Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/3130332e3136342e35372e302f32342d3234203d3e20313431393033.roa
File: 3130332e3136342e35372e302f32342d3234203d3e20313431393033.roa (raw, json)
Hash identifier: QHTzNtrA62lCbap5pnLy6Afc1/3RNfZE7wu74tOUQBg=
Subject key identifier: FB:BB:35:A9:46:7D:5C:30:20:FF:67:88:25:0D:FC:7B:F9:E6:CE:54
Certificate issuer: /CN=B0B4D0A5FD4E58D80534977B027C8BC68222070F
Certificate serial: 6D088EA54AD665A6B1F4223BB86FE16A53BE5D52
Authority key identifier: B0:B4:D0:A5:FD:4E:58:D8:05:34:97:7B:02:7C:8B:C6:82:22:07:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0B4D0A5FD4E58D80534977B027C8BC68222070F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/3130332e3136342e35372e302f32342d3234203d3e20313431393033.roa
Signing time: Fri 28 Mar 2025 10:02:24 +0000
ROA not before: Fri 28 Mar 2025 09:57:24 +0000
ROA not after: Fri 27 Mar 2026 10:02:24 +0000
asID: 141903
IP address blocks: 103.164.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:08:8e:a5:4a:d6:65:a6:b1:f4:22:3b:b8:6f:e1:6a:53:be:5d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0B4D0A5FD4E58D80534977B027C8BC68222070F
Validity
Not Before: Mar 28 09:57:24 2025 GMT
Not After : Mar 27 10:02:24 2026 GMT
Subject: CN=FBBB35A9467D5C3020FF6788250DFC7BF9E6CE54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:39:a3:da:ea:7b:93:98:70:e0:3a:64:cd:
56:c1:3b:42:ae:4e:aa:89:8f:c0:df:84:83:39:33:
a1:49:13:03:2e:b9:90:73:91:e9:3c:f1:b5:fa:90:
6e:1f:14:cc:1f:50:06:a8:42:86:1a:a6:a2:e7:85:
44:2b:72:76:8f:fc:52:4b:4e:7f:91:a3:6d:ec:42:
6b:d7:f5:0e:a2:b4:79:38:7c:ec:84:83:55:c2:07:
3f:e1:75:bf:f3:91:a4:aa:d2:2d:89:be:fa:6c:e6:
00:b3:3c:4d:3a:52:70:e1:66:52:76:1a:72:d8:6e:
ab:2d:1e:9b:63:50:50:8c:9f:e8:0f:1c:de:34:fe:
25:01:ea:84:09:23:b8:17:f4:91:95:9e:73:0b:7d:
9b:35:99:07:f1:b9:54:06:75:28:a1:07:e3:71:91:
fe:15:f8:26:5c:23:e7:e3:28:3e:fa:3b:16:db:2e:
fc:39:4f:e7:a9:16:c0:1f:7a:ce:85:c3:14:62:04:
15:c9:e4:a0:87:99:ad:fe:70:9d:2e:78:3b:bc:86:
6a:42:51:28:73:55:23:aa:8c:09:67:a3:c8:43:44:
9e:63:9f:bd:d5:b3:31:10:c1:f2:2c:e1:6a:96:44:
90:c6:db:3f:0c:89:c6:d9:1e:57:71:eb:1c:8b:54:
5b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BB:35:A9:46:7D:5C:30:20:FF:67:88:25:0D:FC:7B:F9:E6:CE:54
X509v3 Authority Key Identifier:
keyid:B0:B4:D0:A5:FD:4E:58:D8:05:34:97:7B:02:7C:8B:C6:82:22:07:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/B0B4D0A5FD4E58D80534977B027C8BC68222070F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0B4D0A5FD4E58D80534977B027C8BC68222070F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/3130332e3136342e35372e302f32342d3234203d3e20313431393033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.57.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:8c:b7:a6:9f:9e:cc:7a:16:27:73:d7:99:7e:c2:32:aa:cd:
