Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa
File: 3130332e3234382e35382e302f32332d3233203d3e203538383136.roa (raw, json)
Hash identifier: CV4aj5c0qTtoAuk2gjVJIigxTtOqOHVk941GV0y4c2o=
Subject key identifier: 47:46:49:72:3E:79:9D:5C:52:C4:D6:9A:8A:73:3A:EE:41:60:8E:1E
Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Certificate serial: 5839AEAACF6CEB8C1516A67E03DE97D2A1444BBD
Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa
Signing time: Tue 21 Jan 2025 06:00:00 +0000
ROA not before: Tue 21 Jan 2025 05:55:00 +0000
ROA not after: Tue 20 Jan 2026 06:00:00 +0000
asID: 58816
IP address blocks: 103.248.58.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:39:ae:aa:cf:6c:eb:8c:15:16:a6:7e:03:de:97:d2:a1:44:4b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Validity
Not Before: Jan 21 05:55:00 2025 GMT
Not After : Jan 20 06:00:00 2026 GMT
Subject: CN=474649723E799D5C52C4D69A8A733AEE41608E1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fb:29:a9:b1:0e:99:d8:97:ef:cd:7b:52:e9:
c4:11:2b:d3:d7:d6:b5:8f:b8:8b:3f:cb:ed:eb:95:
c8:4e:41:e4:16:27:51:07:23:b9:44:da:59:00:0c:
7e:53:a0:1b:a7:b0:e6:55:82:8b:5c:84:fa:02:b5:
fb:2f:91:83:1a:19:bc:aa:2e:88:65:ac:77:e5:e8:
c5:b5:88:53:2c:d1:c2:df:17:05:74:c6:2b:a4:04:
1e:3b:49:46:8d:58:25:d8:cd:15:a7:05:8d:5c:00:
bc:25:84:54:43:38:2e:e8:27:e4:b3:0a:ff:65:b6:
61:81:05:59:a8:97:e7:26:6f:66:dc:f6:51:c2:d7:
e1:6b:bd:d6:2e:11:16:7e:05:a2:eb:13:7a:a4:1e:
84:b5:54:14:8d:b6:b2:86:c8:a3:c7:62:7a:b5:31:
d6:04:2d:20:90:a8:3a:2c:c7:2b:17:e5:4e:46:98:
7e:ce:d3:7e:37:64:6a:ab:47:07:6f:e4:7f:07:57:
29:93:58:88:ea:bb:52:b0:32:37:55:3d:6c:49:a7:
70:a1:40:19:78:9c:8b:ca:03:f3:88:bb:35:98:0b:
88:df:4c:04:b3:59:ca:bb:25:9b:50:cf:d3:8d:3a:
35:b3:e5:2b:f1:12:ca:bb:e1:ec:d1:36:01:8f:bc:
9d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:46:49:72:3E:79:9D:5C:52:C4:D6:9A:8A:73:3A:EE:41:60:8E:1E
X509v3 Authority Key Identifier:
keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.58.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:ef:da:e6:4e:89:2d:50:3f:6a:d8:72:39:e1:be:f5:e9:1f:
93:d5:ba:b3:11:08:79:66:37:03:fa:c8:34:07:cd:ea:14:1e:
8d:53:b4:f6:2d:e7:bb:21:c8:f3:2b:be:53:b5:87:c9:6f:ee:
1c:29:ed:81:ef:39:7c:cf:40:e0:30:93:e7:d3:f2:c5:a3:29:
5d:cd:c9:c9:9a:27:87:2a:3d:73:93:7a:82:46:7d:bf:6e:d1:
e3:5e:7f:ab:c2:c1:04:c0:78:86:a2:1c:94:a6:ee:5d:13:c6:
7b:e1:39:49:da:3e:21:eb:24:29:67:4d:90:7c:39:80:4b:33:
74:c3:0a:8d:74:64:4c:86:64:6d:6a:b3:05:94:83:ec:14:a0:
26:74:7c:39:4b:c1:b0:38:d7:2a:9e:51:66:6b:f2:88:58:0e:
9e:0b:4a:b0:c8:7f:6a:05:2a:73:fb:eb:de:df:64:70:c2:bc:
fa:00:fc:10:82:e0:3d:e2:06:23:46:53:5f:2c:af:87:ac:aa:
19:21:0c:76:31:00:7b:0f:94:73:9b:a5:7b:27:c1:71:ab:00:
2f:ed:2c:17:ba:f2:79:b5:4c:3f:7d:ed:bd:2c:1e:46:84:ad:
5c:6a:cd:06:6d:11:23:c6:52:57:69:e1:62:92:43:09:2c:be:
88:b2:d6:cc
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUWDmuqs9s64wVFqZ+A96X0qFES70wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF
MkY5MjE2NjAeFw0yNTAxMjEwNTU1MDBaFw0yNjAxMjAwNjAwMDBaMDMxMTAvBgNV
BAMTKDQ3NDY0OTcyM0U3OTlENUM1MkM0RDY5QThBNzMzQUVFNDE2MDhFMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+ympsQ6Z2JfvzXtS6cQRK9PX
1rWPuIs/y+3rlchOQeQWJ1EHI7lE2lkADH5ToBunsOZVgotchPoCtfsvkYMaGbyq
LohlrHfl6MW1iFMs0cLfFwV0xiukBB47SUaNWCXYzRWnBY1cALwlhFRDOC7oJ+Sz
Cv9ltmGBBVmol+cmb2bc9lHC1+FrvdYuERZ+BaLrE3qkHoS1VBSNtrKGyKPHYnq1
MdYELSCQqDosxysX5U5GmH7O0343ZGqrRwdv5H8HVymTWIjqu1KwMjdVPWxJp3Ch
QBl4nIvKA/OIuzWYC4jfTASzWcq7JZtQz9ONOjWz5SvxEsq74ezRNgGPvJ3JAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUR0ZJcj55nVxSxNaainM67kFgjh4wHwYDVR0j
BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD
ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5
MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04
NzZlLWU5ZTIzYThkOGFkOS8wLzMxMzAzMzJlMzIzNDM4MmUzNTM4MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf4OjANBgkqhkiG
9w0BAQsFAAOCAQEAqu/a5k6JLVA/athyOeG+9ekfk9W6sxEIeWY3A/rINAfN6hQe
jVO09i3nuyHI8yu+U7WHyW/uHCntge85fM9A4DCT59PyxaMpXc3JyZonhyo9c5N6
gkZ9v27R415/q8LBBMB4hqIclKbuXRPGe+E5Sdo+IeskKWdNkHw5gEszdMMKjXRk
TIZkbWqzBZSD7BSgJnR8OUvBsDjXKp5RZmvyiFgOngtKsMh/agUqc/vr3t9kcMK8
+gD8EILgPeIGI0ZTXyyvh6yqGSEMdjEAew+Uc5uleyfBcasAL+0sF7ryebVMP33t
vSweRoStXGrNBm0RI8ZSV2nhYpJDCSy+iLLWzA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:44:07 2025 by rpki-client