Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e45ebab-ec16-4589-a9a6-8a3661d43e3e/0/3130332e39352e34302e302f32322d3234203d3e203538343935.roa
File: 3130332e39352e34302e302f32322d3234203d3e203538343935.roa (raw, json)
Hash identifier: e363Qmmr7aShBd/1Dt6hRaygfxaujoi+LkakMl8KvrY=
Subject key identifier: F0:D0:43:40:D5:19:98:70:E0:56:C4:CE:E4:AD:87:F6:C2:17:BA:B8
Certificate issuer: /CN=41ABF792D14122AAA67E42BD42EBB8E02A096620
Certificate serial: 0AD4DC15609D0ECC2565010C0B4FB7F759C8D8ED
Authority key identifier: 41:AB:F7:92:D1:41:22:AA:A6:7E:42:BD:42:EB:B8:E0:2A:09:66:20
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41ABF792D14122AAA67E42BD42EBB8E02A096620.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7e45ebab-ec16-4589-a9a6-8a3661d43e3e/0/3130332e39352e34302e302f32322d3234203d3e203538343935.roa
Signing time: Mon 01 Jul 2024 01:03:16 +0000
ROA not before: Mon 01 Jul 2024 00:58:16 +0000
ROA not after: Mon 30 Jun 2025 01:03:16 +0000
asID: 58495
IP address blocks: 103.95.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:d4:dc:15:60:9d:0e:cc:25:65:01:0c:0b:4f:b7:f7:59:c8:d8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41ABF792D14122AAA67E42BD42EBB8E02A096620
Validity
Not Before: Jul 1 00:58:16 2024 GMT
Not After : Jun 30 01:03:16 2025 GMT
Subject: CN=F0D04340D5199870E056C4CEE4AD87F6C217BAB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:6e:bb:39:57:50:21:71:6d:d7:b6:d4:bc:
e2:c1:01:40:72:f5:66:26:3d:70:ec:b8:16:cc:73:
46:35:d6:83:6e:76:1a:43:5d:08:0c:97:9b:64:66:
51:79:2e:13:a9:9b:61:b5:82:24:37:87:b2:1c:16:
7a:72:b2:0b:e5:9c:b9:05:e8:ac:8f:db:03:9e:25:
0e:a8:0f:e0:5d:10:ae:80:92:f8:b9:2a:ea:ab:d1:
4f:20:0e:13:96:a4:b8:93:ab:a2:b6:96:07:1b:66:
06:c5:3a:16:03:f7:9b:1f:6b:d6:6e:79:11:66:37:
18:bf:e1:ce:57:7b:cc:dd:c8:33:da:5c:9b:4a:09:
ec:1a:2d:c7:9d:10:7b:0c:c3:ac:e4:d9:7d:c9:68:
46:88:7c:3b:78:a7:57:32:2a:ac:d8:8b:91:16:7e:
c5:12:46:6f:25:16:6a:36:40:1a:3d:17:d9:de:18:
3b:fd:0a:a9:5d:c9:c1:1d:c2:fb:57:ea:86:53:19:
6e:72:4f:ce:44:e4:49:73:90:70:c7:ce:fe:50:7f:
d0:8d:65:ba:b3:09:76:f8:19:ab:f8:c3:a9:fe:cb:
f1:79:24:aa:85:94:ba:80:c7:9a:9d:0c:28:96:93:
87:78:ca:3f:06:39:b6:2c:31:37:06:b6:ae:8b:6e:
a9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D0:43:40:D5:19:98:70:E0:56:C4:CE:E4:AD:87:F6:C2:17:BA:B8
X509v3 Authority Key Identifier:
keyid:41:AB:F7:92:D1:41:22:AA:A6:7E:42:BD:42:EB:B8:E0:2A:09:66:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7e45ebab-ec16-4589-a9a6-8a3661d43e3e/0/41ABF792D14122AAA67E42BD42EBB8E02A096620.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41ABF792D14122AAA67E42BD42EBB8E02A096620.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e45ebab-ec16-4589-a9a6-8a3661d43e3e/0/3130332e39352e34302e302f32322d3234203d3e203538343935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.40.0/22