01:fa:30:24:08:e0:51:29:59:2c:d1:f8:a8:77:74:72:81:8a:
fc:6c:85:1b:53:f7:a1:44:13:61:31:36:94:39:2a:d2:77:00:
2e:67:93:69:16:2a:6a:61:1d:12:1a:11:6e:c0:c8:07:df:9a:
47:95:c5:59:df:38:12:bf:84:75:42:25:75:2e:f6:b0:c1:ef:
dd:84:05:f2:22:9c:eb:4b:e7:7f:ff:da:47:9d:8b:5b:51:ec:
6f:c7:15:f6:c4:8c:13:1c:0c:08:12:0f:64:49:8d:bf:fd:ae:
32:10:40:49:89:7e:e1:b9:8e:52:8d:1d:7a:48:28:9d:d7:07:
67:12:0c:01:bf:bc:41:81:6b:98:d1:e7:a0:0e:f8:5a:bd:56:
48:da:cc:8d:11:99:34:18:d8:df:08:9f:19:3c:1d:f0:96:cc:
46:14:08:9c:61:b6:5c:8e:81:df:70:47:bb:8e:fd:4c:9c:46:
11:64:6c:4d:1f:98:2e:36:6e:c1:3b:cc:be:dc:f0:38:33:76:
0a:1b:ce:18:42:ff:73:7d:05:c9:6d:9e:35:e0:2f:60:c9:b6:
d2:9d:c4:34:75:70:76:72:2b:78:da:0e:c9:c1:6e:98:1a:f1:
0b:be:29:71
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUbQiOpUrWZaax9CI7uG/halO+XVIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjBCNEQwQTVGRDRFNThEODA1MzQ5NzdCMDI3QzhCQzY4
MjIyMDcwRjAeFw0yNTAzMjgwOTU3MjRaFw0yNjAzMjcxMDAyMjRaMDMxMTAvBgNV
BAMTKEZCQkIzNUE5NDY3RDVDMzAyMEZGNjc4ODI1MERGQzdCRjlFNkNFNTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStjmj2up7k5hw4DpkzVbBO0Ku
TqqJj8DfhIM5M6FJEwMuuZBzkek88bX6kG4fFMwfUAaoQoYapqLnhUQrcnaP/FJL
Tn+Ro23sQmvX9Q6itHk4fOyEg1XCBz/hdb/zkaSq0i2Jvvps5gCzPE06UnDhZlJ2
GnLYbqstHptjUFCMn+gPHN40/iUB6oQJI7gX9JGVnnMLfZs1mQfxuVQGdSihB+Nx
kf4V+CZcI+fjKD76OxbbLvw5T+epFsAfes6FwxRiBBXJ5KCHma3+cJ0ueDu8hmpC
UShzVSOqjAlno8hDRJ5jn73VszEQwfIs4WqWRJDG2z8MicbZHldx6xyLVFuBAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU+7s1qUZ9XDAg/2eIJQ38e/nmzlQwHwYDVR0j
BBgwFoAUsLTQpf1OWNgFNJd7AnyLxoIiBw8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
N2NkNTExZi1hZmZmLTRmZWMtODcyNC1kNDExOWY4OTFkZjIvMC9CMEI0RDBBNUZE
NEU1OEQ4MDUzNDk3N0IwMjdDOEJDNjgyMjIwNzBGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjBCNEQwQTVGRDRFNThEODA1MzQ5NzdCMDI3QzhCQzY4MjIy
MDcwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3Y2Q1MTFmLWFmZmYtNGZlYy04
NzI0LWQ0MTE5Zjg5MWRmMi8wLzMxMzAzMzJlMzEzNjM0MmUzNTM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6Q5MA0GCSqG
SIb3DQEBCwUAA4IBAQCrjLemn57MehYnc9eZfsIyqs0B+jAkCOBRKVks0fiod3Ry
gYr8bIUbU/ehRBNhMTaUOSrSdwAuZ5NpFipqYR0SGhFuwMgH35pHlcVZ3zgSv4R1
QiV1Lvawwe/dhAXyIpzrS+d//9pHnYtbUexvxxX2xIwTHAwIEg9kSY2//a4yEEBJ
iX7huY5SjR16SCid1wdnEgwBv7xBgWuY0eegDvhavVZI2syNEZk0GNjfCJ8ZPB3w
lsxGFAicYbZcjoHfcEe7jv1MnEYRZGxNH5guNm7BO8y+3PA4M3YKG84YQv9zfQXJ
bZ414C9gybbSncQ0dXB2cit42g7JwW6YGvELvilx
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:35 2025 by rpki-client