Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa
File: 3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa (raw, json)
Hash identifier: KTTSzhJyEe2+3+LNGtWkObwsWEdVtFCSQXuEdew12yU=
Subject key identifier: E6:2F:69:0E:57:60:88:85:56:29:1E:34:09:5A:01:16:15:53:7F:79
Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Certificate serial: 65EAA7F42BA4206EEC4F474C5DAE1C47917A64D9
Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa
Signing time: Wed 08 Jan 2025 03:00:34 +0000
ROA not before: Wed 08 Jan 2025 02:55:34 +0000
ROA not after: Wed 07 Jan 2026 03:00:34 +0000
asID: 138089
IP address blocks: 103.124.136.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ea:a7:f4:2b:a4:20:6e:ec:4f:47:4c:5d:ae:1c:47:91:7a:64:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Validity
Not Before: Jan 8 02:55:34 2025 GMT
Not After : Jan 7 03:00:34 2026 GMT
Subject: CN=E62F690E5760888556291E34095A011615537F79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:39:86:58:49:53:97:ca:6d:e6:8b:50:46:4c:
fb:71:2b:c4:21:17:0b:0a:4b:af:f3:3b:10:7b:9b:
0e:86:39:81:b4:86:f3:ce:4c:5f:1e:9c:a5:b2:cb:
c5:31:b6:28:a9:5b:6a:ab:9a:5d:1c:cb:29:2e:ca:
12:5b:42:74:a9:e0:32:20:70:b1:ec:84:55:00:6a:
53:5e:d0:1a:30:be:d6:3d:10:fe:56:52:7c:6e:60:
2a:b2:bd:2b:22:1e:4c:08:73:72:38:c8:73:5a:b0:
98:ec:6e:84:c5:20:98:31:4f:77:9c:fc:68:d8:0b:
8c:70:95:dc:38:20:26:17:4a:78:49:b1:ef:d3:de:
86:5c:33:48:bb:3a:b3:fe:ae:47:44:d0:3a:a4:9d:
91:f1:61:bb:b6:ff:af:41:70:af:cd:7d:2b:15:f6:
32:0c:58:fe:86:fd:0d:3b:49:57:1e:79:60:eb:cd:
2b:fb:27:89:84:cd:2a:53:9a:32:03:7c:c6:e5:80:
ea:4f:d1:06:0f:10:98:0d:96:98:4d:fe:95:f9:b1:
cc:5d:0e:8a:64:d7:ae:5d:8d:e4:51:9a:17:a8:8e:
c1:f7:d2:9c:bc:4b:00:a8:9b:ed:a3:dc:31:e9:6f:
2b:33:a9:69:db:13:fb:ed:17:c1:e8:9a:3b:95:ad:
77:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2F:69:0E:57:60:88:85:56:29:1E:34:09:5A:01:16:15:53:7F:79
X509v3 Authority Key Identifier:
keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.136.0/23
Signature Algorithm: sha256WithRSAEncryption
73:45:a5:10:64:62:bf:2c:54:6e:3f:43:49:a9:c6:6d:32:b8:
b2:2f:b5:29:7e:2a:20:cc:dc:de:50:21:de:3b:a3:10:51:d9:
ae:49:47:3c:b9:d6:7d:f7:98:fa:fb:c2:cf:ce:d2:bf:eb:f8:
83:54:10:b8:48:10:26:59:61:4e:55:af:a3:24:36:d9:62:cd:
52:33:11:8f:87:d9:e8:1f:d8:51:43:0b:03:a1:3a:e9:c5:6d:
ed:0e:8d:90:49:20:1c:40:13:c0:86:cf:d4:fc:d8:25:0b:89:
be:f6:23:95:46:53:12:88:c9:ab:53:f3:04:07:d5:38:52:bb:
19:6d:f3:7c:bf:5d:17:8e:f7:e4:21:79:ce:a9:79:95:2f:91:
7e:ad:e4:93:53:a5:03:a8:8d:15:42:31:e9:e6:c5:e3:20:0e:
c4:c7:5c:95:69:5c:82:53:7a:f7:4a:b1:ad:ac:6a:b0:49:4f:
ce:15:15:38:43:ec:82:7c:81:7e:06:dd:1a:01:a8:46:04:9c:
3e:09:c2:c6:8e:ee:5f:55:5a:70:d4:66:f9:f3:5c:e1:cb:81:
d2:c0:09:65:42:e4:07:4c:db:f1:c1:e8:89:34:3a:57:e0:ab:
0c:c1:48:a7:bb:e0:ac:fa:3c:90:ac:44:8c:3f:23:67:9a:a9:
e3:a0:b3:47
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUZeqn9CukIG7sT0dMXa4cR5F6ZNkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB
RjcwRTczMzAeFw0yNTAxMDgwMjU1MzRaFw0yNjAxMDcwMzAwMzRaMDMxMTAvBgNV
BAMTKEU2MkY2OTBFNTc2MDg4ODU1NjI5MUUzNDA5NUEwMTE2MTU1MzdGNzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkOYZYSVOXym3mi1BGTPtxK8Qh
FwsKS6/zOxB7mw6GOYG0hvPOTF8enKWyy8UxtiipW2qrml0cyykuyhJbQnSp4DIg
cLHshFUAalNe0BowvtY9EP5WUnxuYCqyvSsiHkwIc3I4yHNasJjsboTFIJgxT3ec
/GjYC4xwldw4ICYXSnhJse/T3oZcM0i7OrP+rkdE0DqknZHxYbu2/69BcK/NfSsV
9jIMWP6G/Q07SVceeWDrzSv7J4mEzSpTmjIDfMblgOpP0QYPEJgNlphN/pX5scxd
Dopk165djeRRmheojsH30py8SwCom+2j3DHpbyszqWnbE/vtF8HomjuVrXchAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU5i9pDldgiIVWKR40CVoBFhVTf3kwHwYDVR0j
BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC
NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw
RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04
OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnfIgwDQYJ
KoZIhvcNAQELBQADggEBAHNFpRBkYr8sVG4/Q0mpxm0yuLIvtSl+KiDM3N5QId47
oxBR2a5JRzy51n33mPr7ws/O0r/r+INUELhIECZZYU5Vr6MkNtlizVIzEY+H2egf
2FFDCwOhOunFbe0OjZBJIBxAE8CGz9T82CULib72I5VGUxKIyatT8wQH1ThSuxlt
83y/XReO9+Qhec6peZUvkX6t5JNTpQOojRVCMenmxeMgDsTHXJVpXIJTevdKsa2s
arBJT84VFThD7IJ8gX4G3RoBqEYEnD4JwsaO7l9VWnDUZvnzXOHLgdLACWVC5AdM
2/HB6Ik0OlfgqwzBSKe74Kz6PJCsRIw/I2eaqeOgs0c=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:45:42 2025 by rpki-client