Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138302e302f32342d3234203d3e20313332363432.roa
File: 3130332e31392e3138302e302f32342d3234203d3e20313332363432.roa (raw, json)
Hash identifier: e9IH2pZ9uAA1LvF3x0PsRWxNU3xU/oUXz6yWuTN6x2Y=
Subject key identifier: 00:53:D5:1F:DC:E5:40:C9:98:31:FC:8B:2F:9E:4B:60:9E:2C:CF:35
Certificate issuer: /CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9
Certificate serial: 0B5A1ED6CE156109C92E5E3DD756036ED2C01083
Authority key identifier: 81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138302e302f32342d3234203d3e20313332363432.roa
Signing time: Mon 01 Jul 2024 01:02:13 +0000
ROA not before: Mon 01 Jul 2024 00:57:13 +0000
ROA not after: Mon 30 Jun 2025 01:02:13 +0000
asID: 132642
IP address blocks: 103.19.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:5a:1e:d6:ce:15:61:09:c9:2e:5e:3d:d7:56:03:6e:d2:c0:10:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9
Validity
Not Before: Jul 1 00:57:13 2024 GMT
Not After : Jun 30 01:02:13 2025 GMT
Subject: CN=0053D51FDCE540C99831FC8B2F9E4B609E2CCF35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1c:61:99:ec:51:11:73:34:a1:92:7e:72:80:
dc:07:a4:c7:28:38:b0:33:53:47:29:0e:1e:c7:47:
48:3f:4b:5e:80:c9:a7:a4:af:5d:53:2c:79:5f:3a:
92:b6:64:fb:a6:55:86:e6:25:a4:97:bb:86:3b:86:
13:d5:bb:5a:e6:bd:4b:f1:96:3a:0b:41:93:7a:87:
fb:08:d4:b1:77:a3:c2:a1:db:98:73:4d:38:9c:46:
20:bc:d3:f8:00:eb:2f:a8:5a:32:ce:81:cc:a5:1e:
cc:41:86:9c:8d:37:58:6d:e7:58:3d:ce:44:67:1e:
47:a3:70:bf:f2:2f:fc:5e:a9:07:7a:4e:4f:4c:14:
59:db:79:28:a8:c9:d0:56:c0:59:9f:da:78:1c:fa:
06:d8:88:89:6d:37:5a:83:18:eb:bf:fc:0b:b2:c5:
17:4a:49:79:fd:a3:f2:ec:dd:6f:42:88:78:6c:39:
ce:5f:a4:fb:3e:88:1b:ab:1f:1a:cf:9b:5f:33:cd:
58:4b:f1:85:f6:f2:0a:4b:a2:57:cc:3d:b8:4b:85:
bd:a9:92:1a:7f:ba:f4:96:29:e8:eb:73:09:44:c3:
84:d4:8e:4e:6e:a4:dc:6d:b3:fe:8f:6a:cf:ca:49:
5e:cd:33:71:6e:7f:8d:42:53:fd:9d:f5:5f:12:74:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:53:D5:1F:DC:E5:40:C9:98:31:FC:8B:2F:9E:4B:60:9E:2C:CF:35
X509v3 Authority Key Identifier:
keyid:81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/3130332e31392e3138302e302f32342d3234203d3e20313332363432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.19.180.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:a8:9a:09:ba:90:db:9b:77:43:81:2f:ec:15:99:59:55:56:
