Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa
File: 3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa (raw, json)
Hash identifier: tbt+hpy8ToUXUjWyR8QE4BU+KE7C2NtbzZcO6JiudhY=
Subject key identifier: 87:A1:61:54:E5:AD:0D:92:0A:5B:F1:0B:EB:C2:99:B1:53:9D:57:5A
Certificate issuer: /CN=19280B8F5AA4FBDEC679C351EB040D284CF791BE
Certificate serial: 31027924D0ABABFBE899CC249610001F4F176FF5
Authority key identifier: 19:28:0B:8F:5A:A4:FB:DE:C6:79:C3:51:EB:04:0D:28:4C:F7:91:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19280B8F5AA4FBDEC679C351EB040D284CF791BE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa
Signing time: Tue 24 Dec 2024 16:00:00 +0000
ROA not before: Tue 24 Dec 2024 15:55:00 +0000
ROA not after: Tue 23 Dec 2025 16:00:00 +0000
asID: 150517
IP address blocks: 103.68.214.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:02:79:24:d0:ab:ab:fb:e8:99:cc:24:96:10:00:1f:4f:17:6f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19280B8F5AA4FBDEC679C351EB040D284CF791BE
Validity
Not Before: Dec 24 15:55:00 2024 GMT
Not After : Dec 23 16:00:00 2025 GMT
Subject: CN=87A16154E5AD0D920A5BF10BEBC299B1539D575A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:44:b2:2d:a8:37:2f:0b:e0:42:62:c0:fa:c6:
af:89:05:1f:85:42:6e:cd:89:d7:65:df:47:f0:0b:
14:a9:b3:a3:ea:df:7c:75:60:b5:b7:9a:bd:be:85:
45:55:2f:27:0e:0a:67:9a:22:67:f0:0b:a2:9b:20:
06:3c:e7:73:3d:ff:25:06:0b:37:5b:2c:41:98:c8:
df:24:67:1e:30:a6:4c:0d:90:b7:72:05:1e:b2:e5:
46:91:ca:40:ff:5a:77:f0:d1:95:19:5b:7c:6a:1c:
8b:3d:de:54:05:b2:53:15:fb:80:7c:4a:08:b1:2f:
36:0e:71:35:d6:00:43:28:3b:00:97:6e:d3:88:e4:
8f:72:39:5d:75:0e:7b:3d:02:47:29:7e:a9:0d:b0:
c3:0a:0d:d3:bb:82:5a:91:df:62:0f:9e:46:0a:45:
64:2f:13:1e:95:b3:6f:7a:51:76:8b:86:82:8c:85:
df:cf:8a:06:a3:59:f8:bc:47:91:17:c6:bb:d1:1e:
68:98:b2:e2:32:b0:3b:d4:6a:fb:49:e2:7e:0a:3a:
f6:94:27:eb:bc:24:32:83:74:cd:d6:29:d9:44:a4:
b4:4a:2b:90:41:57:2d:da:b0:2b:ca:77:12:a1:bd:
de:52:21:1a:9c:eb:ee:35:dd:6e:c1:20:91:f5:2f:
92:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A1:61:54:E5:AD:0D:92:0A:5B:F1:0B:EB:C2:99:B1:53:9D:57:5A
X509v3 Authority Key Identifier:
keyid:19:28:0B:8F:5A:A4:FB:DE:C6:79:C3:51:EB:04:0D:28:4C:F7:91:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/19280B8F5AA4FBDEC679C351EB040D284CF791BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19280B8F5AA4FBDEC679C351EB040D284CF791BE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ebf63ed-d450-477e-b31b-af92b1726d2e/0/3130332e36382e3231342e302f32332d3234203d3e20313530353137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.68.214.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:23:0a:58:98:e7:10:e8:9b:59:2e:51:03:31:5e:82:24:f0:
ea:c3:bc:67:b9:7c:fa:59:e3:c0:7c:be:4f:82:e4:1a:f4:7a:
c0:4c:66:aa:b1:00:50:f9:cf:b4:8e:2b:95:8a:57:68:1e:48:
8a:09:17:e6:56:e5:1d:cc:8e:05:99:f3:87:7e:0e:5d:73:bd:
43:09:ea:a8:29:e8:e3:d4:aa:a9:0e:51:b4:b9:60:79:32:58:
a7:dd:43:14:30:3a:08:5c:b5:c3:9c:3b:e9:0e:e0:09:a9:67:
b7:93:3f:53:9d:92:c7:84:23:a9:ec:e3:ba:7d:66:8d:4d:18:
0f:75:88:d2:71:69:b4:4b:b4:24:82:cd:21:f1:a3:de:bf:90:
ed:a1:a6:9d:ed:d6:b6:47:07:0f:23:14:a8:50:39:1a:07:2a:
0f:f5:b0:4d:c3:c8:2b:2b:5c:89:85:c0:bd:73:b1:e0:4b:34:
c6:4f:6a:21:4d:33:e1:4f:b6:60:60:50:ac:be:37:40:b9:e2:
5e:a5:13:88:6a:37:ca:b8:4e:af:0f:3f:df:06:0c:a0:f5:49:
20:e0:49:4f:97:1a:f7:45:c2:bf:1b:a2:08:67:13:10:2f:14:
3d:a4:d1:75:66:c8:7a:5e:4d:18:00:57:25:98:af:72:bc:74:
66:74:7b:7e
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUMQJ5JNCrq/vomcwklhAAH08Xb/UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTkyODBCOEY1QUE0RkJERUM2NzlDMzUxRUIwNDBEMjg0
Q0Y3OTFCRTAeFw0yNDEyMjQxNTU1MDBaFw0yNTEyMjMxNjAwMDBaMDMxMTAvBgNV
BAMTKDg3QTE2MTU0RTVBRDBEOTIwQTVCRjEwQkVCQzI5OUIxNTM5RDU3NUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtRLItqDcvC+BCYsD6xq+JBR+F
Qm7Niddl30fwCxSps6Pq33x1YLW3mr2+hUVVLycOCmeaImfwC6KbIAY853M9/yUG
CzdbLEGYyN8kZx4wpkwNkLdyBR6y5UaRykD/Wnfw0ZUZW3xqHIs93lQFslMV+4B8
SgixLzYOcTXWAEMoOwCXbtOI5I9yOV11Dns9AkcpfqkNsMMKDdO7glqR32IPnkYK
RWQvEx6Vs296UXaLhoKMhd/PigajWfi8R5EXxrvRHmiYsuIysDvUavtJ4n4KOvaU
J+u8JDKDdM3WKdlEpLRKK5BBVy3asCvKdxKhvd5SIRqc6+413W7BIJH1L5LjAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUh6FhVOWtDZIKW/EL68KZsVOdV1owHwYDVR0j
BBgwFoAUGSgLj1qk+97GecNR6wQNKEz3kb4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
ZWJmNjNlZC1kNDUwLTQ3N2UtYjMxYi1hZjkyYjE3MjZkMmUvMC8xOTI4MEI4RjVB
QTRGQkRFQzY3OUMzNTFFQjA0MEQyODRDRjc5MUJFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTkyODBCOEY1QUE0RkJERUM2NzlDMzUxRUIwNDBEMjg0Q0Y3
OTFCRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlYmY2M2VkLWQ0NTAtNDc3ZS1i
MzFiLWFmOTJiMTcyNmQyZS8wLzMxMzAzMzJlMzYzODJlMzIzMTM0MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0TWMA0GCSqG
SIb3DQEBCwUAA4IBAQC9IwpYmOcQ6JtZLlEDMV6CJPDqw7xnuXz6WePAfL5PguQa
9HrATGaqsQBQ+c+0jiuVildoHkiKCRfmVuUdzI4FmfOHfg5dc71DCeqoKejj1Kqp
DlG0uWB5Mlin3UMUMDoIXLXDnDvpDuAJqWe3kz9TnZLHhCOp7OO6fWaNTRgPdYjS
cWm0S7Qkgs0h8aPev5Dtoaad7da2RwcPIxSoUDkaByoP9bBNw8grK1yJhcC9c7Hg
SzTGT2ohTTPhT7ZgYFCsvjdAueJepROIajfKuE6vDz/fBgyg9Ukg4ElPlxr3RcK/
G6IIZxMQLxQ9pNF1Zsh6Xk0YAFclmK9yvHRmdHt+
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:48 2025 by rpki-client