Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e36382e302f32342d3234203d3e20313437313330.roa
File: 3130332e3137362e36382e302f32342d3234203d3e20313437313330.roa (raw, json)
Hash identifier: x5zb3uAWvj5e13SSg4OBB12y6IX3WqV868pS+RpBHDw=
Subject key identifier: E8:9B:44:7F:D2:CB:C2:A3:05:C1:83:1A:82:CC:A3:E7:9A:43:83:21
Certificate issuer: /CN=E0B1DDE4FA587276778B8ED650B682C82290CC74
Certificate serial: 212B393074737F900864B7CA790657A55D8C50A9
Authority key identifier: E0:B1:DD:E4:FA:58:72:76:77:8B:8E:D6:50:B6:82:C8:22:90:CC:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0B1DDE4FA587276778B8ED650B682C82290CC74.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e36382e302f32342d3234203d3e20313437313330.roa
Signing time: Mon 03 Mar 2025 09:00:01 +0000
ROA not before: Mon 03 Mar 2025 08:55:01 +0000
ROA not after: Mon 02 Mar 2026 09:00:01 +0000
asID: 147130
IP address blocks: 103.176.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:2b:39:30:74:73:7f:90:08:64:b7:ca:79:06:57:a5:5d:8c:50:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0B1DDE4FA587276778B8ED650B682C82290CC74
Validity
Not Before: Mar 3 08:55:01 2025 GMT
Not After : Mar 2 09:00:01 2026 GMT
Subject: CN=E89B447FD2CBC2A305C1831A82CCA3E79A438321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6a:bf:f7:11:5d:20:7f:b4:36:3c:b3:5e:4d:
1a:e6:f1:4c:75:29:69:a3:92:6d:24:85:8f:c3:a2:
3d:bb:10:0f:53:b1:c8:9f:fa:f4:e1:ec:72:65:03:
dd:0d:e0:cb:67:32:ad:9f:c8:72:f3:39:a1:79:8a:
7d:b5:ee:41:02:f8:cf:c9:49:41:86:0a:06:d3:46:
bf:39:62:1b:b8:c5:66:b1:02:f9:d2:32:00:60:c8:
09:c3:bf:7a:1b:e7:a5:90:9a:42:0c:04:d1:1a:0d:
6c:bb:32:75:09:51:fe:33:8b:6b:2d:f6:19:35:87:
10:6d:65:9d:26:32:df:40:1f:5d:8b:ea:4a:ec:31:
bb:ad:eb:35:de:da:c0:a6:6a:e4:49:a3:3c:5e:25:
91:31:01:44:22:e8:93:59:4b:ca:0e:45:e3:83:78:
91:aa:c9:d1:4b:f8:f8:f9:7a:57:51:62:ef:d4:cd:
26:47:3d:63:c2:3a:3a:55:12:73:23:50:16:16:e8:
3c:a4:82:9c:cb:be:13:90:67:f2:a5:1d:f3:a7:ea:
f6:4a:9f:26:b5:36:69:48:19:11:9c:eb:26:4a:b7:
5d:59:9f:9a:e3:8e:bf:2d:67:18:27:ca:0d:1f:b0:
03:4d:89:09:99:16:7c:97:8d:81:c1:bd:4c:cf:ed:
f3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9B:44:7F:D2:CB:C2:A3:05:C1:83:1A:82:CC:A3:E7:9A:43:83:21
X509v3 Authority Key Identifier:
keyid:E0:B1:DD:E4:FA:58:72:76:77:8B:8E:D6:50:B6:82:C8:22:90:CC:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/E0B1DDE4FA587276778B8ED650B682C82290CC74.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0B1DDE4FA587276778B8ED650B682C82290CC74.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e36382e302f32342d3234203d3e20313437313330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.68.0/24
