Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa
File: 3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa (raw, json)
Hash identifier: nKmVU0aaMSmM7wKFukfzUIiKVfAI46n/zI3k22bxBr8=
Subject key identifier: 6C:16:EA:12:C6:DF:6C:D8:3C:91:03:24:81:A8:BD:B6:7A:7A:D3:2C
Certificate issuer: /CN=08632F1EBF41728D3E177234FCD8C0B9A988898B
Certificate serial: 3CFA095C199553A8368C47DD6D68B80294DB7C31
Authority key identifier: 08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa
Signing time: Thu 13 Mar 2025 05:00:00 +0000
ROA not before: Thu 13 Mar 2025 04:55:00 +0000
ROA not after: Thu 12 Mar 2026 05:00:00 +0000
asID: 138133
IP address blocks: 103.133.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:fa:09:5c:19:95:53:a8:36:8c:47:dd:6d:68:b8:02:94:db:7c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08632F1EBF41728D3E177234FCD8C0B9A988898B
Validity
Not Before: Mar 13 04:55:00 2025 GMT
Not After : Mar 12 05:00:00 2026 GMT
Subject: CN=6C16EA12C6DF6CD83C91032481A8BDB67A7AD32C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:34:ce:da:2b:75:4a:c6:58:94:99:11:1e:e2:
b4:25:50:c2:d1:54:62:0a:91:0c:b5:a6:09:b0:84:
ef:33:07:fe:80:9a:e9:aa:f7:f5:92:4d:0c:8b:8e:
f1:5a:9e:92:2d:b1:b1:ff:d5:3b:fe:3d:73:a4:dc:
fe:d5:19:f2:50:79:df:08:39:d3:a3:f0:76:45:5f:
d5:c0:f1:14:52:c9:45:87:dd:f8:64:ef:3b:2e:a8:
76:04:c6:f8:73:bd:5d:16:9a:5b:2a:ce:bb:9a:11:
ce:df:86:56:9c:e7:35:f0:9a:bd:9d:6b:e7:af:1d:
b2:f6:5b:ac:3c:7a:ef:f4:25:d4:59:70:b6:4e:bc:
79:a1:bd:a4:23:6f:d7:85:ef:50:d0:4e:13:f0:3f:
a9:d0:6f:71:4b:9e:38:e9:68:f4:84:cf:18:02:5a:
9b:f0:a1:90:c0:0e:3a:5a:75:a0:b1:fd:ae:5e:ff:
52:b8:8e:a2:93:2f:fe:1d:82:13:36:b7:4b:eb:46:
e8:a7:8e:10:9e:a5:9c:2b:ed:bf:35:02:08:ae:88:
90:31:86:36:ae:1f:6a:e2:f5:52:91:ff:76:45:4d:
57:d1:bd:fb:fc:e5:c4:01:60:62:62:55:97:e0:18:
b0:92:2e:d5:fa:be:a2:50:4b:bf:55:e4:be:39:01:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:16:EA:12:C6:DF:6C:D8:3C:91:03:24:81:A8:BD:B6:7A:7A:D3:2C
X509v3 Authority Key Identifier:
keyid:08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.133.36.0/24
Signature Algorithm: sha256WithRSAEncryption
57:0a:ae:cc:0e:8b:7f:b6:b2:98:95:26:9e:53:bb:8b:ae:a3:
f6:20:e1:08:d1:ef:56:13:27:af:6d:31:06:a7:9c:bc:e6:41:
5c:bf:3c:71:21:23:02:c0:8b:cc:55:b8:17:6b:c4:5e:45:74:
ac:63:dd:6d:1d:48:f6:20:18:21:b3:0a:7f:a8:1e:5b:23:c1:
d5:3f:17:cc:73:39:75:50:72:6f:de:ee:88:1f:f0:c3:a0:bb:
d8:31:5c:75:67:04:9e:23:a9:c0:84:cf:49:a4:f5:f1:71:13:
11:bb:d8:30:e1:65:cb:02:57:f9:d6:7f:fb:fa:ab:4b:ba:4a:
71:87:f3:c6:b2:58:70:71:0d:89:95:e5:aa:7d:de:8f:d8:be:
27:91:83:56:a2:37:c9:89:67:3d:1d:f4:1b:26:fa:f3:70:5f:
bf:fb:e6:d9:69:1a:ad:de:47:7c:a7:ef:d2:c9:22:03:e4:34:
8f:f4:6f:d8:f4:28:c5:f1:d0:2f:8e:b8:9b:ee:83:fe:69:65:
d0:a5:06:ed:21:b6:4c:ec:7a:f6:fb:55:f1:24:fc:0d:5b:1d:
3e:5e:c8:98:29:f3:bf:ed:b0:44:41:59:b5:6b:85:fa:76:b3:
4d:b2:80:09:fe:af:ba:bd:e9:d1:7c:fe:21:b7:3c:09:ad:46:
ed:90:9b:1a
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUPPoJXBmVU6g2jEfdbWi4ApTbfDEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlB
OTg4ODk4QjAeFw0yNTAzMTMwNDU1MDBaFw0yNjAzMTIwNTAwMDBaMDMxMTAvBgNV
BAMTKDZDMTZFQTEyQzZERjZDRDgzQzkxMDMyNDgxQThCREI2N0E3QUQzMkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNM7aK3VKxliUmREe4rQlUMLR
VGIKkQy1pgmwhO8zB/6Amumq9/WSTQyLjvFanpItsbH/1Tv+PXOk3P7VGfJQed8I
OdOj8HZFX9XA8RRSyUWH3fhk7zsuqHYExvhzvV0WmlsqzruaEc7fhlac5zXwmr2d
a+evHbL2W6w8eu/0JdRZcLZOvHmhvaQjb9eF71DQThPwP6nQb3FLnjjpaPSEzxgC
WpvwoZDADjpadaCx/a5e/1K4jqKTL/4dghM2t0vrRuinjhCepZwr7b81AgiuiJAx
hjauH2ri9VKR/3ZFTVfRvfv85cQBYGJiVZfgGLCSLtX6vqJQS79V5L45AesbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUbBbqEsbfbNg8kQMkgai9tnp60ywwHwYDVR0j
BBgwFoAUCGMvHr9Bco0+F3I0/NjAuamIiYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
ZjZiZjM3Yy1kOGFkLTRlMDMtYTA2YS00NDA4MTU3Y2Y1N2UvMC8wODYzMkYxRUJG
NDE3MjhEM0UxNzcyMzRGQ0Q4QzBCOUE5ODg4OThCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlBOTg4
ODk4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNmJmMzdjLWQ4YWQtNGUwMy1h
MDZhLTQ0MDgxNTdjZjU3ZS8wLzMxMzAzMzJlMzEzMzMzMmUzMzM2MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4UkMA0GCSqG
SIb3DQEBCwUAA4IBAQBXCq7MDot/trKYlSaeU7uLrqP2IOEI0e9WEyevbTEGp5y8
5kFcvzxxISMCwIvMVbgXa8ReRXSsY91tHUj2IBghswp/qB5bI8HVPxfMczl1UHJv
3u6IH/DDoLvYMVx1ZwSeI6nAhM9JpPXxcRMRu9gw4WXLAlf51n/7+qtLukpxh/PG
slhwcQ2JleWqfd6P2L4nkYNWojfJiWc9HfQbJvrzcF+/++bZaRqt3kd8p+/SySID
5DSP9G/Y9CjF8dAvjrib7oP+aWXQpQbtIbZM7Hr2+1XxJPwNWx0+XsiYKfO/7bBE
QVm1a4X6drNNsoAJ/q+6venRfP4htzwJrUbtkJsa
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:05 2025 by rpki-client