Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233322e302f32332d3233203d3e20313530393738.roa
File: 3130332e3132362e3233322e302f32332d3233203d3e20313530393738.roa (raw, json)
Hash identifier: 7rcqjDK1en4Ve1PM9Wuc4mrM+RdU8sJ+v75czM9rFEY=
Subject key identifier: 53:BD:6B:56:2C:67:ED:B9:F1:51:34:EB:F7:DB:75:18:0B:77:8B:E5
Certificate issuer: /CN=98906779AB8F30762B65B3E6AD7F48326A08605E
Certificate serial: 644125FA1EB8420511B1F358B521041406B59B37
Authority key identifier: 98:90:67:79:AB:8F:30:76:2B:65:B3:E6:AD:7F:48:32:6A:08:60:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98906779AB8F30762B65B3E6AD7F48326A08605E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233322e302f32332d3233203d3e20313530393738.roa
Signing time: Sat 15 Mar 2025 09:00:00 +0000
ROA not before: Sat 15 Mar 2025 08:55:00 +0000
ROA not after: Sat 14 Mar 2026 09:00:00 +0000
asID: 150978
IP address blocks: 103.126.232.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:41:25:fa:1e:b8:42:05:11:b1:f3:58:b5:21:04:14:06:b5:9b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98906779AB8F30762B65B3E6AD7F48326A08605E
Validity
Not Before: Mar 15 08:55:00 2025 GMT
Not After : Mar 14 09:00:00 2026 GMT
Subject: CN=53BD6B562C67EDB9F15134EBF7DB75180B778BE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:db:38:1a:7a:90:0d:a2:95:22:eb:d1:b8:0e:
f8:0d:6a:20:c1:27:7d:ed:c0:17:09:dc:27:f8:d9:
dd:6d:ed:37:85:30:1b:4b:93:33:bb:28:39:bc:a2:
7e:30:a3:ec:f7:2d:51:9f:96:9b:0e:a3:33:d4:2c:
43:b0:1c:bc:d4:04:0a:65:9c:d7:8e:77:0c:17:a9:
75:53:0a:72:15:7c:6f:52:f6:d1:97:fa:14:74:04:
8f:59:99:57:6a:c6:b8:9c:22:32:17:d1:c3:65:02:
ee:12:b1:9d:17:c1:2b:36:c7:b9:de:68:e5:30:ef:
7d:42:4d:6f:96:3c:21:48:e2:34:bf:98:27:01:92:
37:2c:70:7f:00:7d:d8:cb:e9:66:02:53:8c:1b:83:
70:85:d2:17:9a:6f:a5:c4:83:c9:26:7c:52:9c:4c:
43:6e:3f:24:13:27:2e:03:fe:b9:67:94:72:ce:21:
c6:89:ba:98:b6:34:7b:5e:c6:9c:ef:06:82:2c:f5:
cf:31:f8:75:d1:72:a6:b2:21:64:cf:bd:28:1d:4a:
1c:96:e8:be:dd:84:df:d5:6c:f6:42:82:d8:27:bc:
00:d4:33:8a:62:42:30:30:20:36:e8:85:dd:39:91:
3a:c3:0a:00:8d:9c:5e:d6:bd:7c:a3:9d:f5:b7:3b:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:6B:56:2C:67:ED:B9:F1:51:34:EB:F7:DB:75:18:0B:77:8B:E5
X509v3 Authority Key Identifier:
keyid:98:90:67:79:AB:8F:30:76:2B:65:B3:E6:AD:7F:48:32:6A:08:60:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/98906779AB8F30762B65B3E6AD7F48326A08605E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98906779AB8F30762B65B3E6AD7F48326A08605E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233322e302f32332d3233203d3e20313530393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.126.232.0/23