Signature Algorithm: sha256WithRSAEncryption
16:27:53:54:b9:6b:0f:c3:7e:a6:92:1c:41:8a:db:eb:76:d4:
bc:57:ea:57:f6:2a:f0:48:32:39:02:86:99:1e:f7:50:65:83:
05:44:4e:f5:4c:51:c2:99:ff:aa:58:5e:66:ad:d6:55:c3:11:
5c:0b:46:7e:71:15:8c:1e:45:a4:b4:8e:de:29:bb:02:b0:67:
5d:df:73:3f:cc:5f:fe:d7:93:b1:7b:89:42:3d:f6:aa:f9:33:
e0:86:8e:45:be:de:97:85:0a:af:1d:95:1f:22:98:5f:96:e2:
05:e2:d4:d6:e3:ce:f3:ac:a3:5f:6f:75:e0:ac:ff:69:a6:fa:
61:7e:a6:62:bf:d6:86:47:4e:71:cb:e5:7c:9b:a0:fd:09:07:
6e:34:cd:9b:be:14:d1:8d:dc:75:62:c3:85:56:c5:67:87:ad:
9d:ff:bd:74:13:c1:4f:ad:8b:6c:0e:70:59:40:28:d5:fe:93:
ad:d8:13:c8:94:17:ed:26:72:89:00:19:6d:74:8e:ac:2b:2d:
c2:c0:55:ac:18:28:33:74:7a:30:2d:22:f2:fb:b5:c3:78:54:
1c:c4:62:90:8c:b6:a8:29:91:ae:3f:32:bf:33:36:de:9b:ad:
f5:53:07:dc:d8:ad:be:df:91:da:03:fb:20:38:b7:57:d6:0b:
b8:8e:98:a3
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUISs5MHRzf5AIZLfKeQZXpV2MUKkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTBCMURERTRGQTU4NzI3Njc3OEI4RUQ2NTBCNjgyQzgy
MjkwQ0M3NDAeFw0yNTAzMDMwODU1MDFaFw0yNjAzMDIwOTAwMDFaMDMxMTAvBgNV
BAMTKEU4OUI0NDdGRDJDQkMyQTMwNUMxODMxQTgyQ0NBM0U3OUE0MzgzMjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxar/3EV0gf7Q2PLNeTRrm8Ux1
KWmjkm0khY/Doj27EA9Tscif+vTh7HJlA90N4MtnMq2fyHLzOaF5in217kEC+M/J
SUGGCgbTRr85Yhu4xWaxAvnSMgBgyAnDv3ob56WQmkIMBNEaDWy7MnUJUf4zi2st
9hk1hxBtZZ0mMt9AH12L6krsMbut6zXe2sCmauRJozxeJZExAUQi6JNZS8oOReOD
eJGqydFL+Pj5eldRYu/UzSZHPWPCOjpVEnMjUBYW6DykgpzLvhOQZ/KlHfOn6vZK
nya1NmlIGRGc6yZKt11Zn5rjjr8tZxgnyg0fsANNiQmZFnyXjYHBvUzP7fNPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU6JtEf9LLwqMFwYMagsyj55pDgyEwHwYDVR0j
BBgwFoAU4LHd5PpYcnZ3i47WULaCyCKQzHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
OTUxZGZlZS1hNzViLTQ0MjAtYTc1NS0yYzczNThiYWY3ZDMvMC9FMEIxRERFNEZB
NTg3Mjc2Nzc4QjhFRDY1MEI2ODJDODIyOTBDQzc0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRTBCMURERTRGQTU4NzI3Njc3OEI4RUQ2NTBCNjgyQzgyMjkw
Q0M3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NTFkZmVlLWE3NWItNDQyMC1h
NzU1LTJjNzM1OGJhZjdkMy8wLzMxMzAzMzJlMzEzNzM2MmUzNjM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7BEMA0GCSqG
SIb3DQEBCwUAA4IBAQAWJ1NUuWsPw36mkhxBitvrdtS8V+pX9irwSDI5AoaZHvdQ
ZYMFRE71TFHCmf+qWF5mrdZVwxFcC0Z+cRWMHkWktI7eKbsCsGdd33M/zF/+15Ox
e4lCPfaq+TPgho5Fvt6XhQqvHZUfIphfluIF4tTW487zrKNfb3XgrP9ppvphfqZi
v9aGR05xy+V8m6D9CQduNM2bvhTRjdx1YsOFVsVnh62d/710E8FPrYtsDnBZQCjV
/pOt2BPIlBftJnKJABltdI6sKy3CwFWsGCgzdHowLSLy+7XDeFQcxGKQjLaoKZGu
PzK/Mzbem631Uwfc2K2+35HaA/sgOLdX1gu4jpij
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:08:05 2025 by rpki-client