Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa
File: 3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa (raw, json)
Hash identifier: lnxOKEd+PewMsG44qj3HVvV3WG1qaRgIi/Wp6zXG+ZE=
Subject key identifier: 63:9C:F7:E6:20:4D:35:40:E5:60:14:B8:65:17:63:DD:A5:FA:BC:A3
Certificate issuer: /CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13
Certificate serial: 57B2F02C880B32E6A589CFFB35516D93E89614B6
Authority key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa
Signing time: Thu 04 Jul 2024 04:02:06 +0000
ROA not before: Thu 04 Jul 2024 03:57:06 +0000
ROA not after: Thu 03 Jul 2025 04:02:06 +0000
asID: 141126
IP address blocks: 103.158.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:b2:f0:2c:88:0b:32:e6:a5:89:cf:fb:35:51:6d:93:e8:96:14:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13
Validity
Not Before: Jul 4 03:57:06 2024 GMT
Not After : Jul 3 04:02:06 2025 GMT
Subject: CN=639CF7E6204D3540E56014B8651763DDA5FABCA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1e:f7:30:48:79:13:3f:67:a4:82:2f:da:87:
46:30:e6:0f:a9:78:7c:1d:d0:df:e1:49:c2:2f:01:
d1:d8:42:2a:11:75:f6:93:7c:3a:46:7c:c6:16:25:
05:aa:9e:cd:a9:9f:56:e9:8e:2d:47:60:6e:79:10:
43:e9:13:0b:08:1d:e8:28:bf:84:1a:28:97:c3:3b:
72:fd:d8:8f:7d:ac:f0:86:e6:a8:bd:23:9b:82:e3:
ec:5a:e2:12:48:d2:bd:ce:3a:d0:ca:41:43:4c:16:
40:80:9a:a7:49:f8:da:1e:c4:60:33:4b:73:ee:bd:
1e:aa:37:40:67:3f:02:3e:1e:49:81:cb:36:c8:40:
89:76:a4:b0:47:22:6f:ee:99:d5:67:19:89:ba:d6:
18:89:b4:b8:ca:78:e6:ce:b7:bc:14:c3:7d:d9:bc:
32:3b:ee:14:bf:1f:9d:fb:75:36:0d:49:7f:52:3b:
d9:a2:af:cc:13:f1:25:e5:19:d3:85:ec:0f:fa:ad:
63:08:64:0e:73:36:d5:4f:7d:6f:9a:90:ef:ef:72:
b2:e6:6d:ef:a4:c1:50:2e:13:a1:74:90:85:79:7e:
da:f4:ac:db:72:1b:ae:17:27:49:82:86:eb:b7:8e:
1e:02:d7:06:01:bb:73:ae:41:b2:10:e1:3a:8c:ef:
dd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9C:F7:E6:20:4D:35:40:E5:60:14:B8:65:17:63:DD:A5:FA:BC:A3
X509v3 Authority Key Identifier:
keyid:4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/3130332e3135382e3135352e302f32342d3234203d3e20313431313236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.155.0/24
Signature Algorithm: sha256WithRSAEncryption
36:25:f1:59:87:f4:a5:7c:66:2d:c8:f3:b1:67:69:cf:bf:b9:
ce:c4:69:15:25:ca:f0:ba:59:51:55:c4:4f:2a:07:7b:18:3b:
87:bd:be:17:c6:75:bc:9f:a5:3e:e4:62:48:99:99:7f:b4:8a:
7b:4d:9c:ae:19:10:b2:5d:de:c2:8d:77:ae:03:dc:61:52:01:
20:af:f6:04:61:ff:f2:89:71:e6:7b:ff:13:28:e0:d3:11:31:
22:49:4e:ef:06:27:27:5c:b7:59:bb:a2:36:c6:01:ab:07:14:
42:4c:ea:f0:d2:56:c9:a9:77:0c:8e:70:43:c0:e5:96:44:6b:
07:b9:ec:9e:b5:a0:9e:35:11:7e:de:f5:7b:6a:6d:8b:a2:c0:
a3:6f:39:e3:d8:04:87:3c:c6:fd:66:f9:a1:67:d0:9e:b4:ed:
ee:78:22:99:46:f2:95:72:92:63:65:d3:48:19:62:f1:f0:f2:
65:77:41:0e:86:bc:03:70:71:f1:9f:79:9e:87:60:9a:58:56:
ef:6d:4a:05:5c:c9:13:36:82:c1:9d:1e:ae:19:1a:e6:66:bf:
97:59:50:51:85:1a:37:5e:a8:4a:d4:2f:3c:07:df:b6:89:77:
a7:c8:ce:80:62:ca:ac:81:6e:53:c2:f9:b2:f1:b9:ed:5a:c2:
8e:e8:77:c3
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUV7LwLIgLMualic/7NVFtk+iWFLYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2
Q0QyMkYxMzAeFw0yNDA3MDQwMzU3MDZaFw0yNTA3MDMwNDAyMDZaMDMxMTAvBgNV
BAMTKDYzOUNGN0U2MjA0RDM1NDBFNTYwMTRCODY1MTc2M0REQTVGQUJDQTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHvcwSHkTP2ekgi/ah0Yw5g+p
eHwd0N/hScIvAdHYQioRdfaTfDpGfMYWJQWqns2pn1bpji1HYG55EEPpEwsIHego
v4QaKJfDO3L92I99rPCG5qi9I5uC4+xa4hJI0r3OOtDKQUNMFkCAmqdJ+NoexGAz
S3PuvR6qN0BnPwI+HkmByzbIQIl2pLBHIm/umdVnGYm61hiJtLjKeObOt7wUw33Z
vDI77hS/H537dTYNSX9SO9mir8wT8SXlGdOF7A/6rWMIZA5zNtVPfW+akO/vcrLm
be+kwVAuE6F0kIV5ftr0rNtyG64XJ0mChuu3jh4C1wYBu3OuQbIQ4TqM790PAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUY5z35iBNNUDlYBS4ZRdj3aX6vKMwHwYDVR0j
BBgwFoAUTrhSHYQncg9Qo/ZSSfLSbGzSLxMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMC80RUI4NTIxRDg0
Mjc3MjBGNTBBM0Y2NTI0OUYyRDI2QzZDRDIyRjEzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNEVCODUyMUQ4NDI3NzIwRjUwQTNGNjUyNDlGMkQyNkM2Q0Qy
MkYxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2LWFmZGQtNGUxMC04
M2I0LWU4Y2JkNjQxYzUyZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM1MzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnpswDQYJ
KoZIhvcNAQELBQADggEBADYl8VmH9KV8Zi3I87Fnac+/uc7EaRUlyvC6WVFVxE8q
B3sYO4e9vhfGdbyfpT7kYkiZmX+0intNnK4ZELJd3sKNd64D3GFSASCv9gRh//KJ
ceZ7/xMo4NMRMSJJTu8GJydct1m7ojbGAasHFEJM6vDSVsmpdwyOcEPA5ZZEawe5
7J61oJ41EX7e9XtqbYuiwKNvOePYBIc8xv1m+aFn0J607e54IplG8pVykmNl00gZ
YvHw8mV3QQ6GvANwcfGfeZ6HYJpYVu9tSgVcyRM2gsGdHq4ZGuZmv5dZUFGFGjde
qErULzwH37aJd6fIzoBiyqyBblPC+bLxue1awo7od8M=
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:15 2025 by rpki-client