Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e2036393339.roa
File: 3130332e3139352e36352e302f32342d3234203d3e2036393339.roa (raw, json)
Hash identifier: Iki/ujAUR2r8jEic7uIoweO5tx+ZoKhjiMwDTjulvbo=
Subject key identifier: 0B:61:1D:53:44:C1:39:E5:7E:3A:1B:02:5F:31:1C:A3:B8:D5:A2:5F
Certificate issuer: /CN=F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA
Certificate serial: 6FEFDD1AF45DED5BCAE1FF59755BE44446B83DCA
Authority key identifier: F8:E1:2F:0A:43:3C:8B:73:3B:E3:1D:B5:E0:CD:1E:F2:02:FC:21:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e2036393339.roa
Signing time: Wed 01 Jan 2025 21:00:01 +0000
ROA not before: Wed 01 Jan 2025 20:55:01 +0000
ROA not after: Wed 31 Dec 2025 21:00:01 +0000
asID: 6939
IP address blocks: 103.195.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:ef:dd:1a:f4:5d:ed:5b:ca:e1:ff:59:75:5b:e4:44:46:b8:3d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA
Validity
Not Before: Jan 1 20:55:01 2025 GMT
Not After : Dec 31 21:00:01 2025 GMT
Subject: CN=0B611D5344C139E57E3A1B025F311CA3B8D5A25F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:a7:71:22:15:50:48:38:30:af:ab:5e:66:
8b:e0:a6:cf:d7:a1:71:aa:f5:90:0f:43:dc:ee:53:
94:11:ec:15:1f:ae:06:58:fe:e8:28:12:29:e5:b2:
38:bb:02:34:5e:a6:0f:08:63:39:34:1b:e7:a9:ca:
c1:65:ae:3e:e4:be:50:95:7f:04:2b:f1:8b:d9:b7:
23:b0:f6:4a:4c:1e:6f:e4:1b:1a:e9:2d:8f:5f:98:
6f:f9:77:28:85:7d:8e:4a:71:a9:f6:6f:f5:a0:91:
33:b0:ca:99:94:05:85:7c:d1:b4:7f:ed:59:b9:d7:
d0:bc:30:b7:1f:3a:03:b3:ca:f4:ce:c2:50:d7:9c:
93:97:4d:fb:a6:a2:59:13:69:1a:d3:a0:3c:5b:44:
0f:c5:b9:e8:d4:d9:76:86:bd:a7:9f:0b:42:63:fc:
f9:bf:9b:47:c4:4f:9f:95:d2:31:26:5b:12:80:d5:
5c:d7:0d:c2:78:25:aa:88:9a:55:e0:96:6b:2d:0c:
5a:e5:f7:b7:ec:77:97:0a:ad:70:25:ea:d0:e3:32:
30:7d:fc:ee:00:80:45:2f:ac:30:d3:fc:bf:1a:b6:
ac:63:c5:cb:d6:d0:14:36:f3:93:3c:25:80:4c:1d:
19:e6:f7:e0:71:41:a3:13:da:7c:23:76:95:6f:44:
20:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:61:1D:53:44:C1:39:E5:7E:3A:1B:02:5F:31:1C:A3:B8:D5:A2:5F
X509v3 Authority Key Identifier:
keyid:F8:E1:2F:0A:43:3C:8B:73:3B:E3:1D:B5:E0:CD:1E:F2:02:FC:21:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e2036393339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.195.65.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:a1:15:a7:a9:23:bf:1b:17:8f:e6:78:85:ac:89:b5:e5:b3:
5e:85:e0:1c:54:cd:b2:a3:27:4f:36:cf:ad:ad:0d:2c:bd:62:
4b:0d:f7:c2:35:0c:14:5f:3b:a7:b5:37:94:a3:88:c3:28:d6:
20:ca:32:23:2a:0b:09:45:32:83:fa:33:59:f3:e4:a9:ec:c5:
cc:d8:88:a9:e1:88:c3:8d:db:bf:49:82:18:ee:07:08:32:e5:
17:bc:14:c6:62:73:ef:51:ad:fe:9c:30:0e:7e:da:12:33:0f:
a0:66:09:3b:f1:31:c8:c7:c1:b2:9f:b9:44:1e:2b:ab:1f:2d:
fc:17:51:8b:c8:41:1c:fc:b1:65:65:9d:0e:5f:a9:50:e3:15:
1f:72:de:78:c0:2f:bd:22:6c:b5:f8:86:7c:dc:4b:1a:f6:47:
63:0f:1f:8c:5c:8c:cd:d9:66:16:f8:97:d6:56:75:bc:a0:63:
a2:4c:d3:ad:2a:00:e8:72:a9:19:ae:07:d0:80:fe:9a:01:ab:
c9:35:be:85:8e:9d:ec:47:db:7e:93:98:31:74:bc:d7:36:a5:
63:3a:0b:0e:9b:96:78:b8:43:95:34:a2:57:40:27:72:a7:d3:
17:f4:73:b8:5d:65:d0:a7:fe:45:b1:a2:45:8f:7e:ae:dd:e6:
6d:4c:06:1d
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUb+/dGvRd7VvK4f9ZdVvkREa4PcowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjhFMTJGMEE0MzNDOEI3MzNCRTMxREI1RTBDRDFFRjIw
MkZDMjFFQTAeFw0yNTAxMDEyMDU1MDFaFw0yNTEyMzEyMTAwMDFaMDMxMTAvBgNV
BAMTKDBCNjExRDUzNDRDMTM5RTU3RTNBMUIwMjVGMzExQ0EzQjhENUEyNUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ladxIhVQSDgwr6teZovgps/X
oXGq9ZAPQ9zuU5QR7BUfrgZY/ugoEinlsji7AjRepg8IYzk0G+epysFlrj7kvlCV
fwQr8YvZtyOw9kpMHm/kGxrpLY9fmG/5dyiFfY5Kcan2b/WgkTOwypmUBYV80bR/
7Vm519C8MLcfOgOzyvTOwlDXnJOXTfumolkTaRrToDxbRA/FuejU2XaGvaefC0Jj
/Pm/m0fET5+V0jEmWxKA1VzXDcJ4JaqImlXglmstDFrl97fsd5cKrXAl6tDjMjB9
/O4AgEUvrDDT/L8atqxjxcvW0BQ285M8JYBMHRnm9+BxQaMT2nwjdpVvRCC7AgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUC2EdU0TBOeV+OhsCXzEco7jVol8wHwYDVR0j
BBgwFoAU+OEvCkM8i3M74x214M0e8gL8IeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
MGNlNDc5Ni00OWRlLTQzYjEtYTE1Mi1iMThkMTFhZGE1MjkvMC9GOEUxMkYwQTQz
M0M4QjczM0JFMzFEQjVFMENEMUVGMjAyRkMyMUVBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjhFMTJGMEE0MzNDOEI3MzNCRTMxREI1RTBDRDFFRjIwMkZD
MjFFQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwY2U0Nzk2LTQ5ZGUtNDNiMS1h
MTUyLWIxOGQxMWFkYTUyOS8wLzMxMzAzMzJlMzEzOTM1MmUzNjM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzYzOTMzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnw0EwDQYJKoZIhvcN
AQELBQADggEBAKmhFaepI78bF4/meIWsibXls16F4BxUzbKjJ082z62tDSy9YksN
98I1DBRfO6e1N5SjiMMo1iDKMiMqCwlFMoP6M1nz5KnsxczYiKnhiMON279Jghju
Bwgy5Re8FMZic+9Rrf6cMA5+2hIzD6BmCTvxMcjHwbKfuUQeK6sfLfwXUYvIQRz8
sWVlnQ5fqVDjFR9y3njAL70ibLX4hnzcSxr2R2MPH4xcjM3ZZhb4l9ZWdbygY6JM
060qAOhyqRmuB9CA/poBq8k1voWOnexH236TmDF0vNc2pWM6Cw6blni4Q5U0oldA
J3Kn0xf0c7hdZdCn/kWxokWPfq7d5m1MBh0=
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:48:17 2025 by rpki-client