Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/3130332e3136392e3232322e302f32332d3234203d3e20313338383535.roa
File: 3130332e3136392e3232322e302f32332d3234203d3e20313338383535.roa (raw, json)
Hash identifier: 6wVMqMSXA+uPVRX4j6JWzyD8uZnPZJJ0Jsqrz/zO/Ts=
Subject key identifier: 73:DE:36:7D:6A:87:C9:9D:94:AC:E8:BC:65:15:B1:27:7B:B6:01:2D
Certificate issuer: /CN=BA0937086D03009DB3422C9809596F09C430C76E
Certificate serial: 6B3CAA93C512DCF32960D5785F46CB9F044FA63A
Authority key identifier: BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA0937086D03009DB3422C9809596F09C430C76E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/3130332e3136392e3232322e302f32332d3234203d3e20313338383535.roa
Signing time: Wed 19 Mar 2025 11:02:22 +0000
ROA not before: Wed 19 Mar 2025 10:57:22 +0000
ROA not after: Wed 18 Mar 2026 11:02:22 +0000
asID: 138855
IP address blocks: 103.169.222.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:3c:aa:93:c5:12:dc:f3:29:60:d5:78:5f:46:cb:9f:04:4f:a6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA0937086D03009DB3422C9809596F09C430C76E
Validity
Not Before: Mar 19 10:57:22 2025 GMT
Not After : Mar 18 11:02:22 2026 GMT
Subject: CN=73DE367D6A87C99D94ACE8BC6515B1277BB6012D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1b:24:d3:71:78:23:7e:86:5a:aa:8b:95:7d:
cc:5a:3f:f5:f0:00:29:f4:db:31:7a:82:1e:ed:b7:
7d:2d:ef:58:ef:57:dd:0c:3e:42:e6:1a:44:18:ad:
86:ad:b9:66:d3:1c:ff:17:82:58:cd:52:7b:fd:13:
4c:df:d5:8c:93:a4:e4:20:2c:a2:5c:49:03:2b:f8:
63:95:cd:6e:7b:26:92:63:27:5d:80:a8:27:58:68:
b2:fc:52:8e:11:3a:ce:ea:99:b9:4d:e8:06:e7:7e:
a2:40:f2:b7:02:a6:99:76:c2:db:9b:31:64:e8:9b:
80:c6:33:73:d9:e8:13:7e:aa:cc:d4:3c:52:95:f8:
c0:42:4f:c8:b3:18:49:06:40:c5:c1:65:60:fe:c2:
3e:5d:5a:ed:fa:db:12:61:51:f0:01:ab:46:a1:68:
cc:93:95:f6:de:77:98:75:1e:09:f4:fb:4c:dc:8e:
e3:a2:bc:6a:b0:c1:70:6d:72:73:e3:90:07:66:5b:
98:ca:87:bf:ac:d3:d0:32:e2:23:e2:c7:63:24:4c:
39:91:f3:01:a7:14:87:bf:fb:fc:2d:90:ef:5b:10:
e6:6e:78:d4:12:98:db:8f:74:8a:b5:5d:9c:f8:4f:
d2:34:79:18:78:be:d3:66:57:5b:6d:11:f4:09:ee:
3f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DE:36:7D:6A:87:C9:9D:94:AC:E8:BC:65:15:B1:27:7B:B6:01:2D
X509v3 Authority Key Identifier:
keyid:BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/BA0937086D03009DB3422C9809596F09C430C76E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA0937086D03009DB3422C9809596F09C430C76E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/3130332e3136392e3232322e302f32332d3234203d3e20313338383535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.222.0/23
Signature Algorithm: sha256WithRSAEncryption
