Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa
File: 3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa (raw, json)
Hash identifier: J/jPlTXp+kWKv5LyWjv+I0N1cAy55yAD17Rj2NwYkPM=
Subject key identifier: F9:DF:65:8F:A8:0A:A9:71:8C:17:29:01:60:EA:12:5D:0D:1D:75:0C
Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Certificate serial: 7521F1EFF508C9D07695E33FDF4081BE89390630
Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa
Signing time: Mon 24 Feb 2025 14:00:00 +0000
ROA not before: Mon 24 Feb 2025 13:55:00 +0000
ROA not after: Mon 23 Feb 2026 14:00:00 +0000
asID: 138089
IP address blocks: 103.124.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:21:f1:ef:f5:08:c9:d0:76:95:e3:3f:df:40:81:be:89:39:06:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Validity
Not Before: Feb 24 13:55:00 2025 GMT
Not After : Feb 23 14:00:00 2026 GMT
Subject: CN=F9DF658FA80AA9718C17290160EA125D0D1D750C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c7:47:47:8d:07:04:89:8d:a1:f4:66:fc:bf:
9c:02:b0:26:95:1e:1b:fc:7f:4a:53:94:9f:38:33:
1d:b0:40:9e:3b:cf:64:58:a8:03:66:91:01:3f:74:
c0:d1:06:c0:20:6c:16:ab:4d:57:ac:b0:7e:d8:8e:
e5:cd:92:db:ff:d5:be:00:d2:cb:10:06:70:0a:7b:
06:b2:fd:4b:d1:28:c6:eb:92:5c:b5:69:10:d8:5b:
67:af:6c:4f:e6:90:60:6f:26:55:eb:20:58:1b:22:
62:98:45:79:68:9b:46:bb:e5:4c:85:9c:1d:8e:3c:
e6:b6:63:37:67:28:97:e2:f4:af:02:f0:ad:72:c8:
14:39:00:78:7c:a4:f3:ae:a7:09:af:e7:76:f0:df:
af:8f:e4:0f:2d:53:a4:57:40:ab:0e:d0:50:90:03:
31:fb:6b:b2:90:0b:55:ec:53:53:e2:03:9e:17:ea:
ef:57:70:f5:c8:bc:a9:85:27:be:78:8f:e9:8d:22:
e1:80:1d:c0:e3:b7:7e:2c:4f:27:1e:c8:b5:72:ca:
88:e2:1c:7c:c4:2c:48:03:1b:c6:2a:ce:8c:63:1e:
65:00:0c:03:1b:01:fb:f3:1f:50:70:10:8b:8b:2f:
17:6a:19:c1:38:ee:95:b5:22:d3:74:53:ee:50:8c:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DF:65:8F:A8:0A:A9:71:8C:17:29:01:60:EA:12:5D:0D:1D:75:0C
X509v3 Authority Key Identifier:
keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.138.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c2:0e:2d:96:6d:cd:41:56:f7:f9:b2:8d:97:a9:19:50:72:
e2:1e:cf:11:e4:cd:d2:0f:f7:00:ea:83:98:d4:b6:38:43:5b:
27:8e:6d:eb:cc:4a:fb:fb:2f:b2:2a:fe:f5:40:b8:82:7d:23:
cd:b5:24:d0:fd:f9:61:bc:91:d7:b4:9e:ec:fd:af:02:d2:b1:
ec:38:72:7e:66:b5:87:b4:2d:8a:97:26:18:ae:e6:66:57:2d:
23:dc:a1:8d:81:c8:93:e0:9d:5d:e8:26:8c:24:21:b4:b7:5c:
68:c1:a0:6a:5f:a0:15:e9:54:f3:21:da:fb:42:63:cb:24:75:
d6:f5:47:5e:0e:83:57:fd:2f:fc:84:17:1e:e3:57:ee:ce:fc:
d6:32:18:32:98:b7:d7:f6:48:15:f3:47:d5:af:8c:ba:28:a5:
23:80:b4:90:e0:e8:9a:b7:1d:59:26:4d:43:7f:74:c6:0f:6b:
cd:3d:c7:a7:19:2c:b0:9c:6d:55:9d:92:c0:78:d9:65:9c:a3:
d5:bf:51:48:99:11:7f:ee:97:92:a3:64:65:0e:6a:14:5b:7d:
a5:bc:21:2e:d6:94:ed:80:50:da:ed:46:21:f7:7c:d0:d5:84:
e1:87:ef:54:70:02:39:8a:12:d3:09:c3:97:05:a0:e0:db:d3:
94:bb:41:a6
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUdSHx7/UIydB2leM/30CBvok5BjAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB
RjcwRTczMzAeFw0yNTAyMjQxMzU1MDBaFw0yNjAyMjMxNDAwMDBaMDMxMTAvBgNV
BAMTKEY5REY2NThGQTgwQUE5NzE4QzE3MjkwMTYwRUExMjVEMEQxRDc1MEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0x0dHjQcEiY2h9Gb8v5wCsCaV
Hhv8f0pTlJ84Mx2wQJ47z2RYqANmkQE/dMDRBsAgbBarTVessH7YjuXNktv/1b4A
0ssQBnAKeway/UvRKMbrkly1aRDYW2evbE/mkGBvJlXrIFgbImKYRXlom0a75UyF
nB2OPOa2YzdnKJfi9K8C8K1yyBQ5AHh8pPOupwmv53bw36+P5A8tU6RXQKsO0FCQ
AzH7a7KQC1XsU1PiA54X6u9XcPXIvKmFJ754j+mNIuGAHcDjt34sTyceyLVyyoji
HHzELEgDG8YqzoxjHmUADAMbAfvzH1BwEIuLLxdqGcE47pW1ItN0U+5QjBQLAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU+d9lj6gKqXGMFykBYOoSXQ0ddQwwHwYDVR0j
BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC
NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw
RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04
OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIowDQYJ
KoZIhvcNAQELBQADggEBACrCDi2Wbc1BVvf5so2XqRlQcuIezxHkzdIP9wDqg5jU
tjhDWyeObevMSvv7L7Iq/vVAuIJ9I821JND9+WG8kde0nuz9rwLSsew4cn5mtYe0
LYqXJhiu5mZXLSPcoY2ByJPgnV3oJowkIbS3XGjBoGpfoBXpVPMh2vtCY8skddb1
R14Og1f9L/yEFx7jV+7O/NYyGDKYt9f2SBXzR9WvjLoopSOAtJDg6Jq3HVkmTUN/
dMYPa809x6cZLLCcbVWdksB42WWco9W/UUiZEX/ul5KjZGUOahRbfaW8IS7WlO2A
UNrtRiH3fNDVhOGH71RwAjmKEtMJw5cFoODb05S7QaY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:47:00 2025 by rpki-client