Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
File: 3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa (raw, json)
Hash identifier: nA9l/qEipVfIEIe1umepDag8NvfqeSfq9JSpO2D/fuI=
Subject key identifier: 20:BC:D5:FD:F6:8D:DC:6A:24:72:16:18:A9:28:78:C2:C8:D5:73:BC
Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4
Certificate serial: 6D049C7C7D52276076B9446ECBA26D5072D3A299
Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
Signing time: Thu 12 Sep 2024 07:02:56 +0000
ROA not before: Thu 12 Sep 2024 06:57:56 +0000
ROA not after: Thu 11 Sep 2025 07:02:56 +0000
asID: 138131
IP address blocks: 103.121.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:04:9c:7c:7d:52:27:60:76:b9:44:6e:cb:a2:6d:50:72:d3:a2:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4
Validity
Not Before: Sep 12 06:57:56 2024 GMT
Not After : Sep 11 07:02:56 2025 GMT
Subject: CN=20BCD5FDF68DDC6A24721618A92878C2C8D573BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a7:a1:4c:13:09:2a:00:b3:fa:4c:59:ad:d1:
15:ee:4b:9c:01:81:03:db:f4:a1:b8:f8:42:eb:e3:
ff:70:9e:f5:4c:2c:9a:b2:2e:44:83:8c:1b:db:8d:
ee:4c:5b:ea:4b:b7:25:d1:c1:a2:17:5d:40:09:78:
48:d0:07:ed:0f:99:67:c7:7e:59:b5:8a:22:3e:8d:
07:8a:75:1c:e6:7a:75:00:63:d1:6a:f5:bb:5d:86:
47:c7:21:9e:c5:68:a2:8d:ca:50:06:27:ae:38:c2:
23:e5:fc:33:2b:16:73:99:95:08:b9:cf:89:7d:7d:
af:78:8f:5f:02:11:6c:7a:25:d1:d6:e0:b8:51:cc:
8c:61:39:0e:6a:2b:38:be:c1:d5:43:a7:11:a0:b3:
3d:0c:81:f1:d2:ef:a1:ae:d2:4d:6c:c3:a3:2a:d8:
6b:a2:dc:5b:a4:d4:32:07:da:a7:2c:5d:c5:1d:21:
f1:fc:84:42:90:a7:14:99:5a:4b:0f:c2:ab:ce:9d:
03:92:8e:b3:c1:ea:6e:6d:b0:45:67:c7:cc:1e:59:
b7:b5:74:93:2e:a0:98:d2:bc:c6:c8:f0:9f:85:c6:
bd:db:9b:3e:c4:f3:93:1e:94:40:db:20:61:5c:ae:
3f:47:b1:95:3b:37:14:e7:27:a3:d3:cf:4f:bf:8d:
6d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BC:D5:FD:F6:8D:DC:6A:24:72:16:18:A9:28:78:C2:C8:D5:73:BC
X509v3 Authority Key Identifier:
keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.122.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:f0:e4:80:fc:01:a1:50:1d:97:36:dd:39:3a:df:1e:9e:af:
58:bb:dc:c2:39:40:50:e6:5c:ea:b1:b2:6c:53:84:3c:0b:22:
e7:da:65:1c:62:ca:51:86:84:6e:9c:8c:d4:ff:8e:14:7b:bd:
9f:72:3a:80:42:c4:97:b4:45:50:06:8d:98:ce:3e:d2:5c:f0:
0a:26:ea:a5:7d:48:56:9f:9f:ac:c0:f1:58:0c:b4:7c:22:98:
b7:ac:a0:ba:5a:67:53:4e:32:61:15:c4:bc:f5:26:e1:ee:e1:
15:87:05:60:a9:03:b0:dd:21:fd:c8:60:40:17:63:eb:5b:8c:
75:70:87:44:38:6e:06:b5:14:d3:ab:96:96:6b:41:77:d3:c2:
d0:8d:56:9f:87:b1:a3:9c:25:51:78:ea:b5:fa:ba:e0:78:85:
4c:44:a1:7c:c8:38:21:95:85:3f:78:fc:11:e6:f1:df:3c:03:
68:07:5c:15:3e:6c:1c:36:ce:1b:89:0d:ce:26:19:e3:9b:7c:
8a:b6:df:20:40:91:80:12:ef:75:c7:6c:42:34:60:6c:bc:2d:
85:2d:9a:f4:da:e5:e6:e3:77:4d:88:8e:4c:26:40:e9:3b:84:
0f:4f:5b:5b:b9:f1:9f:64:30:62:0b:b9:ee:92:4c:64:64:02:
83:d0:e2:be
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUbQScfH1SJ2B2uURuy6JtUHLTopkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMy
NzdFNzFFNDAeFw0yNDA5MTIwNjU3NTZaFw0yNTA5MTEwNzAyNTZaMDMxMTAvBgNV
BAMTKDIwQkNENUZERjY4RERDNkEyNDcyMTYxOEE5Mjg3OEMyQzhENTczQkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKp6FMEwkqALP6TFmt0RXuS5wB
gQPb9KG4+ELr4/9wnvVMLJqyLkSDjBvbje5MW+pLtyXRwaIXXUAJeEjQB+0PmWfH
flm1iiI+jQeKdRzmenUAY9Fq9btdhkfHIZ7FaKKNylAGJ644wiPl/DMrFnOZlQi5
z4l9fa94j18CEWx6JdHW4LhRzIxhOQ5qKzi+wdVDpxGgsz0MgfHS76Gu0k1sw6Mq
2Gui3Fuk1DIH2qcsXcUdIfH8hEKQpxSZWksPwqvOnQOSjrPB6m5tsEVnx8weWbe1
dJMuoJjSvMbI8J+Fxr3bmz7E85MelEDbIGFcrj9HsZU7NxTnJ6PTz0+/jW2fAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUILzV/faN3GokchYYqSh4wsjVc7wwHwYDVR0j
BBgwFoAUKGEnclQ+QzNbCAwygIt/3Cd+ceQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
YjEzMGI3NS00NTkzLTQxNDEtYTA2Zi01N2EyMmEwMjNkZDAvMC8yODYxMjc3MjU0
M0U0MzMzNUIwODBDMzI4MDhCN0ZEQzI3N0U3MUU0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMyNzdF
NzFFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiMTMwYjc1LTQ1OTMtNDE0MS1h
MDZmLTU3YTIyYTAyM2RkMC8wLzMxMzAzMzJlMzEzMjMxMmUzMTMyMzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneXowDQYJ
KoZIhvcNAQELBQADggEBAMrw5ID8AaFQHZc23Tk63x6er1i73MI5QFDmXOqxsmxT
hDwLIufaZRxiylGGhG6cjNT/jhR7vZ9yOoBCxJe0RVAGjZjOPtJc8Aom6qV9SFaf
n6zA8VgMtHwimLesoLpaZ1NOMmEVxLz1JuHu4RWHBWCpA7DdIf3IYEAXY+tbjHVw
h0Q4bga1FNOrlpZrQXfTwtCNVp+HsaOcJVF46rX6uuB4hUxEoXzIOCGVhT94/BHm
8d88A2gHXBU+bBw2zhuJDc4mGeObfIq23yBAkYAS73XHbEI0YGy8LYUtmvTa5ebj
d02IjkwmQOk7hA9PW1u58Z9kMGILue6STGRkAoPQ4r4=
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:05:59 2025 by rpki-client