62:b8:e6:8c:f1:76:02:c9:2a:70:ac:25:11:82:0e:99:e4:96:
01:e9:a5:b3:a2:4d:05:b2:33:ac:98:51:11:86:53:d3:34:ad:
44:ab:45:a5:64:43:fa:9c:6d:3c:7a:a5:a3:2e:fe:83:dc:45:
17:fb:30:2a:f6:5a:53:83:08:c0:d3:4e:30:31:4b:b1:4d:28:
a4:a8:fc:f2:83:96:a2:e2:01:87:dd:0c:92:f8:0d:2a:22:20:
9d:bf:cc:e6:83:d6:30:5d:d5:0c:46:94:92:46:97:ae:b7:f3:
39:d6:94:5e:e6:0a:0b:78:00:d4:79:8f:cd:67:d0:0e:fa:66:
5a:40:71:3e:93:77:87:78:e6:94:7e:5e:ac:78:7e:60:83:2c:
53:4c:df:67:a3:55:e6:16:06:ad:3b:62:8f:df:c4:70:e9:19:
6f:d3:8e:b7:79:73:c9:9e:a1:13:21:f1:bd:f5:d9:14:3c:78:
69:0c:8d:ef:95:97:b9:36:14:44:60:40:55:f0:2b:e3:9d:4b:
ce:95:e5:25:cf:09:5b:71:0c:16:07:11:e4:32:a3:74:cf:27:
62:06:63:b4:26:ab:16:96:01:87:37:3b:bf:87:a0:d1:0f:51:
d4:4a:d0:9e:22:bb:e8:7b:0c:fa:f1:2a:e9:1b:58:5c:10:b3:
ff:62:aa:fd
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUazyqk8US3PMpYNV4X0bLnwRPpjowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkEwOTM3MDg2RDAzMDA5REIzNDIyQzk4MDk1OTZGMDlD
NDMwQzc2RTAeFw0yNTAzMTkxMDU3MjJaFw0yNjAzMTgxMTAyMjJaMDMxMTAvBgNV
BAMTKDczREUzNjdENkE4N0M5OUQ5NEFDRThCQzY1MTVCMTI3N0JCNjAxMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9GyTTcXgjfoZaqouVfcxaP/Xw
ACn02zF6gh7tt30t71jvV90MPkLmGkQYrYatuWbTHP8XgljNUnv9E0zf1YyTpOQg
LKJcSQMr+GOVzW57JpJjJ12AqCdYaLL8Uo4ROs7qmblN6AbnfqJA8rcCppl2wtub
MWTom4DGM3PZ6BN+qszUPFKV+MBCT8izGEkGQMXBZWD+wj5dWu362xJhUfABq0ah
aMyTlfbed5h1Hgn0+0zcjuOivGqwwXBtcnPjkAdmW5jKh7+s09Ay4iPix2MkTDmR
8wGnFIe/+/wtkO9bEOZueNQSmNuPdIq1XZz4T9I0eRh4vtNmV1ttEfQJ7j+ZAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUc942fWqHyZ2UrOi8ZRWxJ3u2AS0wHwYDVR0j
BBgwFoAUugk3CG0DAJ2zQiyYCVlvCcQwx24wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
OWZlYWQ5ZC1kN2E3LTQ4M2ItOGYxNy0zMWIzMjNkOTdkOGYvMC9CQTA5MzcwODZE
MDMwMDlEQjM0MjJDOTgwOTU5NkYwOUM0MzBDNzZFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkEwOTM3MDg2RDAzMDA5REIzNDIyQzk4MDk1OTZGMDlDNDMw
Qzc2RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZmVhZDlkLWQ3YTctNDgzYi04
ZjE3LTMxYjMyM2Q5N2Q4Zi8wLzMxMzAzMzJlMzEzNjM5MmUzMjMyMzIyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM1MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqd4wDQYJ
KoZIhvcNAQELBQADggEBAGK45ozxdgLJKnCsJRGCDpnklgHppbOiTQWyM6yYURGG
U9M0rUSrRaVkQ/qcbTx6paMu/oPcRRf7MCr2WlODCMDTTjAxS7FNKKSo/PKDlqLi
AYfdDJL4DSoiIJ2/zOaD1jBd1QxGlJJGl6638znWlF7mCgt4ANR5j81n0A76ZlpA
cT6Td4d45pR+Xqx4fmCDLFNM32ejVeYWBq07Yo/fxHDpGW/Tjrd5c8meoRMh8b31
2RQ8eGkMje+Vl7k2FERgQFXwK+OdS86V5SXPCVtxDBYHEeQyo3TPJ2IGY7QmqxaW
AYc3O7+HoNEPUdRK0J4iu+h7DPrxKukbWFwQs/9iqv0=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:24:17 2025 by rpki-client