Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/3130332e3135302e36312e302f32342d3234203d3e20313430333839.roa
File: 3130332e3135302e36312e302f32342d3234203d3e20313430333839.roa (raw, json)
Hash identifier: PlY/JnUtAv2FxS5Soe3wZCn6MzuK/JWnFyPZQrX/fuQ=
Subject key identifier: 70:8D:09:8E:78:36:B1:03:20:BD:51:51:BD:A9:73:E7:66:B1:58:70
Certificate issuer: /CN=5C413D56294D9D20E64978B7296A9DA893C32CAB
Certificate serial: 6D7D55DF157E70B6D0F13ADA0C49863149E7E62C
Authority key identifier: 5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/3130332e3135302e36312e302f32342d3234203d3e20313430333839.roa
Signing time: Fri 14 Mar 2025 20:00:01 +0000
ROA not before: Fri 14 Mar 2025 19:55:01 +0000
ROA not after: Fri 13 Mar 2026 20:00:01 +0000
asID: 140389
IP address blocks: 103.150.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:7d:55:df:15:7e:70:b6:d0:f1:3a:da:0c:49:86:31:49:e7:e6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C413D56294D9D20E64978B7296A9DA893C32CAB
Validity
Not Before: Mar 14 19:55:01 2025 GMT
Not After : Mar 13 20:00:01 2026 GMT
Subject: CN=708D098E7836B10320BD5151BDA973E766B15870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:9e:2f:17:f3:14:98:2d:a2:d6:07:ba:66:
a5:3d:ba:51:94:39:a4:d0:35:a9:e2:02:5d:06:69:
ad:8f:af:1f:20:11:36:ea:04:31:ca:95:34:ff:86:
f5:9b:16:4f:f6:7b:5b:98:1e:e4:0a:02:db:f7:39:
85:ca:ab:15:01:86:b1:7d:a1:48:ec:bc:c5:53:86:
eb:f4:38:fe:9e:8d:77:01:c1:2a:83:c4:85:f7:52:
ae:e4:f9:01:d8:dd:f7:c3:96:f6:83:95:b7:8a:c9:
07:d2:96:11:89:96:71:c6:67:57:9d:22:a3:87:ab:
28:28:fa:12:56:d7:9b:62:f9:f5:b3:0e:f5:a9:b6:
f3:61:77:45:18:c8:7c:78:33:8d:c9:58:78:ac:c2:
9e:e6:18:02:82:d6:ca:da:85:d5:10:a9:8c:65:27:
0d:c1:7d:76:68:f3:7e:84:d1:ed:26:20:83:4d:dc:
85:46:77:5f:1d:48:08:c2:1f:27:ff:2c:aa:c6:25:
28:d8:f9:78:11:10:42:38:8a:e6:50:7a:3a:71:70:
63:40:b4:5c:5e:14:86:97:23:8d:0a:db:a4:24:23:
d7:d3:dd:31:f6:dc:ae:4f:27:89:c4:76:4e:bb:c0:
a5:de:25:d6:0e:7a:35:54:2c:4f:fd:5e:8f:d8:71:
ec:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8D:09:8E:78:36:B1:03:20:BD:51:51:BD:A9:73:E7:66:B1:58:70
X509v3 Authority Key Identifier:
keyid:5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/3130332e3135302e36312e302f32342d3234203d3e20313430333839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.61.0/24
Signature Algorithm: sha256WithRSAEncryption
15:b7:f1:b9:75:99:09:e5:c6:15:cd:dc:48:b2:e2:6a:cb:70:
b8:ef:f9:44:1c:58:c8:8f:c3:31:8f:ad:4a:a0:c6:ca:f4:ab:
63:24:27:2f:05:dc:b8:e1:d3:14:aa:f6:7a:57:dc:29:80:9a:
c0:24:c3:60:c3:a2:93:70:27:da:f8:b9:ff:92:0c:b8:6c:c9:
68:d1:f4:79:11:ff:94:aa:d1:d5:cb:fc:0f:7f:42:2b:ca:7a:
c1:54:90:b0:b8:df:33:6a:b8:02:7f:b0:43:c0:26:ee:f8:7b:
31:27:ef:1f:f7:de:1c:4f:50:e8:1e:03:7f:7a:2e:fd:f2:31:
87:63:3a:45:68:7a:5a:3f:d0:3d:b8:e6:95:a7:91:31:76:69:
a8:e0:06:1f:91:0a:da:66:44:c0:a3:a9:da:9d:89:88:7f:a4:
a7:28:1e:4b:fd:39:a9:8d:7d:b6:2a:80:80:6b:3b:e2:13:b9:
af:0e:aa:c3:a4:aa:33:23:67:3b:13:f9:d6:27:17:29:38:75:
d8:ed:f9:dd:01:32:15:7c:cf:8f:a0:ef:70:b2:24:0f:28:43:
10:62:5f:a6:2f:06:d8:d1:76:c2:5a:3c:25:98:60:c6:eb:3d:
95:30:83:32:7c:d9:47:0c:14:9d:89:7e:f8:06:f9:91:d0:11:
69:04:9e:af
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUbX1V3xV+cLbQ8TraDEmGMUnn5iwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5
M0MzMkNBQjAeFw0yNTAzMTQxOTU1MDFaFw0yNjAzMTMyMDAwMDFaMDMxMTAvBgNV
BAMTKDcwOEQwOThFNzgzNkIxMDMyMEJENTE1MUJEQTk3M0U3NjZCMTU4NzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+KJ4vF/MUmC2i1ge6ZqU9ulGU
OaTQNaniAl0Gaa2Prx8gETbqBDHKlTT/hvWbFk/2e1uYHuQKAtv3OYXKqxUBhrF9
oUjsvMVThuv0OP6ejXcBwSqDxIX3Uq7k+QHY3ffDlvaDlbeKyQfSlhGJlnHGZ1ed
IqOHqygo+hJW15ti+fWzDvWptvNhd0UYyHx4M43JWHiswp7mGAKC1srahdUQqYxl
Jw3BfXZo836E0e0mIINN3IVGd18dSAjCHyf/LKrGJSjY+XgREEI4iuZQejpxcGNA
tFxeFIaXI40K26QkI9fT3TH23K5PJ4nEdk67wKXeJdYOejVULE/9Xo/YcezbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUcI0Jjng2sQMgvVFRvalz52axWHAwHwYDVR0j
BBgwFoAUXEE9VilNnSDmSXi3KWqdqJPDLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
YjNlYWJiNC00ZGIzLTQzNzMtYTM0OC1mYjFlZDcwNTU2NTEvMC81QzQxM0Q1NjI5
NEQ5RDIwRTY0OTc4QjcyOTZBOURBODkzQzMyQ0FCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5M0Mz
MkNBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiM2VhYmI0LTRkYjMtNDM3My1h
MzQ4LWZiMWVkNzA1NTY1MS8wLzMxMzAzMzJlMzEzNTMwMmUzNjMxMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzMzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5Y9MA0GCSqG
SIb3DQEBCwUAA4IBAQAVt/G5dZkJ5cYVzdxIsuJqy3C47/lEHFjIj8Mxj61KoMbK
9KtjJCcvBdy44dMUqvZ6V9wpgJrAJMNgw6KTcCfa+Ln/kgy4bMlo0fR5Ef+UqtHV
y/wPf0IrynrBVJCwuN8zargCf7BDwCbu+HsxJ+8f994cT1DoHgN/ei798jGHYzpF
aHpaP9A9uOaVp5Exdmmo4AYfkQraZkTAo6nanYmIf6SnKB5L/TmpjX22KoCAazvi
E7mvDqrDpKozI2c7E/nWJxcpOHXY7fndATIVfM+PoO9wsiQPKEMQYl+mLwbY0XbC
WjwlmGDG6z2VMIMyfNlHDBSdiX74BvmR0BFpBJ6v
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:19:04 2025 by rpki-client