Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/3130332e31332e33362e302f32342d3234203d3e20313331373231.roa
File: 3130332e31332e33362e302f32342d3234203d3e20313331373231.roa (raw, json)
Hash identifier: 6F/+m53CI+OBq/k1F+jb2qhZ0UKG610wF81rsZOA7iw=
Subject key identifier: 62:F8:F9:9A:BB:07:D5:C1:A1:1D:E1:44:E0:BF:0F:30:99:26:51:09
Certificate issuer: /CN=A4A4C426A4F42A29829636FB3223FA7F5C68509A
Certificate serial: 77BD99CF61C0110BB0248E34B20533D4DC8E5719
Authority key identifier: A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/3130332e31332e33362e302f32342d3234203d3e20313331373231.roa
Signing time: Thu 09 Jan 2025 06:00:01 +0000
ROA not before: Thu 09 Jan 2025 05:55:01 +0000
ROA not after: Thu 08 Jan 2026 06:00:01 +0000
asID: 131721
IP address blocks: 103.13.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:bd:99:cf:61:c0:11:0b:b0:24:8e:34:b2:05:33:d4:dc:8e:57:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4A4C426A4F42A29829636FB3223FA7F5C68509A
Validity
Not Before: Jan 9 05:55:01 2025 GMT
Not After : Jan 8 06:00:01 2026 GMT
Subject: CN=62F8F99ABB07D5C1A11DE144E0BF0F3099265109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:ff:fa:ae:7f:30:5b:c7:84:25:f7:a2:66:
ff:75:60:37:b1:26:4a:04:92:80:27:f1:71:35:c4:
ec:b8:4e:0e:8a:0f:89:71:4d:3e:c0:ac:ac:83:ca:
97:1c:38:56:dd:bf:76:8f:39:40:7d:5b:9f:7f:96:
46:2a:05:b0:95:87:b0:e0:ca:1c:7c:16:15:5d:4c:
5d:b8:88:63:b5:54:32:f6:7e:9b:58:5c:5b:f1:ed:
62:d8:ee:b4:29:c9:fe:4d:51:d2:10:b6:62:d2:3f:
6d:f7:5d:11:11:5a:e6:cd:25:6b:ad:68:d0:e3:35:
ed:74:4f:4c:bf:e5:7d:1a:fe:45:f0:e0:7c:46:27:
dc:36:ad:31:53:dd:ec:9b:55:db:ca:63:49:3a:49:
f0:de:36:da:ef:b5:06:8d:40:0c:a7:c3:e9:93:7c:
ab:84:c2:4b:d4:46:b1:0b:fa:2c:e1:ee:d9:67:d3:
9d:59:eb:fa:4e:8d:c5:de:10:de:0a:54:95:95:34:
08:2c:4e:a1:a4:61:34:ee:92:5f:db:3f:bb:04:61:
c6:f5:de:60:66:cd:40:0e:df:e1:50:f6:51:f4:53:
1e:48:7d:b7:7f:00:f8:84:4e:a3:44:26:13:ee:a8:
36:6e:3f:e9:ca:3a:f9:c7:d3:b6:29:d0:a2:46:b0:
44:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F8:F9:9A:BB:07:D5:C1:A1:1D:E1:44:E0:BF:0F:30:99:26:51:09
X509v3 Authority Key Identifier:
keyid:A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/A4A4C426A4F42A29829636FB3223FA7F5C68509A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/3130332e31332e33362e302f32342d3234203d3e20313331373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.13.36.0/24
Signature Algorithm: sha256WithRSAEncryption
02:ce:c2:ae:a1:05:c0:22:79:0f:57:1a:b6:72:2a:7a:36:95:
85:37:e4:58:22:bd:de:13:06:b3:7e:14:5d:00:32:5d:f4:3b:
e2:4e:36:d8:37:82:d0:b3:a4:9c:c4:00:25:6d:5e:b7:22:82:
64:1c:b0:6c:2d:e4:0b:21:9b:b4:62:cb:88:12:60:8a:c4:ea:
51:43:a2:63:0d:1a:70:e4:0c:82:6d:d0:84:ba:fd:62:d3:26:
33:f1:17:6e:3f:9c:ff:28:2a:94:af:83:be:84:8d:ce:22:b5:
52:f3:4c:28:57:e3:d7:b2:34:54:cb:ca:f1:bc:25:ee:42:04:
8b:70:8c:65:0f:33:d7:ac:d3:9d:d8:23:8d:d8:f7:f3:13:1b:
68:1e:0f:09:be:34:49:2e:31:87:fc:b4:57:55:cc:ca:dd:43:
18:4f:88:ec:31:24:73:0a:dc:2e:25:d9:2f:31:05:fa:e8:e0:
0b:31:36:1a:96:89:25:77:5e:8d:50:7a:f6:95:73:44:0b:dc:
3f:ee:fa:8a:87:e8:f1:37:c0:6d:6c:16:83:ae:f3:aa:30:eb:
c0:09:88:aa:02:a7:9c:61:f5:e3:7b:d9:b7:91:36:54:8e:2e:
6f:55:0b:61:79:2a:dd:7d:e6:ea:34:a4:bd:61:a6:83:cc:8b:
bf:e5:82:48
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUd72Zz2HAEQuwJI40sgUz1NyOVxkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTRBNEM0MjZBNEY0MkEyOTgyOTYzNkZCMzIyM0ZBN0Y1
QzY4NTA5QTAeFw0yNTAxMDkwNTU1MDFaFw0yNjAxMDgwNjAwMDFaMDMxMTAvBgNV
BAMTKDYyRjhGOTlBQkIwN0Q1QzFBMTFERTE0NEUwQkYwRjMwOTkyNjUxMDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC03v/6rn8wW8eEJfeiZv91YDex
JkoEkoAn8XE1xOy4Tg6KD4lxTT7ArKyDypccOFbdv3aPOUB9W59/lkYqBbCVh7Dg
yhx8FhVdTF24iGO1VDL2fptYXFvx7WLY7rQpyf5NUdIQtmLSP233XRERWubNJWut
aNDjNe10T0y/5X0a/kXw4HxGJ9w2rTFT3eybVdvKY0k6SfDeNtrvtQaNQAynw+mT
fKuEwkvURrEL+izh7tln051Z6/pOjcXeEN4KVJWVNAgsTqGkYTTukl/bP7sEYcb1
3mBmzUAO3+FQ9lH0Ux5Ifbd/APiETqNEJhPuqDZuP+nKOvnH07Yp0KJGsEQpAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUYvj5mrsH1cGhHeFE4L8PMJkmUQkwHwYDVR0j
BBgwFoAUpKTEJqT0KimCljb7MiP6f1xoUJowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YmFlYmZiMy1lMjliLTQ3YzQtYmQyMS00NTcxYzMwZjQ0MWIvMC9BNEE0QzQyNkE0
RjQyQTI5ODI5NjM2RkIzMjIzRkE3RjVDNjg1MDlBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTRBNEM0MjZBNEY0MkEyOTgyOTYzNkZCMzIyM0ZBN0Y1QzY4
NTA5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViYWViZmIzLWUyOWItNDdjNC1i
ZDIxLTQ1NzFjMzBmNDQxYi8wLzMxMzAzMzJlMzEzMzJlMzMzNjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcNJDANBgkqhkiG
9w0BAQsFAAOCAQEAAs7CrqEFwCJ5D1catnIqejaVhTfkWCK93hMGs34UXQAyXfQ7
4k422DeC0LOknMQAJW1etyKCZBywbC3kCyGbtGLLiBJgisTqUUOiYw0acOQMgm3Q
hLr9YtMmM/EXbj+c/ygqlK+DvoSNziK1UvNMKFfj17I0VMvK8bwl7kIEi3CMZQ8z
16zTndgjjdj38xMbaB4PCb40SS4xh/y0V1XMyt1DGE+I7DEkcwrcLiXZLzEF+ujg
CzE2GpaJJXdejVB69pVzRAvcP+76iofo8TfAbWwWg67zqjDrwAmIqgKnnGH143vZ
t5E2VI4ub1ULYXkq3X3m6jSkvWGmg8yLv+WCSA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:59 2025 by rpki-client