Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa
File: 3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa (raw, json)
Hash identifier: g8Rl7U0nFpYFffBSEHjQWDN6y2OZG0rsmTeflyqrLBo=
Subject key identifier: 62:56:30:13:D8:16:E5:FA:B1:37:6A:C5:2E:FB:58:BD:BC:BC:06:30
Certificate issuer: /CN=91982855FD8C4C119B32F9D536B640804091001C
Certificate serial: 708C1A66E5CA122E4F5FBD32F22AAFBB6137A7B4
Authority key identifier: 91:98:28:55:FD:8C:4C:11:9B:32:F9:D5:36:B6:40:80:40:91:00:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91982855FD8C4C119B32F9D536B640804091001C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa
Signing time: Mon 01 Jul 2024 01:04:26 +0000
ROA not before: Mon 01 Jul 2024 00:59:26 +0000
ROA not after: Mon 30 Jun 2025 01:04:26 +0000
asID: 131735
IP address blocks: 103.15.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:8c:1a:66:e5:ca:12:2e:4f:5f:bd:32:f2:2a:af:bb:61:37:a7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91982855FD8C4C119B32F9D536B640804091001C
Validity
Not Before: Jul 1 00:59:26 2024 GMT
Not After : Jun 30 01:04:26 2025 GMT
Subject: CN=62563013D816E5FAB1376AC52EFB58BDBCBC0630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:38:d6:c6:9e:ba:1c:56:2a:51:2a:de:fa:c8:
ee:66:49:e2:b0:81:64:d0:fd:94:7d:3d:3f:70:c0:
86:3a:0e:6e:36:89:68:78:a3:fc:79:00:76:41:e4:
a9:bc:48:36:f8:2c:87:68:ec:8b:8d:8d:0c:f0:1b:
ae:68:11:a0:a3:70:c4:cd:c0:4f:5f:68:46:6a:2d:
29:e6:21:4d:07:9a:c3:2c:b7:c7:92:7e:52:7b:57:
3f:ef:46:d5:71:58:e7:ab:11:70:08:34:a9:c8:e8:
e9:27:10:32:1e:13:e6:ea:5f:26:47:67:1e:f5:f3:
b2:8b:24:c3:2f:3f:19:12:ae:e4:84:46:70:23:90:
b2:29:06:91:3a:06:a7:43:b2:a9:79:fb:1a:72:45:
4d:cb:29:85:45:be:28:fc:7e:e8:fc:af:f2:e0:30:
ca:a0:25:0f:d8:3a:13:4c:2b:39:95:65:d9:63:b1:
0d:4e:d5:f8:90:12:5e:0d:01:a1:77:2c:e1:3a:72:
b6:a5:5d:3f:0f:60:b1:6f:eb:36:3b:af:15:de:65:
b4:91:ac:8b:04:73:45:d6:c5:78:6f:82:46:4d:13:
22:2e:0e:11:4d:0e:7d:49:a0:dc:4d:4b:24:81:4b:
8e:d2:e9:03:9c:e8:df:e6:98:67:e9:89:15:ec:81:
59:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:56:30:13:D8:16:E5:FA:B1:37:6A:C5:2E:FB:58:BD:BC:BC:06:30
X509v3 Authority Key Identifier:
keyid:91:98:28:55:FD:8C:4C:11:9B:32:F9:D5:36:B6:40:80:40:91:00:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/91982855FD8C4C119B32F9D536B640804091001C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91982855FD8C4C119B32F9D536B640804091001C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c2c4948-687b-4020-87f4-28ee4b63aa47/0/3130332e31352e3234302e302f32322d3234203d3e20313331373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.15.240.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:e9:0d:c8:3b:25:d5:50:5b:8e:7b:72:60:cd:b8:3f:06:fe:
b9:fd:9a:84:50:1d:9a:d4:10:e9:93:ed:46:d4:a6:20:d5:7c:
13:76:06:d5:e3:55:33:85:f6:26:9f:ab:f5:5b:13:2f:0c:ba:
27:fc:73:b6:67:3e:85:b7:c7:7e:c1:96:aa:32:38:f7:07:2b:
13:37:03:5d:59:01:df:f7:ac:6a:67:45:88:e9:14:ec:13:05:
8e:77:31:1e:3f:7f:3d:21:e6:9a:c4:98:0e:0c:d5:22:71:38:
59:8d:1d:e5:e3:86:6d:b2:ab:3f:3c:85:e3:23:cc:c2:43:c9:
bc:56:1c:19:6b:10:df:71:5d:51:10:02:44:e4:b6:f9:ce:9a:
7b:75:01:02:eb:18:d9:24:2f:30:6e:3e:f3:98:eb:1c:7e:8b:
9f:f1:cc:69:1b:fb:8f:2b:6f:cb:a1:9a:71:60:d1:22:db:b8:
c0:0f:fe:cc:b5:fe:8b:b8:b7:47:fc:bf:02:90:e9:80:19:d0:
4e:58:7c:dc:19:c6:83:2e:4a:93:e8:d3:0a:8a:4c:f1:cd:5c:
92:db:12:17:b4:f2:e5:60:af:93:dc:5e:12:2e:de:5e:c6:8c:
a1:2d:f7:c7:72:ab:22:dd:b6:98:83:2f:19:c7:35:30:3d:58:
a8:60:c4:17
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUcIwaZuXKEi5PX70y8iqvu2E3p7QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE5ODI4NTVGRDhDNEMxMTlCMzJGOUQ1MzZCNjQwODA0
MDkxMDAxQzAeFw0yNDA3MDEwMDU5MjZaFw0yNTA2MzAwMTA0MjZaMDMxMTAvBgNV
BAMTKDYyNTYzMDEzRDgxNkU1RkFCMTM3NkFDNTJFRkI1OEJEQkNCQzA2MzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVONbGnrocVipRKt76yO5mSeKw
gWTQ/ZR9PT9wwIY6Dm42iWh4o/x5AHZB5Km8SDb4LIdo7IuNjQzwG65oEaCjcMTN
wE9faEZqLSnmIU0HmsMst8eSflJ7Vz/vRtVxWOerEXAINKnI6OknEDIeE+bqXyZH
Zx7187KLJMMvPxkSruSERnAjkLIpBpE6BqdDsql5+xpyRU3LKYVFvij8fuj8r/Lg
MMqgJQ/YOhNMKzmVZdljsQ1O1fiQEl4NAaF3LOE6cralXT8PYLFv6zY7rxXeZbSR
rIsEc0XWxXhvgkZNEyIuDhFNDn1JoNxNSySBS47S6QOc6N/mmGfpiRXsgVlvAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUYlYwE9gW5fqxN2rFLvtYvby8BjAwHwYDVR0j
BBgwFoAUkZgoVf2MTBGbMvnVNrZAgECRABwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
YzJjNDk0OC02ODdiLTQwMjAtODdmNC0yOGVlNGI2M2FhNDcvMC85MTk4Mjg1NUZE
OEM0QzExOUIzMkY5RDUzNkI2NDA4MDQwOTEwMDFDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTE5ODI4NTVGRDhDNEMxMTlCMzJGOUQ1MzZCNjQwODA0MDkx
MDAxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljMmM0OTQ4LTY4N2ItNDAyMC04
N2Y0LTI4ZWU0YjYzYWE0Ny8wLzMxMzAzMzJlMzEzNTJlMzIzNDMwMmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZw/wMA0GCSqG
SIb3DQEBCwUAA4IBAQA86Q3IOyXVUFuOe3Jgzbg/Bv65/ZqEUB2a1BDpk+1G1KYg
1XwTdgbV41UzhfYmn6v1WxMvDLon/HO2Zz6Ft8d+wZaqMjj3BysTNwNdWQHf96xq
Z0WI6RTsEwWOdzEeP389IeaaxJgODNUicThZjR3l44Ztsqs/PIXjI8zCQ8m8VhwZ
axDfcV1REAJE5Lb5zpp7dQEC6xjZJC8wbj7zmOscfouf8cxpG/uPK2/LoZpxYNEi
27jAD/7Mtf6LuLdH/L8CkOmAGdBOWHzcGcaDLkqT6NMKikzxzVyS2xIXtPLlYK+T
3F4SLt5exoyhLffHcqsi3baYgy8ZxzUwPVioYMQX
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:19 2025 by rpki-client