e6:ce:0c:21:06:21:9d:61:7a:31:d1:70:1d:50:f0:38:09:08:
5d:60:42:58:97:d1:1d:bd:cd:fa:fd:f6:c2:01:9c:17:a4:d4:
9a:93:81:a4:bd:18:ea:29:98:c6:e3:39:65:a7:f1:d1:90:02:
f6:a9:23:40:c7:b8:90:a5:f6:6d:a1:b5:db:94:a0:f7:49:b7:
6b:25:1d:05:5e:96:02:38:47:c8:61:d3:67:5a:63:b5:d4:a7:
4e:17:28:45:fd:65:e6:11:ff:39:d4:e5:03:b6:c6:e2:c8:41:
57:7c:d4:08:a5:b3:41:cd:0c:81:6d:68:95:c6:c7:94:99:29:
cc:99:1e:ea:3d:05:aa:d3:9a:04:45:46:f9:eb:71:4b:76:0d:
37:17:3a:4f:82:39:89:90:52:ec:72:96:4a:fd:39:a6:e1:4b:
a4:c9:8b:87:19:b9:ab:46:48:44:3e:68:2e:df:07:06:9c:a6:
d7:3e:33:38:2f:79:45:a1:b9:2b:4f:e6:9c:1d:29:8f:ba:fb:
b5:fd:90:b6:a9:5b:b7:74:b6:02:41:6d:8d:b4:ce:5d:ba:cd:
9f:84:79:6a:c2:81:f8:24:50:be:1d:84:ee:9b:28:9c:7b:95:
f0:1f:40:a2
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUC1oe1s4VYQnJLl4911YDbtLAEIMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0
MzdDQThFOTAeFw0yNDA3MDEwMDU3MTNaFw0yNTA2MzAwMTAyMTNaMDMxMTAvBgNV
BAMTKDAwNTNENTFGRENFNTQwQzk5ODMxRkM4QjJGOUU0QjYwOUUyQ0NGMzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3HGGZ7FERczShkn5ygNwHpMco
OLAzU0cpDh7HR0g/S16Ayaekr11TLHlfOpK2ZPumVYbmJaSXu4Y7hhPVu1rmvUvx
ljoLQZN6h/sI1LF3o8Kh25hzTTicRiC80/gA6y+oWjLOgcylHsxBhpyNN1ht51g9
zkRnHkejcL/yL/xeqQd6Tk9MFFnbeSioydBWwFmf2ngc+gbYiIltN1qDGOu//Auy
xRdKSXn9o/Ls3W9CiHhsOc5fpPs+iBurHxrPm18zzVhL8YX28gpLolfMPbhLhb2p
khp/uvSWKejrcwlEw4TUjk5upNxts/6Pas/KSV7NM3Fuf41CU/2d9V8SdFDDAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUAFPVH9zlQMmYMfyLL55LYJ4szzUwHwYDVR0j
BBgwFoAUgYgjtQ+NY+nZU8S3UvBNsEN8qOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
MGM3NzNjOC1mYjU2LTQ0OWYtODY0OS0xMTJkNmUxNjg2YjMvMC84MTg4MjNCNTBG
OEQ2M0U5RDk1M0M0Qjc1MkYwNERCMDQzN0NBOEU5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0MzdD
QThFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwYzc3M2M4LWZiNTYtNDQ5Zi04
NjQ5LTExMmQ2ZTE2ODZiMy8wLzMxMzAzMzJlMzEzOTJlMzEzODMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxO0MA0GCSqG
SIb3DQEBCwUAA4IBAQBuqJoJupDbm3dDgS/sFZlZVVbmzgwhBiGdYXox0XAdUPA4
CQhdYEJYl9Edvc36/fbCAZwXpNSak4GkvRjqKZjG4zllp/HRkAL2qSNAx7iQpfZt
obXblKD3SbdrJR0FXpYCOEfIYdNnWmO11KdOFyhF/WXmEf851OUDtsbiyEFXfNQI
pbNBzQyBbWiVxseUmSnMmR7qPQWq05oERUb563FLdg03FzpPgjmJkFLscpZK/Tmm
4UukyYuHGbmrRkhEPmgu3wcGnKbXPjM4L3lFobkrT+acHSmPuvu1/ZC2qVu3dLYC
QW2NtM5dus2fhHlqwoH4JFC+HYTumyice5XwH0Ci
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:03:55 2025 by rpki-client