Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e20313331363931.roa
File: 3131362e3231332e34382e302f32302d3234203d3e20313331363931.roa (raw, json)
Hash identifier: PtxhHnbHahSgXHX4WjRf6JTV3tPCUK/OtTNHPmWKrxo=
Subject key identifier: 27:36:12:78:8A:D5:C6:DD:95:60:68:CF:D0:6D:DC:F7:79:FE:35:FB
Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E
Certificate serial: 1BA39FFEA8D58731286AF2373BE3524D79A8457A
Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e20313331363931.roa
Signing time: Mon 18 Nov 2024 19:00:02 +0000
ROA not before: Mon 18 Nov 2024 18:55:02 +0000
ROA not after: Mon 17 Nov 2025 19:00:02 +0000
asID: 131691
IP address blocks: 116.213.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:a3:9f:fe:a8:d5:87:31:28:6a:f2:37:3b:e3:52:4d:79:a8:45:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E
Validity
Not Before: Nov 18 18:55:02 2024 GMT
Not After : Nov 17 19:00:02 2025 GMT
Subject: CN=273612788AD5C6DD956068CFD06DDCF779FE35FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5d:62:27:11:1e:3a:95:5b:71:00:0b:6c:4a:
e8:93:bd:a3:c1:16:0f:cc:f7:e5:9e:47:27:12:07:
69:83:01:63:d6:11:be:80:5a:b3:f8:f9:ee:3c:a0:
d0:f8:24:59:2f:97:ca:2b:26:32:f0:df:48:49:a1:
fd:a6:af:14:65:c0:0b:5d:7d:c7:d4:5e:63:d0:ac:
8c:f6:41:d7:3f:98:5e:e9:4c:0b:bd:8c:63:93:b6:
50:68:67:a1:18:2a:94:e9:49:fe:43:af:ef:33:a9:
4d:1c:c6:c8:94:80:4d:af:6a:c4:83:d4:0a:06:5c:
88:26:0a:01:21:1f:1e:77:a3:4c:e5:14:b0:e9:fb:
a7:f0:8d:15:f1:01:62:97:a7:87:97:ad:e8:ed:83:
d8:d1:12:c9:82:5d:aa:4f:39:e5:dd:9d:57:07:d3:
e3:2a:06:63:3d:65:7d:29:e4:f9:3f:a0:4f:71:23:
da:c2:dc:25:2f:ac:e0:62:91:51:3d:06:66:e4:72:
1e:a9:c8:e6:55:94:47:fa:95:71:97:88:84:0b:8d:
28:d5:73:85:2a:80:a5:8b:5b:06:15:90:a2:a8:22:
88:26:5e:87:3f:f8:d8:3a:fb:96:a2:cc:d6:64:d0:
31:c0:d5:1c:80:af:99:11:61:00:34:e8:23:cd:4c:
3a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:36:12:78:8A:D5:C6:DD:95:60:68:CF:D0:6D:DC:F7:79:FE:35:FB
X509v3 Authority Key Identifier:
keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3131362e3231332e34382e302f32302d3234203d3e20313331363931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.213.48.0/20
Signature Algorithm: sha256WithRSAEncryption
06:f6:50:fd:0a:dd:3d:4c:72:83:c3:d9:6e:b9:6f:02:4a:87:
0f:f0:1d:f4:f3:88:22:4e:f4:c3:28:38:9b:ed:73:f1:60:c0:
8b:c6:44:a2:11:60:6e:80:e7:51:6f:6a:ce:7d:0a:46:8d:13:
a2:14:e6:a7:62:13:ef:84:8a:4e:b4:9e:14:c7:4d:07:02:b7:
41:b8:4e:24:28:ab:85:07:26:49:6e:8f:b4:31:4a:f0:6b:9c:
fe:eb:67:14:50:bb:7c:da:e9:8e:67:df:67:fe:b6:16:11:6d:
41:fc:76:d3:86:e3:46:79:d1:66:2a:a2:93:a4:32:45:84:d0:
d9:72:b7:60:ee:da:f0:0c:03:cd:8f:1a:07:dd:67:6c:83:f5:
c8:5f:3e:d4:5d:fc:42:e0:56:ec:ae:37:35:49:b5:b9:71:56:
65:52:44:e7:2a:fe:fe:83:40:d3:8a:9a:28:d9:bf:8e:29:7b:
ef:e1:ba:c1:88:f0:7d:d7:2a:22:7c:3e:55:92:eb:34:8d:ba:
fe:b7:f6:42:cd:f5:67:a2:86:2c:aa:5a:70:34:16:ae:e8:f0:
62:e4:b3:d8:24:ff:07:8a:3b:75:32:b2:39:c1:9b:89:58:a2:
de:84:5f:f2:6b:e5:83:53:24:9f:97:97:ff:22:e9:29:39:30:
65:a1:0e:dc
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUG6Of/qjVhzEoavI3O+NSTXmoRXowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw
RjFDNDg5RTAeFw0yNDExMTgxODU1MDJaFw0yNTExMTcxOTAwMDJaMDMxMTAvBgNV
BAMTKDI3MzYxMjc4OEFENUM2REQ5NTYwNjhDRkQwNkREQ0Y3NzlGRTM1RkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnXWInER46lVtxAAtsSuiTvaPB
Fg/M9+WeRycSB2mDAWPWEb6AWrP4+e48oND4JFkvl8orJjLw30hJof2mrxRlwAtd
fcfUXmPQrIz2Qdc/mF7pTAu9jGOTtlBoZ6EYKpTpSf5Dr+8zqU0cxsiUgE2vasSD
1AoGXIgmCgEhHx53o0zlFLDp+6fwjRXxAWKXp4eXrejtg9jREsmCXapPOeXdnVcH
0+MqBmM9ZX0p5Pk/oE9xI9rC3CUvrOBikVE9Bmbkch6pyOZVlEf6lXGXiIQLjSjV
c4UqgKWLWwYVkKKoIogmXoc/+Ng6+5aizNZk0DHA1RyAr5kRYQA06CPNTDrvAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUJzYSeIrVxt2VYGjP0G3c93n+NfswHwYDVR0j
BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC
RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD
NDg5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h
MTgzLTM0YjM0NTdiZWEwMy8wLzMxMzEzNjJlMzIzMTMzMmUzNDM4MmUzMDJmMzIz
MDJkMzIzNDIwM2QzZTIwMzEzMzMxMzYzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdNUwMA0GCSqG
SIb3DQEBCwUAA4IBAQAG9lD9Ct09THKDw9luuW8CSocP8B3084giTvTDKDib7XPx
YMCLxkSiEWBugOdRb2rOfQpGjROiFOanYhPvhIpOtJ4Ux00HArdBuE4kKKuFByZJ
bo+0MUrwa5z+62cUULt82umOZ99n/rYWEW1B/HbThuNGedFmKqKTpDJFhNDZcrdg
7trwDAPNjxoH3Wdsg/XIXz7UXfxC4Fbsrjc1SbW5cVZlUkTnKv7+g0DTipoo2b+O
KXvv4brBiPB91yoifD5Vkus0jbr+t/ZCzfVnooYsqlpwNBau6PBi5LPYJP8Hijt1
MrI5wZuJWKLehF/ya+WDUySfl5f/IukpOTBloQ7c
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:26:57 2025 by rpki-client