyMTEyMzU1MDFaFw0yNjAyMTEwMDAwMDFaMDMxMTAvBgNV
BAMTKDhCQThCRTA1OUVFMkFBMzZBQTUyREYyNEFFMEE2QUQ0NjU2QTc1NTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNpmSpAbAyPhFD0N6Vgg+3bbba
vtu+RokWA9BLOY4gnX7e11ykpo/1l1Pp5k+ecstUBC7stevKVenjdm3iqnGbvaBw
fb2kTeXlC3CyjVeg1QmdxhxYaDw9Yy2C87NktPvfmGwzzHw9cL8NKxik0WgaU73w
R7FzHp7MHL10wMMJspyRpGls7ZGnSIWWFSLSZIDK9dJ6KB+um+gpKDtxMOAH5odt
qqHV9uAG7YcmIG46KMA4UnAbOZTLtcRSKx7yBC8YMk91d0W750omTuNnK5EGi0kO
/yyO4pl/Cu4i6dv8Z7nMfytXeslyK6t5Lmikd3hUiDv7joSqBnjYTEUEU8vRAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUi6i+BZ7iqjaqUt8krgpq1GVqdVYwHwYDVR0j
BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0
NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB
MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05
MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMyMmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4JSMA0GCSqG
SIb3DQEBCwUAA4IBAQBTAhdnmVe+WlINQJCDgjZpUcl26zoWMy9h1rlx5o2u3rO/
+PF8uZvMe5yu9R13ukkf9Nt2Cb2HvKmoANTNllHZC2lA/cRTK4PGzj+qjrIc+1U4
fF5jzVP61bP0BCQXL8aKAtTcqGX0rsJKwwljlW/GgwQp9ysuAPWZ/cDApUz/Xh4J
nrv+hJkL9xwPThaf+Tq2KDUX/v/mbyA77scWr0/MauEqJIBF2H/MSO/Hwmiep3Y4
S3o2dZIb/wbtGr0i9vpNhwZ3mq91UqioaHHIrG3UNTcj8BQnMvm8W9vYdbs0IiaV
KfBf9rRbLiBR65Je/4AwGwn9ojRwkGizFsRiIOzp
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:18 2025 by rpki-client