Signature Algorithm: sha256WithRSAEncryption
74:7b:0f:29:12:91:25:ba:31:ad:91:2e:cd:f1:00:5a:50:77:
3d:b1:31:36:2d:46:28:30:5e:23:73:b2:7d:4a:ae:a6:2a:3e:
7e:a1:6a:1e:ce:fe:a8:84:41:69:62:f6:2d:ef:88:b7:73:9c:
02:43:e0:4f:a5:87:c8:18:89:21:28:da:a2:20:d2:eb:7c:9a:
c5:ca:82:c2:35:03:a9:b2:21:ea:f8:41:83:00:93:4f:2b:03:
aa:20:44:47:87:ec:45:f2:a7:3b:b9:0e:72:9f:15:eb:72:2e:
87:bb:a1:15:06:dd:89:9b:2d:af:a4:71:af:04:00:93:67:c5:
2a:16:21:96:a7:57:85:fb:cb:dc:45:7c:83:40:d1:d1:39:1c:
5c:00:f5:32:15:c0:98:cb:09:02:36:c0:25:3a:e9:f9:e1:a3:
91:82:e5:e7:d3:91:30:ff:1e:dc:0b:aa:88:42:f5:40:e7:ac:
94:16:73:3f:b0:94:3b:ba:32:0f:7d:1c:11:95:c0:de:6f:ad:
62:3c:14:0c:b0:2a:83:4b:a6:c1:56:99:cc:e2:c1:31:d4:43:
b6:4d:21:dc:d9:c1:71:72:f8:7f:da:45:39:04:8c:dd:52:12:
b9:46:18:2f:51:8a:38:56:f4:7d:dd:53:20:9c:f9:b5:b4:21:
e5:6f:cc:f2
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUCtTcFWCdDswlZQEMC0+391nI2O0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDFBQkY3OTJEMTQxMjJBQUE2N0U0MkJENDJFQkI4RTAy
QTA5NjYyMDAeFw0yNDA3MDEwMDU4MTZaFw0yNTA2MzAwMTAzMTZaMDMxMTAvBgNV
BAMTKEYwRDA0MzQwRDUxOTk4NzBFMDU2QzRDRUU0QUQ4N0Y2QzIxN0JBQjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3gm67OVdQIXFt17bUvOLBAUBy
9WYmPXDsuBbMc0Y11oNudhpDXQgMl5tkZlF5LhOpm2G1giQ3h7IcFnpysgvlnLkF
6KyP2wOeJQ6oD+BdEK6Akvi5Kuqr0U8gDhOWpLiTq6K2lgcbZgbFOhYD95sfa9Zu
eRFmNxi/4c5Xe8zdyDPaXJtKCewaLcedEHsMw6zk2X3JaEaIfDt4p1cyKqzYi5EW
fsUSRm8lFmo2QBo9F9neGDv9CqldycEdwvtX6oZTGW5yT85E5ElzkHDHzv5Qf9CN
ZbqzCXb4Gav4w6n+y/F5JKqFlLqAx5qdDCiWk4d4yj8GObYsMTcGtq6LbqlbAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU8NBDQNUZmHDgVsTO5K2H9sIXurgwHwYDVR0j
BBgwFoAUQav3ktFBIqqmfkK9Quu44CoJZiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
ZTQ1ZWJhYi1lYzE2LTQ1ODktYTlhNi04YTM2NjFkNDNlM2UvMC80MUFCRjc5MkQx
NDEyMkFBQTY3RTQyQkQ0MkVCQjhFMDJBMDk2NjIwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDFBQkY3OTJEMTQxMjJBQUE2N0U0MkJENDJFQkI4RTAyQTA5
NjYyMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNDVlYmFiLWVjMTYtNDU4OS1h
OWE2LThhMzY2MWQ0M2UzZS8wLzMxMzAzMzJlMzkzNTJlMzQzMDJlMzAyZjMyMzIy
ZDMyMzQyMDNkM2UyMDM1MzgzNDM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnXygwDQYJKoZIhvcN
AQELBQADggEBAHR7DykSkSW6Ma2RLs3xAFpQdz2xMTYtRigwXiNzsn1KrqYqPn6h
ah7O/qiEQWli9i3viLdznAJD4E+lh8gYiSEo2qIg0ut8msXKgsI1A6myIer4QYMA
k08rA6ogREeH7EXypzu5DnKfFetyLoe7oRUG3YmbLa+kca8EAJNnxSoWIZanV4X7
y9xFfINA0dE5HFwA9TIVwJjLCQI2wCU66fnho5GC5efTkTD/HtwLqohC9UDnrJQW
cz+wlDu6Mg99HBGVwN5vrWI8FAywKoNLpsFWmcziwTHUQ7ZNIdzZwXFy+H/aRTkE
jN1SErlGGC9RijhW9H3dUyCc+bW0IeVvzPI=
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:42:15 2025 by rpki-client