Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e302e302f32332d3233203d3e20313335343539.roa
File: 3130332e36382e302e302f32332d3233203d3e20313335343539.roa (raw, json)
Hash identifier: V4qvx0NtNgVfF/lQGdNGi33YiX4i6WzXluSo+ohjrYk=
Subject key identifier: 2D:70:AD:8A:04:0C:D4:1B:0D:BB:41:DF:02:0D:C8:FD:AE:E3:BF:FE
Certificate issuer: /CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448
Certificate serial: 4CF986F90FA767E2A144A06546AF4A68A49FCA90
Authority key identifier: 73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e302e302f32332d3233203d3e20313335343539.roa
Signing time: Wed 15 May 2024 09:00:53 +0000
ROA not before: Wed 15 May 2024 08:55:53 +0000
ROA not after: Wed 14 May 2025 09:00:53 +0000
asID: 135459
IP address blocks: 103.68.0.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:f9:86:f9:0f:a7:67:e2:a1:44:a0:65:46:af:4a:68:a4:9f:ca:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448
Validity
Not Before: May 15 08:55:53 2024 GMT
Not After : May 14 09:00:53 2025 GMT
Subject: CN=2D70AD8A040CD41B0DBB41DF020DC8FDAEE3BFFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:36:0d:f8:ec:10:13:6a:c2:63:04:e9:51:97:
f3:00:67:d7:00:46:38:af:77:03:03:cb:7a:19:0c:
d7:3b:67:90:ae:f0:a7:bf:26:92:5b:8c:6f:15:ea:
33:15:58:17:0b:63:65:4b:d5:42:fe:15:0b:75:cf:
20:db:aa:90:fa:63:84:05:13:9d:73:f2:1c:46:6e:
fd:78:38:eb:88:a1:79:68:6c:0e:12:85:f8:c6:8e:
5b:c6:c8:cd:c5:eb:c3:71:2f:24:0a:ac:be:53:bf:
1e:10:2e:87:5f:b9:6c:d2:f2:32:7b:c4:10:55:a4:
51:d4:86:c1:4c:6b:3e:a0:82:7b:7a:77:e7:ff:83:
f5:53:fe:66:a4:32:4e:75:42:3b:b2:18:3d:12:f7:
7e:20:49:f5:35:0a:0e:0f:ae:3e:fd:33:50:b2:f9:
96:8e:4d:a9:56:c3:84:da:55:5f:6e:aa:2e:f0:88:
a1:cc:41:dc:4f:04:ec:cb:71:6f:c5:ac:0c:17:9d:
1c:a1:97:e6:b4:92:de:50:81:49:71:95:ac:d5:10:
3d:9c:fb:5f:8b:57:ce:4b:53:5e:60:a0:38:51:6a:
fb:e0:18:87:ea:f8:25:5b:f1:6c:fb:be:b1:7d:f2:
c5:40:f2:44:f2:88:66:b3:b1:cf:94:d0:51:89:c8:
28:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:70:AD:8A:04:0C:D4:1B:0D:BB:41:DF:02:0D:C8:FD:AE:E3:BF:FE
X509v3 Authority Key Identifier:
keyid:73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e302e302f32332d3233203d3e20313335343539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.68.0.0/23
Signature Algorithm: sha256WithRSAEncryption
15:5e:99:90:fa:89:74:1c:9f:8a:16:7d:6b:2f:77:f9:ef:6f:
c2:f0:4b:c5:d6:e1:75:c3:ff:6e:33:e4:0c:11:7c:af:93:a8:
15:7b:0c:f6:af:bb:fa:9b:34:af:1e:5a:82:00:8f:34:bd:12:
3f:1c:5a:82:8d:95:03:51:55:f6:7f:75:f5:74:0f:22:eb:38:
56:f8:1c:ef:3a:58:51:ff:8d:cc:10:f1:dc:55:03:18:92:d0:
09:50:8c:b9:01:0e:46:58:b0:55:97:82:07:21:84:b7:bc:c8:
62:5b:47:4b:75:44:00:6c:33:fe:98:bb:56:d3:2a:0c:08:80:
b9:e1:f3:5d:a8:1e:02:56:68:cf:6d:53:69:30:99:5e:57:64:
f5:bc:d8:e0:59:67:d6:5d:fb:d4:ea:a9:30:eb:cf:70:a5:54:
62:2b:12:9f:8f:a4:1a:fe:1b:fe:69:7a:a4:08:e1:ae:67:c2:
70:45:f6:c3:d3:f7:9e:6b:59:b2:d6:49:60:9f:ad:cc:25:89:
0a:47:cd:8c:c1:88:d0:c6:4b:0f:0e:ea:d4:7f:9e:7f:47:03:
a6:9d:a7:d1:91:ae:b0:4b:b4:01:12:65:f3:9f:7e:dd:56:15:
1a:3e:11:be:14:fb:42:89:f2:2d:2c:40:b6:7d:dd:86:7d:ea:
05:86:78:d0
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUTPmG+Q+nZ+KhRKBlRq9KaKSfypAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEw
RTMxMDQ0ODAeFw0yNDA1MTUwODU1NTNaFw0yNTA1MTQwOTAwNTNaMDMxMTAvBgNV
BAMTKDJENzBBRDhBMDQwQ0Q0MUIwREJCNDFERjAyMERDOEZEQUVFM0JGRkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqNg347BATasJjBOlRl/MAZ9cA
RjivdwMDy3oZDNc7Z5Cu8Ke/JpJbjG8V6jMVWBcLY2VL1UL+FQt1zyDbqpD6Y4QF
E51z8hxGbv14OOuIoXlobA4ShfjGjlvGyM3F68NxLyQKrL5Tvx4QLodfuWzS8jJ7
xBBVpFHUhsFMaz6ggnt6d+f/g/VT/makMk51QjuyGD0S934gSfU1Cg4Prj79M1Cy
+ZaOTalWw4TaVV9uqi7wiKHMQdxPBOzLcW/FrAwXnRyhl+a0kt5QgUlxlazVED2c
+1+LV85LU15goDhRavvgGIfq+CVb8Wz7vrF98sVA8kTyiGazsc+U0FGJyChrAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQULXCtigQM1BsNu0HfAg3I/a7jv/4wHwYDVR0j
BBgwFoAUc70mbu8TE27U9OlqtJhLWg4xBEgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZTk3ZGJjNi05Mzc0LTQyZTItYTNkMC04NzllZDZhMTkxOTYvMC83M0JEMjY2RUVG
MTMxMzZFRDRGNEU5NkFCNDk4NEI1QTBFMzEwNDQ4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEwRTMx
MDQ0OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOTdkYmM2LTkzNzQtNDJlMi1h
M2QwLTg3OWVkNmExOTE5Ni8wLzMxMzAzMzJlMzYzODJlMzAyZTMwMmYzMjMzMmQz
MjMzMjAzZDNlMjAzMTMzMzUzNDM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnRAAwDQYJKoZIhvcN
AQELBQADggEBABVemZD6iXQcn4oWfWsvd/nvb8LwS8XW4XXD/24z5AwRfK+TqBV7
DPavu/qbNK8eWoIAjzS9Ej8cWoKNlQNRVfZ/dfV0DyLrOFb4HO86WFH/jcwQ8dxV
AxiS0AlQjLkBDkZYsFWXggchhLe8yGJbR0t1RABsM/6Yu1bTKgwIgLnh812oHgJW
aM9tU2kwmV5XZPW82OBZZ9Zd+9TqqTDrz3ClVGIrEp+PpBr+G/5peqQI4a5nwnBF
9sPT955rWbLWSWCfrcwliQpHzYzBiNDGSw8O6tR/nn9HA6adp9GRrrBLtAESZfOf
ft1WFRo+Eb4U+0KJ8i0sQLZ93YZ96gWGeNA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:46:02 2025 by rpki-client