Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa
File: 3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa (raw, json)
Hash identifier: WW7W6Yj2G/47WPhY9FaJiFfRCgajmearKgt2Y7lE/bA=
Subject key identifier: 0A:07:95:6A:44:C7:F6:F2:43:9F:47:65:96:C0:BC:E3:EE:C5:F6:B0
Certificate issuer: /CN=789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED
Certificate serial: 53E20DA94FD5DA0543208D56E39EBB6E19CD261B
Authority key identifier: 78:9C:8F:CB:CF:FC:68:C4:83:A9:68:DF:14:EE:37:E7:5A:FE:A2:ED
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa
Signing time: Mon 11 Nov 2024 04:00:02 +0000
ROA not before: Mon 11 Nov 2024 03:55:02 +0000
ROA not after: Mon 10 Nov 2025 04:00:02 +0000
asID: 45318
IP address blocks: 103.211.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:e2:0d:a9:4f:d5:da:05:43:20:8d:56:e3:9e:bb:6e:19:cd:26:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED
Validity
Not Before: Nov 11 03:55:02 2024 GMT
Not After : Nov 10 04:00:02 2025 GMT
Subject: CN=0A07956A44C7F6F2439F476596C0BCE3EEC5F6B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:18:62:ab:b4:60:fc:84:c5:b3:16:49:92:
fe:9a:44:ff:e2:17:3c:d3:f0:ae:2a:db:e5:27:39:
7c:8f:2e:3c:3d:0a:d4:9b:af:db:d7:58:06:04:41:
e6:fa:2f:70:88:1d:be:63:04:4e:be:0e:a7:c0:62:
16:c0:b3:5f:a2:89:b0:78:d0:43:8c:7c:70:cd:43:
ac:ac:eb:7f:8c:3c:76:83:ec:70:86:df:2f:15:5a:
1d:7a:0b:f3:bf:ea:f2:8f:e4:84:72:db:ff:c1:b5:
51:56:e5:a1:4a:8a:b1:ba:fb:eb:57:98:0b:0d:1f:
2d:fe:73:74:e3:dc:f4:94:f5:1e:a5:79:a2:ff:4b:
d6:05:88:43:51:fc:c9:59:3d:ac:a7:75:78:d6:fb:
5d:46:1f:6c:65:51:da:37:17:00:a5:f0:9e:09:be:
7b:e2:27:04:73:c0:47:43:de:39:ed:db:47:08:87:
4c:94:80:c9:4a:5f:31:33:6c:cb:13:8c:ac:6c:21:
e9:4b:6c:c3:2f:4c:0c:bf:5d:9e:e2:aa:22:c2:c7:
c3:73:a5:81:20:20:cc:92:b5:94:62:4e:db:47:20:
85:12:8c:cb:52:63:c3:11:70:30:a0:53:ca:82:7b:
70:44:12:5c:a0:71:8e:a1:c7:ad:36:ac:f7:e4:7c:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:07:95:6A:44:C7:F6:F2:43:9F:47:65:96:C0:BC:E3:EE:C5:F6:B0
X509v3 Authority Key Identifier:
keyid:78:9C:8F:CB:CF:FC:68:C4:83:A9:68:DF:14:EE:37:E7:5A:FE:A2:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.211.143.0/24
Signature Algorithm: sha256WithRSAEncryption
07:cc:e7:dd:67:ec:b3:d4:77:9f:7b:d3:26:bf:88:40:f1:0e:
2a:51:0a:f4:3b:86:c9:e6:6f:3e:c7:db:a7:f1:8d:52:0a:ff:
67:ae:73:f2:39:83:f6:e9:a3:d9:9e:c6:6c:da:13:e7:68:38:
