Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5b521bd1-1da2-4b80-8416-f05de292216e/0/3130332e37382e35312e302f32342d3234203d3e20313530323536.roa
File: 3130332e37382e35312e302f32342d3234203d3e20313530323536.roa (raw, json)
Hash identifier: IGaUhhhYSDgHiHBNKXPmkyIkbMtz8KycOxh90/k+Fes=
Subject key identifier: 94:EC:F5:E6:9C:0F:40:B1:40:0D:CE:37:C3:2C:1C:E9:1C:CF:5D:58
Certificate issuer: /CN=C6950FBC93F309E839CFC5E1A2EF0F6C91BF09C7
Certificate serial: 54357CCC72F4B4A12082FAF0FFD6F9B3CF8FFCF8
Authority key identifier: C6:95:0F:BC:93:F3:09:E8:39:CF:C5:E1:A2:EF:0F:6C:91:BF:09:C7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6950FBC93F309E839CFC5E1A2EF0F6C91BF09C7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5b521bd1-1da2-4b80-8416-f05de292216e/0/3130332e37382e35312e302f32342d3234203d3e20313530323536.roa
Signing time: Tue 31 Dec 2024 12:00:00 +0000
ROA not before: Tue 31 Dec 2024 11:55:00 +0000
ROA not after: Tue 30 Dec 2025 12:00:00 +0000
asID: 150256
IP address blocks: 103.78.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:35:7c:cc:72:f4:b4:a1:20:82:fa:f0:ff:d6:f9:b3:cf:8f:fc:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C6950FBC93F309E839CFC5E1A2EF0F6C91BF09C7
Validity
Not Before: Dec 31 11:55:00 2024 GMT
Not After : Dec 30 12:00:00 2025 GMT
Subject: CN=94ECF5E69C0F40B1400DCE37C32C1CE91CCF5D58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:4e:bc:20:a6:dc:c5:5f:21:38:2a:6a:73:
2e:47:c4:f2:5b:f7:da:36:83:de:6b:5a:16:d6:e6:
5f:1d:0c:24:48:30:b4:37:77:c9:45:27:45:63:b5:
f5:ff:29:5b:39:0e:e4:92:0e:57:16:0e:66:29:fa:
97:f1:8e:67:60:fd:df:32:17:25:9a:fa:77:e4:44:
57:77:c5:23:12:f4:ac:4c:25:da:5c:de:24:09:6d:
92:a7:f9:93:aa:04:1a:57:88:2b:9a:85:86:66:69:
a3:a0:ac:30:d0:bb:41:f9:da:14:74:e3:18:01:ff:
b3:2a:dd:b6:b5:4d:02:7c:20:fd:39:96:dd:0f:da:
40:b9:57:c4:bd:d4:96:e3:70:e7:80:1c:5c:7c:24:
28:c5:e7:4f:3d:b4:5d:fa:eb:a0:f0:ba:c6:51:a8:
0f:33:b1:ad:51:a4:10:9d:fc:41:f5:47:f0:b5:0f:
fb:73:2b:3e:16:19:de:e3:3d:ed:73:35:fa:9d:34:
2c:43:85:3e:bb:67:f1:84:f4:24:af:22:17:7d:7b:
7c:e1:74:1b:ae:93:17:96:df:8d:1d:f8:90:be:26:
91:41:20:ac:1a:44:73:c3:64:18:d8:54:82:23:fc:
ed:c4:0e:fa:91:cf:06:2d:3b:9d:49:44:03:be:1c:
97:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:EC:F5:E6:9C:0F:40:B1:40:0D:CE:37:C3:2C:1C:E9:1C:CF:5D:58
X509v3 Authority Key Identifier:
keyid:C6:95:0F:BC:93:F3:09:E8:39:CF:C5:E1:A2:EF:0F:6C:91:BF:09:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5b521bd1-1da2-4b80-8416-f05de292216e/0/C6950FBC93F309E839CFC5E1A2EF0F6C91BF09C7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C6950FBC93F309E839CFC5E1A2EF0F6C91BF09C7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5b521bd1-1da2-4b80-8416-f05de292216e/0/3130332e37382e35312e302f32342d3234203d3e20313530323536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.78.51.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:c2:31:30:95:25:2e:8c:e3:7e:8e:16:f1:25:87:7f:f1:40:
a3:02:3a:45:6d:14:56:af:a2:d0:90:ee:8f:85:18:88:a1:20:
e3:91:1e:04:7a:22:c2:81:12:44:a4:93:cf:18:3f:cc:09:11:
25:8c:42:bc:73:cd:c4:a1:ae:a1:e4:1e:90:d8:c9:8c:2e:58:
8a:26:4c:35:27:2f:2d:61:f1:c3:5e:fa:e8:f0:52:8a:db:2a:
cd:ec:f8:d9:06:05:55:3f:d2:aa:fa:ed:9e:9a:50:9d:a6:4e:
fc:ea:9e:a6:38:10:d8:fe:ac:a4:13:ec:e8:df:bd:12:cc:4c:
27:0d:18:b6:ac:97:19:98:ba:90:d1:c1:3d:3d:2e:ef:71:5c:
c1:15:11:31:b7:8b:c0:2a:e3:19:e2:46:18:8c:e6:87:2a:d9:
a1:dc:15:86:7c:01:4a:c7:bf:3a:6a:af:dd:14:22:53:32:62:
2a:e9:5e:b6:53:72:c3:42:ef:d7:4a:33:d2:93:d6:b7:cb:f2:
bc:7c:ff:ea:91:b0:37:47:b1:4b:ed:9f:4e:a2:bb:a4:b6:7c:
41:c3:bd:ce:62:c3:78:c9:b7:f1:de:51:8d:8c:f7:77:3e:78:
9d:5c:f3:b2:d5:de:e7:3f:ed:eb:d2:95:2b:71:97:9b:8f:41:
7b:37:f0:6a
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUVDV8zHL0tKEggvrw/9b5s8+P/PgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzY5NTBGQkM5M0YzMDlFODM5Q0ZDNUUxQTJFRjBGNkM5
MUJGMDlDNzAeFw0yNDEyMzExMTU1MDBaFw0yNTEyMzAxMjAwMDBaMDMxMTAvBgNV
BAMTKDk0RUNGNUU2OUMwRjQwQjE0MDBEQ0UzN0MzMkMxQ0U5MUNDRjVENTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChj068IKbcxV8hOCpqcy5HxPJb
99o2g95rWhbW5l8dDCRIMLQ3d8lFJ0VjtfX/KVs5DuSSDlcWDmYp+pfxjmdg/d8y
FyWa+nfkRFd3xSMS9KxMJdpc3iQJbZKn+ZOqBBpXiCuahYZmaaOgrDDQu0H52hR0
4xgB/7Mq3ba1TQJ8IP05lt0P2kC5V8S91JbjcOeAHFx8JCjF5089tF3666DwusZR
qA8zsa1RpBCd/EH1R/C1D/tzKz4WGd7jPe1zNfqdNCxDhT67Z/GE9CSvIhd9e3zh
dBuukxeW340d+JC+JpFBIKwaRHPDZBjYVIIj/O3EDvqRzwYtO51JRAO+HJdBAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUlOz15pwPQLFADc43wywc6RzPXVgwHwYDVR0j
BBgwFoAUxpUPvJPzCeg5z8Xhou8PbJG/CccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YjUyMWJkMS0xZGEyLTRiODAtODQxNi1mMDVkZTI5MjIxNmUvMC9DNjk1MEZCQzkz
RjMwOUU4MzlDRkM1RTFBMkVGMEY2QzkxQkYwOUM3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzY5NTBGQkM5M0YzMDlFODM5Q0ZDNUUxQTJFRjBGNkM5MUJG
MDlDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViNTIxYmQxLTFkYTItNGI4MC04
NDE2LWYwNWRlMjkyMjE2ZS8wLzMxMzAzMzJlMzczODJlMzUzMTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdOMzANBgkqhkiG
9w0BAQsFAAOCAQEALMIxMJUlLozjfo4W8SWHf/FAowI6RW0UVq+i0JDuj4UYiKEg
45EeBHoiwoESRKSTzxg/zAkRJYxCvHPNxKGuoeQekNjJjC5YiiZMNScvLWHxw176
6PBSitsqzez42QYFVT/SqvrtnppQnaZO/OqepjgQ2P6spBPs6N+9EsxMJw0YtqyX
GZi6kNHBPT0u73FcwRURMbeLwCrjGeJGGIzmhyrZodwVhnwBSse/Omqv3RQiUzJi
KuletlNyw0Lv10oz0pPWt8vyvHz/6pGwN0exS+2fTqK7pLZ8QcO9zmLDeMm38d5R
jYz3dz54nVzzstXe5z/t69KVK3GXm49Bezfwag==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:26 2025 by rpki-client