Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233332e302f32342d3234203d3e20313530393738.roa
File: 3130332e3132362e3233332e302f32342d3234203d3e20313530393738.roa (raw, json)
Hash identifier: bdtz3V8NAXQ4FsPLxYoFwHQihtebd8fh/UmhU4gX81I=
Subject key identifier: 81:A8:8D:14:B3:AE:D5:91:1A:82:AC:44:E3:B7:5E:EB:67:E6:7F:BA
Certificate issuer: /CN=98906779AB8F30762B65B3E6AD7F48326A08605E
Certificate serial: 4DE787D36BD9101AE500A52EF172E2E096B52A8D
Authority key identifier: 98:90:67:79:AB:8F:30:76:2B:65:B3:E6:AD:7F:48:32:6A:08:60:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98906779AB8F30762B65B3E6AD7F48326A08605E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233332e302f32342d3234203d3e20313530393738.roa
Signing time: Sat 15 Mar 2025 09:00:00 +0000
ROA not before: Sat 15 Mar 2025 08:55:00 +0000
ROA not after: Sat 14 Mar 2026 09:00:00 +0000
asID: 150978
IP address blocks: 103.126.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:e7:87:d3:6b:d9:10:1a:e5:00:a5:2e:f1:72:e2:e0:96:b5:2a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98906779AB8F30762B65B3E6AD7F48326A08605E
Validity
Not Before: Mar 15 08:55:00 2025 GMT
Not After : Mar 14 09:00:00 2026 GMT
Subject: CN=81A88D14B3AED5911A82AC44E3B75EEB67E67FBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ac:c6:59:83:9f:47:01:64:66:40:d8:6d:26:
3a:44:1f:34:13:b6:93:f9:b3:16:eb:a6:d3:1a:b7:
63:e2:e1:e4:f1:d1:11:09:91:87:52:a0:e8:43:c9:
67:5b:4a:7c:29:db:9b:b7:e0:e1:37:2c:d5:86:f3:
4e:ee:a7:e0:6e:54:f7:6f:1e:11:ed:4f:8b:0c:ab:
90:49:21:84:45:04:0e:79:b6:91:12:29:1d:85:a7:
b1:ea:30:90:2e:ea:84:7a:c4:22:13:85:13:0a:b5:
ac:4d:97:3c:9f:c5:93:48:31:1e:75:cb:ba:61:4e:
c4:cb:44:49:7c:9b:a0:3c:aa:e8:99:08:1a:03:79:
62:35:44:a8:3d:01:56:e3:3b:ed:6e:4c:d3:e0:80:
b3:00:8e:29:06:bf:db:0f:50:11:2f:34:0b:c8:65:
87:27:4e:52:e5:e7:18:a4:8a:80:73:f2:6e:d1:45:
9a:36:f0:18:33:8a:b8:34:c4:f1:07:ae:4b:88:bc:
2b:c8:50:69:57:57:2c:f4:ee:ff:0e:43:aa:7a:61:
7d:0a:f8:a2:68:b7:86:e3:fb:6a:08:1e:94:0c:d9:
92:67:2b:7f:f9:16:12:6c:c2:e1:93:de:52:37:e7:
8c:65:a5:d4:96:72:3c:39:ac:5d:81:d5:98:d0:56:
cd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A8:8D:14:B3:AE:D5:91:1A:82:AC:44:E3:B7:5E:EB:67:E6:7F:BA
X509v3 Authority Key Identifier:
keyid:98:90:67:79:AB:8F:30:76:2B:65:B3:E6:AD:7F:48:32:6A:08:60:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/98906779AB8F30762B65B3E6AD7F48326A08605E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98906779AB8F30762B65B3E6AD7F48326A08605E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89a40089-6041-45ed-8e44-a997c8acf480/0/3130332e3132362e3233332e302f32342d3234203d3e20313530393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.126.233.0/24
