Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39322e302f32342d3234203d3e203538343737.roa
File: 3130332e35362e39322e302f32342d3234203d3e203538343737.roa (raw, json)
Hash identifier: 2PIJNDCqxr1CYBMDta4AS70nqIttL7WaXTQsdNAh5fU=
Subject key identifier: D0:D4:CF:45:33:6B:3E:45:8D:98:F5:26:39:02:09:9F:5B:6D:20:F2
Certificate issuer: /CN=17502B1B8651CDBBCD43315B12E26B9625112CEB
Certificate serial: 6D62C5333853EE588002739FC9F5B532A85FD0F6
Authority key identifier: 17:50:2B:1B:86:51:CD:BB:CD:43:31:5B:12:E2:6B:96:25:11:2C:EB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17502B1B8651CDBBCD43315B12E26B9625112CEB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39322e302f32342d3234203d3e203538343737.roa
Signing time: Wed 20 Nov 2024 10:03:09 +0000
ROA not before: Wed 20 Nov 2024 09:58:09 +0000
ROA not after: Wed 19 Nov 2025 10:03:09 +0000
asID: 58477
IP address blocks: 103.56.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:62:c5:33:38:53:ee:58:80:02:73:9f:c9:f5:b5:32:a8:5f:d0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17502B1B8651CDBBCD43315B12E26B9625112CEB
Validity
Not Before: Nov 20 09:58:09 2024 GMT
Not After : Nov 19 10:03:09 2025 GMT
Subject: CN=D0D4CF45336B3E458D98F5263902099F5B6D20F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:a8:7b:cd:04:92:f0:1f:92:fe:61:2d:5f:
21:2e:0a:48:b1:0d:c0:10:51:08:68:af:b4:ab:66:
11:f8:1e:be:fb:1e:b1:d8:4b:e9:76:f7:64:e4:09:
1f:dd:a0:02:4e:d1:87:0b:9c:13:29:10:5e:b2:03:
d3:50:57:43:3e:4d:08:4a:fe:70:81:94:92:9c:d2:
0e:51:05:d5:f4:d4:cf:ed:8a:02:c9:a7:e5:07:6d:
14:0d:b7:90:d8:5d:3a:76:df:b4:f4:29:aa:a9:e6:
b4:bc:26:ae:85:c4:e7:e3:9b:50:73:85:c3:b9:37:
1c:db:86:e9:9d:dc:e5:2b:4b:c5:d9:aa:67:a4:61:
f8:ef:29:28:f4:74:54:0e:de:65:f8:28:34:0b:69:
09:c1:3f:cc:53:fa:90:0e:e8:3b:b1:19:27:b1:9d:
0a:73:51:7e:3d:3b:32:37:11:82:a5:db:b5:04:ce:
6d:1f:a8:21:d1:e0:eb:85:fe:ea:4a:66:3d:1d:3d:
ee:70:70:45:cc:ea:e9:35:76:14:21:90:98:1a:98:
db:f2:a2:ba:d1:13:f5:19:9b:fe:4a:43:43:70:a4:
2a:e5:15:37:b2:a9:a5:a8:8e:8f:2e:a7:75:0a:96:
f2:d0:94:c1:b2:91:a6:ae:e7:6e:a8:92:82:d6:35:
7f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D4:CF:45:33:6B:3E:45:8D:98:F5:26:39:02:09:9F:5B:6D:20:F2
X509v3 Authority Key Identifier:
keyid:17:50:2B:1B:86:51:CD:BB:CD:43:31:5B:12:E2:6B:96:25:11:2C:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/17502B1B8651CDBBCD43315B12E26B9625112CEB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17502B1B8651CDBBCD43315B12E26B9625112CEB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39322e302f32342d3234203d3e203538343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:b3:33:ea:df:f9:b7:3e:96:15:b3:68:d0:36:c6:50:9a:79:
18:e0:a1:ea:d3:33:c4:e6:bb:7c:da:3b:a2:2d:df:42:39:9c:
b0:b1:d7:c3:f5:fc:e6:57:6a:8a:68:a1:4a:a2:3d:b3:bf:2b:
a0:aa:51:a2:7a:57:c8:49:72:be:c3:30:93:35:67:08:cc:3c:
10:15:fe:f7:91:c6:99:41:2d:b8:75:1b:c9:8d:eb:b8:1b:97:
42:87:f3:40:0b:ea:bf:9e:a4:00:92:66:6c:44:9c:c7:a3:43:
13:a5:d4:25:4e:54:54:09:30:90:e2:b5:ee:5a:ca:30:c8:98:
13:70:6c:40:26:5a:f2:a8:80:52:46:b0:01:90:d4:43:1d:2d:
34:8b:87:cd:dd:2f:11:ac:5f:5e:43:51:7c:d7:75:e0:2f:50:
30:47:4d:9f:9f:ec:54:13:29:90:e4:93:05:59:32:3c:8d:ef:
d4:7a:c2:c7:a9:a8:16:b7:45:58:00:a5:34:7a:7a:fa:e1:3f:
11:21:4b:e9:82:56:46:55:98:cc:49:25:51:83:8e:3b:51:9e:
e3:01:43:d3:ec:a3:9b:eb:3b:3b:8e:62:4a:ed:7a:ef:14:ea:
9c:43:99:04:d3:69:4e:50:01:93:78:33:49:74:9a:a2:01:eb:
f9:39:39:8f
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUbWLFMzhT7liAAnOfyfW1Mqhf0PYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTc1MDJCMUI4NjUxQ0RCQkNENDMzMTVCMTJFMjZCOTYy
NTExMkNFQjAeFw0yNDExMjAwOTU4MDlaFw0yNTExMTkxMDAzMDlaMDMxMTAvBgNV
BAMTKEQwRDRDRjQ1MzM2QjNFNDU4RDk4RjUyNjM5MDIwOTlGNUI2RDIwRjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtsqh7zQSS8B+S/mEtXyEuCkix
DcAQUQhor7SrZhH4Hr77HrHYS+l292TkCR/doAJO0YcLnBMpEF6yA9NQV0M+TQhK
/nCBlJKc0g5RBdX01M/tigLJp+UHbRQNt5DYXTp237T0Kaqp5rS8Jq6FxOfjm1Bz
hcO5Nxzbhumd3OUrS8XZqmekYfjvKSj0dFQO3mX4KDQLaQnBP8xT+pAO6DuxGSex
nQpzUX49OzI3EYKl27UEzm0fqCHR4OuF/upKZj0dPe5wcEXM6uk1dhQhkJgamNvy
orrRE/UZm/5KQ0NwpCrlFTeyqaWojo8up3UKlvLQlMGykaau526okoLWNX8lAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU0NTPRTNrPkWNmPUmOQIJn1ttIPIwHwYDVR0j
BBgwFoAUF1ArG4ZRzbvNQzFbEuJrliURLOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
MjZjZDI2Zi1mYmRhLTRjZDgtYTAxYy1iMDE1NTUxMzAxNWYvMC8xNzUwMkIxQjg2
NTFDREJCQ0Q0MzMxNUIxMkUyNkI5NjI1MTEyQ0VCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTc1MDJCMUI4NjUxQ0RCQkNENDMzMTVCMTJFMjZCOTYyNTEx
MkNFQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyNmNkMjZmLWZiZGEtNGNkOC1h
MDFjLWIwMTU1NTEzMDE1Zi8wLzMxMzAzMzJlMzUzNjJlMzkzMjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnOFwwDQYJKoZIhvcN
AQELBQADggEBAKazM+rf+bc+lhWzaNA2xlCaeRjgoerTM8Tmu3zaO6It30I5nLCx
18P1/OZXaopooUqiPbO/K6CqUaJ6V8hJcr7DMJM1ZwjMPBAV/veRxplBLbh1G8mN
67gbl0KH80AL6r+epACSZmxEnMejQxOl1CVOVFQJMJDite5ayjDImBNwbEAmWvKo
gFJGsAGQ1EMdLTSLh83dLxGsX15DUXzXdeAvUDBHTZ+f7FQTKZDkkwVZMjyN79R6
wsepqBa3RVgApTR6evrhPxEhS+mCVkZVmMxJJVGDjjtRnuMBQ9Pso5vrOzuOYkrt
eu8U6pxDmQTTaU5QAZN4M0l0mqIB6/k5OY8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:42:53 2025 by rpki-client