Signature Algorithm: sha256WithRSAEncryption
35:30:5e:c5:5b:e3:4d:26:6b:99:5d:34:3d:6a:3c:28:a3:9d:
71:b1:77:a3:b1:d8:a1:41:be:65:d3:91:1f:24:ac:c0:71:31:
47:36:33:e1:d9:79:36:8b:56:45:a8:64:46:3e:63:e5:8b:87:
7f:c7:9e:7c:c0:ad:dd:9a:73:01:98:cc:45:03:cf:d0:f1:66:
e6:d1:bc:b1:09:60:e7:e6:25:b7:1e:4b:11:7e:10:2b:7e:b8:
aa:5b:22:29:3a:67:4a:27:65:15:47:ae:7e:dd:43:59:21:45:
30:49:d6:45:27:ce:a4:37:38:80:7a:20:ab:1f:2e:4e:5b:bd:
b0:8f:8b:e4:da:a1:ce:4e:a3:87:9f:c1:54:3e:dc:9d:57:03:
be:af:cb:95:e9:68:e3:8f:00:a9:a1:49:66:b8:25:b7:9c:c9:
c4:08:d4:cf:e9:58:5c:3c:41:3f:3a:c1:44:cc:63:cb:fa:53:
d3:d4:99:59:d0:73:b4:ed:dc:3c:fc:99:91:f9:ff:83:c9:9f:
40:ab:97:d3:f1:c7:81:c7:8a:66:8d:33:c9:51:a0:01:60:72:
d4:f4:4e:9b:a2:5f:46:51:f9:97:5d:e9:c7:48:54:41:99:5a:
e6:c3:f3:af:03:bb:7d:37:fa:61:99:b5:4c:26:83:00:6e:6a:
ca:a7:3b:e6
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUZEEl+h64QgURsfNYtSEEFAa1mzcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTg5MDY3NzlBQjhGMzA3NjJCNjVCM0U2QUQ3RjQ4MzI2
QTA4NjA1RTAeFw0yNTAzMTUwODU1MDBaFw0yNjAzMTQwOTAwMDBaMDMxMTAvBgNV
BAMTKDUzQkQ2QjU2MkM2N0VEQjlGMTUxMzRFQkY3REI3NTE4MEI3NzhCRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2zgaepANopUi69G4DvgNaiDB
J33twBcJ3Cf42d1t7TeFMBtLkzO7KDm8on4wo+z3LVGflpsOozPULEOwHLzUBApl
nNeOdwwXqXVTCnIVfG9S9tGX+hR0BI9ZmVdqxricIjIX0cNlAu4SsZ0XwSs2x7ne
aOUw731CTW+WPCFI4jS/mCcBkjcscH8AfdjL6WYCU4wbg3CF0heab6XEg8kmfFKc
TENuPyQTJy4D/rlnlHLOIcaJupi2NHtexpzvBoIs9c8x+HXRcqayIWTPvSgdShyW
6L7dhN/VbPZCgtgnvADUM4piQjAwIDbohd05kTrDCgCNnF7WvXyjnfW3OzF1AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUU71rVixn7bnxUTTr99t1GAt3i+UwHwYDVR0j
BBgwFoAUmJBneauPMHYrZbPmrX9IMmoIYF4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
OWE0MDA4OS02MDQxLTQ1ZWQtOGU0NC1hOTk3YzhhY2Y0ODAvMC85ODkwNjc3OUFC
OEYzMDc2MkI2NUIzRTZBRDdGNDgzMjZBMDg2MDVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTg5MDY3NzlBQjhGMzA3NjJCNjVCM0U2QUQ3RjQ4MzI2QTA4
NjA1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5YTQwMDg5LTYwNDEtNDVlZC04
ZTQ0LWE5OTdjOGFjZjQ4MC8wLzMxMzAzMzJlMzEzMjM2MmUzMjMzMzIyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzOTM3Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnfugwDQYJ
KoZIhvcNAQELBQADggEBADUwXsVb400ma5ldND1qPCijnXGxd6Ox2KFBvmXTkR8k
rMBxMUc2M+HZeTaLVkWoZEY+Y+WLh3/HnnzArd2acwGYzEUDz9DxZubRvLEJYOfm
JbceSxF+ECt+uKpbIik6Z0onZRVHrn7dQ1khRTBJ1kUnzqQ3OIB6IKsfLk5bvbCP
i+Taoc5Oo4efwVQ+3J1XA76vy5XpaOOPAKmhSWa4JbecycQI1M/pWFw8QT86wUTM
Y8v6U9PUmVnQc7Tt3Dz8mZH5/4PJn0Crl9Pxx4HHimaNM8lRoAFgctT0TpuiX0ZR
+Zdd6cdIVEGZWubD868Du303+mGZtUwmgwBuasqnO+Y=
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:40 2025 by rpki-client