Signature Algorithm: sha256WithRSAEncryption
22:69:4e:47:55:20:45:08:d4:8a:fa:4b:b1:7d:d3:41:85:06:
6e:b3:a4:d3:84:96:5c:8c:c4:45:dd:16:93:c7:32:b8:89:df:
ff:f8:d2:0f:3b:7a:ff:12:51:95:b3:94:e6:5b:7d:e6:55:9b:
a2:e2:31:ff:9a:01:1f:1c:d2:19:49:f1:df:f0:20:9c:23:8b:
27:3f:e3:38:0e:67:18:1d:42:19:37:82:b6:70:20:f8:b6:67:
58:a7:2f:0d:71:64:69:2a:7e:26:0a:8d:01:dc:e6:79:d7:d9:
7c:5c:b1:3b:87:17:86:16:2e:aa:5b:cc:ef:16:cd:8c:13:50:
40:e4:87:39:71:df:5c:63:6f:92:6a:43:a8:57:d6:e3:e5:0f:
41:86:38:d0:8b:cb:ef:6e:c2:07:0c:c0:3f:2e:14:9a:d6:1a:
28:c8:71:67:5b:5f:6b:f9:94:bf:9c:e7:91:a3:e5:8d:95:aa:
62:40:a9:b3:a6:20:c2:98:97:0d:42:30:b4:c9:ec:6a:3b:9e:
04:15:f1:aa:1d:4d:2f:7e:07:eb:37:03:57:bd:c2:81:3f:cd:
cb:cf:71:9e:a9:7d:c4:52:93:79:31:41:1e:c1:13:7b:e9:8b:
0a:33:8e:24:ec:b0:b5:a5:06:b3:53:87:d9:f8:68:98:aa:c2:
a1:52:f3:cd
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUTeeH02vZEBrlAKUu8XLi4Ja1Ko0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTg5MDY3NzlBQjhGMzA3NjJCNjVCM0U2QUQ3RjQ4MzI2
QTA4NjA1RTAeFw0yNTAzMTUwODU1MDBaFw0yNjAzMTQwOTAwMDBaMDMxMTAvBgNV
BAMTKDgxQTg4RDE0QjNBRUQ1OTExQTgyQUM0NEUzQjc1RUVCNjdFNjdGQkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrrMZZg59HAWRmQNhtJjpEHzQT
tpP5sxbrptMat2Pi4eTx0REJkYdSoOhDyWdbSnwp25u34OE3LNWG807up+BuVPdv
HhHtT4sMq5BJIYRFBA55tpESKR2Fp7HqMJAu6oR6xCIThRMKtaxNlzyfxZNIMR51
y7phTsTLREl8m6A8quiZCBoDeWI1RKg9AVbjO+1uTNPggLMAjikGv9sPUBEvNAvI
ZYcnTlLl5xikioBz8m7RRZo28Bgzirg0xPEHrkuIvCvIUGlXVyz07v8OQ6p6YX0K
+KJot4bj+2oIHpQM2ZJnK3/5FhJswuGT3lI354xlpdSWcjw5rF2B1ZjQVs0fAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUgaiNFLOu1ZEagqxE47de62fmf7owHwYDVR0j
BBgwFoAUmJBneauPMHYrZbPmrX9IMmoIYF4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
OWE0MDA4OS02MDQxLTQ1ZWQtOGU0NC1hOTk3YzhhY2Y0ODAvMC85ODkwNjc3OUFC
OEYzMDc2MkI2NUIzRTZBRDdGNDgzMjZBMDg2MDVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTg5MDY3NzlBQjhGMzA3NjJCNjVCM0U2QUQ3RjQ4MzI2QTA4
NjA1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5YTQwMDg5LTYwNDEtNDVlZC04
ZTQ0LWE5OTdjOGFjZjQ4MC8wLzMxMzAzMzJlMzEzMjM2MmUzMjMzMzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM3Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfukwDQYJ
KoZIhvcNAQELBQADggEBACJpTkdVIEUI1Ir6S7F900GFBm6zpNOEllyMxEXdFpPH
MriJ3//40g87ev8SUZWzlOZbfeZVm6LiMf+aAR8c0hlJ8d/wIJwjiyc/4zgOZxgd
Qhk3grZwIPi2Z1inLw1xZGkqfiYKjQHc5nnX2XxcsTuHF4YWLqpbzO8WzYwTUEDk
hzlx31xjb5JqQ6hX1uPlD0GGONCLy+9uwgcMwD8uFJrWGijIcWdbX2v5lL+c55Gj
5Y2VqmJAqbOmIMKYlw1CMLTJ7Go7ngQV8aodTS9+B+s3A1e9woE/zcvPcZ6pfcRS
k3kxQR7BE3vpiwozjiTssLWlBrNTh9n4aJiqwqFS880=
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:02:01 2025 by rpki-client