06:1e:50:c2:33:c4:d5:40:07:c6:aa:69:21:04:0e:92:4b:42:
2e:79:e1:ee:51:b6:8b:09:4d:ef:5f:13:a1:94:d6:7c:ad:fc:
c0:bc:3a:3d:43:9e:a5:f1:22:28:0d:9c:39:34:71:e8:ea:ad:
ae:86:1e:9b:5b:9e:91:cc:24:2c:cd:88:83:2b:55:3e:46:57:
15:e4:9e:67:fe:8f:f8:b5:99:fe:d3:2d:5b:5c:1d:58:a1:f1:
a8:f6:3b:f5:76:47:fc:a1:4a:7b:70:c9:34:d2:30:ad:ad:3d:
55:00:73:3c:8a:51:e1:7e:f3:1e:46:38:12:f7:37:f2:67:f4:
b3:c4:56:da:9b:71:9e:3b:39:76:bc:24:ca:fd:a7:ad:88:fe:
e4:3c:3e:2a:c2:da:b7:12:47:6a:33:a9:0b:99:e7:7c:90:99:
96:3f:ba:d8:1f:9d:b4:44:f6:6e:95:c9:b2:d2:bb:af:44:b7:
2b:9c:73:e8:56:18:43:f7:13:08:ee:10:98:91:59:4a:45:06:
45:fd:0a:06
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUU+INqU/V2gVDII1W4567bhnNJhswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzg5QzhGQ0JDRkZDNjhDNDgzQTk2OERGMTRFRTM3RTc1
QUZFQTJFRDAeFw0yNDExMTEwMzU1MDJaFw0yNTExMTAwNDAwMDJaMDMxMTAvBgNV
BAMTKDBBMDc5NTZBNDRDN0Y2RjI0MzlGNDc2NTk2QzBCQ0UzRUVDNUY2QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Fxhiq7Rg/ITFsxZJkv6aRP/i
FzzT8K4q2+UnOXyPLjw9CtSbr9vXWAYEQeb6L3CIHb5jBE6+DqfAYhbAs1+iibB4
0EOMfHDNQ6ys63+MPHaD7HCG3y8VWh16C/O/6vKP5IRy2//BtVFW5aFKirG6++tX
mAsNHy3+c3Tj3PSU9R6leaL/S9YFiENR/MlZPayndXjW+11GH2xlUdo3FwCl8J4J
vnviJwRzwEdD3jnt20cIh0yUgMlKXzEzbMsTjKxsIelLbMMvTAy/XZ7iqiLCx8Nz
pYEgIMyStZRiTttHIIUSjMtSY8MRcDCgU8qCe3BEElygcY6hx602rPfkfNEbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUCgeVakTH9vJDn0dllsC84+7F9rAwHwYDVR0j
BBgwFoAUeJyPy8/8aMSDqWjfFO4351r+ou0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YTNiNjg4MS1iYTExLTQzMzAtYTE2NC1iNTVmNDIwODViODkvMC83ODlDOEZDQkNG
RkM2OEM0ODNBOTY4REYxNEVFMzdFNzVBRkVBMkVELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzg5QzhGQ0JDRkZDNjhDNDgzQTk2OERGMTRFRTM3RTc1QUZF
QTJFRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhM2I2ODgxLWJhMTEtNDMzMC1h
MTY0LWI1NWY0MjA4NWI4OS8wLzMxMzAzMzJlMzIzMTMxMmUzMTM0MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9OPMA0GCSqG
SIb3DQEBCwUAA4IBAQAHzOfdZ+yz1Hefe9Mmv4hA8Q4qUQr0O4bJ5m8+x9un8Y1S
Cv9nrnPyOYP26aPZnsZs2hPnaDgGHlDCM8TVQAfGqmkhBA6SS0IueeHuUbaLCU3v
XxOhlNZ8rfzAvDo9Q56l8SIoDZw5NHHo6q2uhh6bW56RzCQszYiDK1U+RlcV5J5n
/o/4tZn+0y1bXB1YofGo9jv1dkf8oUp7cMk00jCtrT1VAHM8ilHhfvMeRjgS9zfy
Z/SzxFbam3GeOzl2vCTK/aetiP7kPD4qwtq3EkdqM6kLmed8kJmWP7rYH520RPZu
lcmy0ruvRLcrnHPoVhhD9xMI7hCYkVlKRQZF/QoG
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:09 2025 by rpki-client