Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa
File: 3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa (raw, json)
Hash identifier: 9hSdOJYAB1FezhzlJu5cbjM1IwCbIITSX9JZxyyiY5w=
Subject key identifier: 23:2C:59:93:95:7B:26:EB:3C:41:95:47:42:C7:59:5C:D0:D4:30:CF
Certificate issuer: /CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9
Certificate serial: 1A2A0512399334D3F5D5CE0B76463E7DFEE5A82D
Authority key identifier: 0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa
Signing time: Wed 28 Aug 2024 02:00:43 +0000
ROA not before: Wed 28 Aug 2024 01:55:43 +0000
ROA not after: Wed 27 Aug 2025 02:00:43 +0000
asID: 142360
IP address blocks: 103.147.156.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:2a:05:12:39:93:34:d3:f5:d5:ce:0b:76:46:3e:7d:fe:e5:a8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9
Validity
Not Before: Aug 28 01:55:43 2024 GMT
Not After : Aug 27 02:00:43 2025 GMT
Subject: CN=232C5993957B26EB3C41954742C7595CD0D430CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c5:9a:e6:9d:b0:19:75:bc:f0:c1:d4:5a:30:
1b:a1:a1:8c:c0:2f:7f:61:c4:12:19:3d:24:ae:ff:
5a:aa:91:e0:95:33:5a:fc:f6:ea:0c:f9:61:dd:37:
cd:08:a7:48:19:54:2c:4d:57:6b:06:f4:1a:81:cd:
1b:ba:6c:a9:34:dc:1c:40:f6:61:01:0d:2b:3f:c0:
15:b7:36:13:b3:5a:2c:95:ce:85:71:5f:14:21:4f:
64:53:a2:6b:c9:c7:8d:e9:90:bc:f9:9e:ec:53:01:
10:58:df:8a:39:12:fa:19:e0:b8:3c:79:4a:fc:ce:
99:9c:b7:0d:1b:26:44:59:3e:2f:99:35:2f:2d:31:
27:33:d1:96:a3:94:e5:4e:85:7e:96:74:11:98:fe:
b4:a8:f6:8e:bb:85:f6:67:03:d7:cd:1a:f3:c9:80:
10:93:1f:06:0a:10:3c:3d:3b:c2:6f:f2:ca:a3:9a:
1b:22:4b:c6:69:e7:a9:13:51:cc:77:3c:38:e9:a1:
67:c5:a1:6d:06:ba:8b:2b:32:21:47:fb:a9:ea:06:
86:17:96:54:66:2b:a1:81:32:77:27:b3:67:18:00:
ed:c0:a5:65:84:79:a4:69:fe:1b:fd:af:0e:22:f9:
fe:d2:b2:ab:b9:e7:a5:2e:60:8c:f7:5a:3b:82:01:
f2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2C:59:93:95:7B:26:EB:3C:41:95:47:42:C7:59:5C:D0:D4:30:CF
X509v3 Authority Key Identifier:
keyid:0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/0D3926ADFB47314F1E7D5B92769131D429FC13A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135362e302f32332d3233203d3e20313432333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.156.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:46:b7:1c:64:2b:90:5e:d2:5f:42:5c:8d:06:cd:ee:a5:35:
8d:77:a0:3d:4f:fa:7f:b8:f6:60:c5:66:b0:54:6e:56:54:e4:
57:d5:9f:9a:70:24:21:53:95:f3:3d:b5:90:fa:7a:39:ce:8a:
7e:02:6c:d8:05:f5:92:d6:fd:03:de:63:d8:0f:ce:a2:e5:2c:
1b:c5:05:a2:64:47:9c:63:5b:bc:ab:5a:38:70:bf:2c:1a:38:
32:cc:7c:88:d5:99:28:38:fc:41:46:ca:29:0e:2f:ee:a6:35:
b2:78:b1:1e:84:8d:df:03:8d:73:6b:f2:f4:d9:e2:64:a5:66:
24:ef:6c:98:b7:30:84:da:e2:40:cd:d4:1d:a3:71:1a:b4:1e:
66:4b:ca:3c:41:1b:55:c8:f1:87:56:7d:9e:79:d5:6e:73:16:
d7:3c:c6:41:e3:5f:08:10:d2:c4:cf:18:5b:9f:f5:a9:bb:d3:
f2:05:ab:7f:6d:4e:14:db:b0:75:7e:b7:c6:82:d3:83:50:b1:
b4:35:f7:91:a6:29:cb:ba:f8:da:66:9c:5f:01:98:2f:4f:d9:
67:18:7d:1a:f5:49:7b:d5:a2:d1:8a:90:b5:83:b7:3a:a6:a1:
f0:7b:60:31:f2:f9:5c:85:4f:fc:48:bb:d0:ba:e9:3c:40:30:
d2:69:e2:66
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUGioFEjmTNNP11c4LdkY+ff7lqC0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEQzOTI2QURGQjQ3MzE0RjFFN0Q1QjkyNzY5MTMxRDQy
OUZDMTNBOTAeFw0yNDA4MjgwMTU1NDNaFw0yNTA4MjcwMjAwNDNaMDMxMTAvBgNV
BAMTKDIzMkM1OTkzOTU3QjI2RUIzQzQxOTU0NzQyQzc1OTVDRDBENDMwQ0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBxZrmnbAZdbzwwdRaMBuhoYzA
L39hxBIZPSSu/1qqkeCVM1r89uoM+WHdN80Ip0gZVCxNV2sG9BqBzRu6bKk03BxA
9mEBDSs/wBW3NhOzWiyVzoVxXxQhT2RTomvJx43pkLz5nuxTARBY34o5EvoZ4Lg8
eUr8zpmctw0bJkRZPi+ZNS8tMScz0ZajlOVOhX6WdBGY/rSo9o67hfZnA9fNGvPJ
gBCTHwYKEDw9O8Jv8sqjmhsiS8Zp56kTUcx3PDjpoWfFoW0GuosrMiFH+6nqBoYX
llRmK6GBMncns2cYAO3ApWWEeaRp/hv9rw4i+f7Ssqu556UuYIz3WjuCAfIpAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUIyxZk5V7Jus8QZVHQsdZXNDUMM8wHwYDVR0j
BBgwFoAUDTkmrftHMU8efVuSdpEx1Cn8E6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MmRhYTk1Zi0yZjU5LTQzOWEtODM0Zi1hNzIxYzM3MmE3NGMvMC8wRDM5MjZBREZC
NDczMTRGMUU3RDVCOTI3NjkxMzFENDI5RkMxM0E5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMEQzOTI2QURGQjQ3MzE0RjFFN0Q1QjkyNzY5MTMxRDQyOUZD
MTNBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZGFhOTVmLTJmNTktNDM5YS04
MzRmLWE3MjFjMzcyYTc0Yy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM1MzYyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM2MzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk5wwDQYJ
KoZIhvcNAQELBQADggEBALdGtxxkK5Be0l9CXI0Gze6lNY13oD1P+n+49mDFZrBU
blZU5FfVn5pwJCFTlfM9tZD6ejnOin4CbNgF9ZLW/QPeY9gPzqLlLBvFBaJkR5xj
W7yrWjhwvywaODLMfIjVmSg4/EFGyikOL+6mNbJ4sR6Ejd8DjXNr8vTZ4mSlZiTv
bJi3MITa4kDN1B2jcRq0HmZLyjxBG1XI8YdWfZ551W5zFtc8xkHjXwgQ0sTPGFuf
9am70/IFq39tThTbsHV+t8aC04NQsbQ195GmKcu6+NpmnF8BmC9P2WcYfRr1SXvV
otGKkLWDtzqmofB7YDHy+VyFT/xIu9C66TxAMNJp4mY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:11:36 2025 by rpki-client