Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa
File: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (raw, json)
Hash identifier: Y9d4RL5lwPJKIYYz/S5GmByBdyf8v8c66+665Lm4cNc=
Subject key identifier: 25:77:89:60:75:1C:6F:13:90:8D:E9:6D:D0:DA:A0:B3:EC:26:22:5A
Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF
Certificate serial: 317B51E3DC7A0A1246B7F78684B2016EA90E0A46
Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa
Signing time: Wed 25 Dec 2024 04:00:00 +0000
ROA not before: Wed 25 Dec 2024 03:55:00 +0000
ROA not after: Wed 24 Dec 2025 04:00:00 +0000
asID: 150529
IP address blocks: 103.69.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:7b:51:e3:dc:7a:0a:12:46:b7:f7:86:84:b2:01:6e:a9:0e:0a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF
Validity
Not Before: Dec 25 03:55:00 2024 GMT
Not After : Dec 24 04:00:00 2025 GMT
Subject: CN=25778960751C6F13908DE96DD0DAA0B3EC26225A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e9:d7:22:96:9c:41:69:6a:3a:3d:fc:50:e7:
80:53:ee:77:1e:ee:6f:ab:31:69:fe:c8:8a:a6:ca:
50:d5:f7:9d:0e:03:84:de:80:2d:96:51:0e:cb:5e:
f9:78:f7:74:d6:f8:47:6e:1d:21:84:84:ac:2f:a6:
bf:00:b8:fc:79:0f:34:04:ab:7d:f7:fe:fe:48:da:
79:de:06:38:c3:8e:ce:79:dc:04:cd:46:54:1a:b1:
72:bc:4e:84:e8:ac:9a:42:ee:52:12:7e:cd:97:f7:
9a:f3:f9:93:01:c4:1f:2c:0d:18:24:f2:ab:a4:2a:
a6:9e:e9:92:ee:b8:8e:99:38:0a:ba:fa:8c:14:76:
3a:e5:41:1b:6c:ae:4d:e4:cf:37:65:81:ec:1e:bd:
97:63:c7:7b:c7:56:1a:7b:d2:4e:4b:3b:c0:e8:1f:
d1:2f:00:6b:8a:39:29:ff:39:6b:5d:dc:25:ab:55:
3a:09:98:11:21:48:b1:fc:17:52:ab:0e:c3:46:0f:
d0:a7:cc:9b:44:d4:90:e7:54:3d:83:60:91:69:39:
64:4d:f5:d7:2b:8c:43:28:cd:2f:7f:fc:5e:65:41:
ae:4c:0b:c7:53:59:fa:31:c9:47:7e:b7:db:46:fc:
82:a0:19:67:34:52:bf:04:f4:25:3c:4a:b3:cc:a1:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:77:89:60:75:1C:6F:13:90:8D:E9:6D:D0:DA:A0:B3:EC:26:22:5A
X509v3 Authority Key Identifier:
keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.69.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:28:94:a5:2d:ff:f7:56:43:82:49:36:3b:fc:37:d8:e7:9e:
10:d2:db:c6:5e:04:78:9a:f5:00:92:cc:e0:24:cd:68:b5:ff:
42:8a:a3:17:f0:37:9d:a7:e8:25:b5:57:c5:da:8f:27:92:35:
68:ca:57:d4:db:7e:81:e7:a7:d9:51:cb:7b:d5:d3:8b:79:8e:
6f:fd:a0:91:5c:bf:a2:4f:db:82:e6:ae:0a:b0:cc:30:39:bd:
31:b5:45:eb:f9:88:0d:79:2c:b8:97:e6:b2:98:7d:9a:e0:70:
60:de:38:11:d5:fe:7a:13:c4:66:8b:79:c8:6b:42:60:dd:b8:
77:70:e8:47:37:88:b3:1d:54:08:d2:0c:65:4a:f3:af:62:76:
ac:18:95:74:ed:75:32:56:8a:04:d0:53:9f:01:2c:d4:41:9c:
49:bf:3a:9a:4e:24:ba:2f:07:54:17:e7:da:d5:99:12:e4:a7:
32:b4:2d:ec:35:49:7c:4d:e4:6e:1f:09:d6:0e:32:59:3e:56:
ba:0f:ac:04:98:c1:dc:55:2a:e9:04:d8:bb:bd:5c:4b:bc:a3:
71:4d:f0:0f:1f:19:c4:3b:a2:ac:5c:bd:97:4b:ca:be:b9:27:
bc:45:f4:df:15:57:1e:7a:d3:33:a2:23:a4:f9:f4:b3:00:69:
25:6f:e0:aa
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUMXtR49x6ChJGt/eGhLIBbqkOCkYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy
MkM3NjhFRjAeFw0yNDEyMjUwMzU1MDBaFw0yNTEyMjQwNDAwMDBaMDMxMTAvBgNV
BAMTKDI1Nzc4OTYwNzUxQzZGMTM5MDhERTk2REQwREFBMEIzRUMyNjIyNUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv6dcilpxBaWo6PfxQ54BT7nce
7m+rMWn+yIqmylDV950OA4TegC2WUQ7LXvl493TW+EduHSGEhKwvpr8AuPx5DzQE
q333/v5I2nneBjjDjs553ATNRlQasXK8ToTorJpC7lISfs2X95rz+ZMBxB8sDRgk
8qukKqae6ZLuuI6ZOAq6+owUdjrlQRtsrk3kzzdlgewevZdjx3vHVhp70k5LO8Do
H9EvAGuKOSn/OWtd3CWrVToJmBEhSLH8F1KrDsNGD9CnzJtE1JDnVD2DYJFpOWRN
9dcrjEMozS9//F5lQa5MC8dTWfoxyUd+t9tG/IKgGWc0Ur8E9CU8SrPMoSgpAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUJXeJYHUcbxOQjelt0Nqgs+wmIlowHwYDVR0j
BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1
MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3
NjhFRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OTcxYWU5LTVjZGQtNGQ0MS1i
NjJhLTVjMjg0YWE4MDk4ZS8wLzMxMzAzMzJlMzYzOTJlMzYzMDJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdFPDANBgkqhkiG
9w0BAQsFAAOCAQEAtyiUpS3/91ZDgkk2O/w32OeeENLbxl4EeJr1AJLM4CTNaLX/
QoqjF/A3nafoJbVXxdqPJ5I1aMpX1Nt+geen2VHLe9XTi3mOb/2gkVy/ok/bguau
CrDMMDm9MbVF6/mIDXksuJfmsph9muBwYN44EdX+ehPEZot5yGtCYN24d3DoRzeI
sx1UCNIMZUrzr2J2rBiVdO11MlaKBNBTnwEs1EGcSb86mk4kui8HVBfn2tWZEuSn
MrQt7DVJfE3kbh8J1g4yWT5Wug+sBJjB3FUq6QTYu71cS7yjcU3wDx8ZxDuirFy9
l0vKvrknvEX03xVXHnrTM6IjpPn0swBpJW/gqg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:01:53 2025 by rpki-client