Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa
File: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (raw, json)
Hash identifier: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw=
Subject key identifier: B3:50:D5:D0:3A:78:7B:0E:81:8A:8E:C0:1F:09:CF:1E:55:58:D5:99
Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB
Certificate serial: 205E06E103CB6E67FE668FFE89D462D970B1199E
Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa
Signing time: Mon 01 Jul 2024 01:04:48 +0000
ROA not before: Mon 01 Jul 2024 00:59:48 +0000
ROA not after: Mon 30 Jun 2025 01:04:48 +0000
asID: 63497
IP address blocks: 103.232.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5e:06:e1:03:cb:6e:67:fe:66:8f:fe:89:d4:62:d9:70:b1:19:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB
Validity
Not Before: Jul 1 00:59:48 2024 GMT
Not After : Jun 30 01:04:48 2025 GMT
Subject: CN=B350D5D03A787B0E818A8EC01F09CF1E5558D599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:e4:9e:cc:e7:b7:e6:b9:b3:77:21:f8:c4:
05:29:00:37:8f:13:c5:42:10:30:30:52:b9:98:e4:
bc:9d:98:27:28:15:7f:2d:d7:67:0e:fd:10:ef:e4:
ee:52:09:5a:76:4b:35:9b:04:8c:68:22:a3:65:ac:
b6:27:4e:c6:40:33:d4:12:c1:ba:d3:d8:bb:7c:58:
0b:a8:91:aa:a3:55:ec:16:53:ae:fd:c0:de:9f:26:
a6:c8:75:da:e8:de:7c:90:44:23:d9:29:00:71:8b:
cc:e4:92:95:59:4a:39:d4:18:7c:d5:68:d3:07:00:
8e:d0:db:97:f4:ac:ec:2a:ff:e8:f1:a3:75:c8:07:
cf:5e:65:53:ef:61:fe:35:20:23:c3:88:95:9f:9b:
38:41:88:8c:36:10:82:7a:59:19:f3:24:fb:9e:9f:
84:49:74:fe:d0:a1:76:18:b3:82:d5:83:a5:58:1f:
4a:f2:ee:58:49:d3:fc:14:91:ba:bf:b2:d5:73:b1:
2f:9e:54:43:12:38:a4:b3:75:98:9f:a9:be:4f:64:
73:48:38:4d:57:cc:47:e9:79:ee:27:8a:3b:29:41:
c7:77:71:7a:76:de:53:0a:4d:12:2f:1f:ec:3c:98:
6b:24:c4:d8:b4:e2:d3:d9:8c:eb:b6:ef:26:52:cf:
cf:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:50:D5:D0:3A:78:7B:0E:81:8A:8E:C0:1F:09:CF:1E:55:58:D5:99
X509v3 Authority Key Identifier:
keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.232.242.0/23
Signature Algorithm: sha256WithRSAEncryption
50:9d:21:d1:13:26:8f:90:b9:a5:fd:a5:82:30:a4:03:6c:cb:
b4:58:7d:d3:18:02:68:08:b3:09:fd:03:5c:f5:54:91:13:1a:
a3:6c:6d:e1:23:2d:b1:70:41:b8:14:2b:2a:da:82:30:30:91:
53:8c:b8:27:3a:37:19:4d:53:5d:fc:df:bc:4f:68:31:47:08:
ea:f4:a8:69:54:cf:b1:b1:81:04:32:9c:95:bc:21:7e:f1:47:
34:e3:6b:b0:c6:d0:ca:4f:75:b2:d8:91:14:c9:03:43:62:94:
96:8d:05:1b:be:af:c4:a8:8e:17:32:11:a7:46:8d:08:57:04:
7d:3e:0e:0b:3b:fc:91:a3:89:8d:73:00:bd:d9:1a:93:ca:44:
e7:9b:ea:69:47:08:9d:41:cb:66:41:09:87:32:60:b5:61:5b:
d4:4c:01:47:80:21:44:bb:1c:ba:b6:88:6e:0a:15:9b:9a:be:
af:1e:f6:37:8d:28:b4:fe:5f:0c:a5:7d:ac:89:b8:37:7a:8c:
95:06:df:46:d1:26:d4:30:d2:57:03:ef:4d:7e:6d:60:01:3b:
e3:5c:77:af:c4:bf:43:48:0e:5e:09:a2:6d:d5:84:72:0d:58:
da:a6:0b:61:94:e9:f9:bf:4e:9c:0c:b5:69:9f:63:63:0c:9f:
20:54:4d:a6
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUIF4G4QPLbmf+Zo/+idRi2XCxGZ4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx
NTFDNUVEQjAeFw0yNDA3MDEwMDU5NDhaFw0yNTA2MzAwMTA0NDhaMDMxMTAvBgNV
BAMTKEIzNTBENUQwM0E3ODdCMEU4MThBOEVDMDFGMDlDRjFFNTU1OEQ1OTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB6eSezOe35rmzdyH4xAUpADeP
E8VCEDAwUrmY5LydmCcoFX8t12cO/RDv5O5SCVp2SzWbBIxoIqNlrLYnTsZAM9QS
wbrT2Lt8WAuokaqjVewWU679wN6fJqbIddro3nyQRCPZKQBxi8zkkpVZSjnUGHzV
aNMHAI7Q25f0rOwq/+jxo3XIB89eZVPvYf41ICPDiJWfmzhBiIw2EIJ6WRnzJPue
n4RJdP7QoXYYs4LVg6VYH0ry7lhJ0/wUkbq/stVzsS+eVEMSOKSzdZifqb5PZHNI
OE1XzEfpee4nijspQcd3cXp23lMKTRIvH+w8mGskxNi04tPZjOu27yZSz88LAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUs1DV0Dp4ew6Bio7AHwnPHlVY1ZkwHwYDVR0j
BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4
MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD
NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05
Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzMzMyMmUzMjM0MzIyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+jyMA0GCSqG
SIb3DQEBCwUAA4IBAQBQnSHREyaPkLml/aWCMKQDbMu0WH3TGAJoCLMJ/QNc9VSR
ExqjbG3hIy2xcEG4FCsq2oIwMJFTjLgnOjcZTVNd/N+8T2gxRwjq9KhpVM+xsYEE
MpyVvCF+8Uc042uwxtDKT3Wy2JEUyQNDYpSWjQUbvq/EqI4XMhGnRo0IVwR9Pg4L
O/yRo4mNcwC92RqTykTnm+ppRwidQctmQQmHMmC1YVvUTAFHgCFEuxy6tohuChWb
mr6vHvY3jSi0/l8MpX2sibg3eoyVBt9G0SbUMNJXA+9Nfm1gATvjXHevxL9DSA5e
CaJt1YRyDVjapgthlOn5v06cDLVpn2NjDJ8gVE2m
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:19:54 2025 by rpki-client