Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232362e302f32332d3233203d3e203539313335.roa
File: 3130332e372e3232362e302f32332d3233203d3e203539313335.roa (raw, json)
Hash identifier: GdlbTWrG/icEi02vevg3I8Yb/qW9c41p3zfV3e6WUcw=
Subject key identifier: C5:AC:04:88:11:34:95:95:61:D7:4D:57:D1:9B:6D:E5:91:C0:5C:B0
Certificate issuer: /CN=754AE571E3432B20E78045BE7B2C99E39E0F1873
Certificate serial: 1124FC188A9A9DA3BF905C4FB1E146793DBEB45E
Authority key identifier: 75:4A:E5:71:E3:43:2B:20:E7:80:45:BE:7B:2C:99:E3:9E:0F:18:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754AE571E3432B20E78045BE7B2C99E39E0F1873.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232362e302f32332d3233203d3e203539313335.roa
Signing time: Tue 16 Apr 2024 11:00:00 +0000
ROA not before: Tue 16 Apr 2024 10:55:00 +0000
ROA not after: Tue 15 Apr 2025 11:00:00 +0000
asID: 59135
IP address blocks: 103.7.226.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:24:fc:18:8a:9a:9d:a3:bf:90:5c:4f:b1:e1:46:79:3d:be:b4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=754AE571E3432B20E78045BE7B2C99E39E0F1873
Validity
Not Before: Apr 16 10:55:00 2024 GMT
Not After : Apr 15 11:00:00 2025 GMT
Subject: CN=C5AC04881134959561D74D57D19B6DE591C05CB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3b:7d:a4:37:ba:c9:72:4a:89:88:ca:51:68:
a7:18:92:37:27:df:27:72:30:1f:1c:4a:79:f7:13:
94:fb:78:38:89:ab:3d:d9:7e:47:63:bd:15:29:76:
7a:e8:5e:d8:aa:eb:97:ca:69:19:2a:e0:43:27:b4:
13:c6:77:8d:96:83:d7:fe:60:e5:17:18:4e:8e:e3:
9d:56:98:45:79:e5:3a:f3:5a:5c:97:45:b9:72:2f:
23:d9:7b:c6:9d:c2:62:d3:6d:11:d5:5c:d8:1a:2e:
6c:84:46:55:5f:58:1a:9e:2e:2d:64:26:96:78:26:
ed:f8:43:59:e6:cc:63:b6:00:80:a6:9e:e4:a3:70:
12:85:70:fa:e6:c0:27:a4:88:a7:e6:13:ce:8e:54:
32:75:ef:e1:f7:08:5b:38:61:e3:8e:47:ab:e6:5a:
c6:89:51:af:cd:c6:3e:2e:9b:ed:f7:cd:93:56:8b:
67:8b:e4:78:a9:76:f8:1e:e5:b7:9e:21:3f:7c:f0:
e4:31:64:38:14:9d:40:60:8a:e2:71:b4:df:b2:3c:
0e:1c:9a:47:66:38:62:35:5d:6d:23:d9:9e:43:f3:
af:54:c6:4a:e7:14:3e:58:fb:44:57:07:cb:b5:3a:
2f:6e:48:0f:e4:ca:5a:df:82:6a:e9:2c:1b:05:d1:
42:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AC:04:88:11:34:95:95:61:D7:4D:57:D1:9B:6D:E5:91:C0:5C:B0
X509v3 Authority Key Identifier:
keyid:75:4A:E5:71:E3:43:2B:20:E7:80:45:BE:7B:2C:99:E3:9E:0F:18:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/754AE571E3432B20E78045BE7B2C99E39E0F1873.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754AE571E3432B20E78045BE7B2C99E39E0F1873.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232362e302f32332d3233203d3e203539313335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.7.226.0/23
Signature Algorithm: sha256WithRSAEncryption
57:53:b4:1e:2b:43:d9:9e:85:19:13:88:a0:90:95:48:52:71:
93:58:d1:5f:c2:2d:65:0d:4d:d5:c5:06:7a:7a:df:69:f5:ff:
67:bd:e3:51:ff:ab:71:7e:87:b6:44:60:db:b2:7c:6c:fe:f4:
1f:ff:03:cd:c4:2d:61:b4:77:b5:9e:1a:09:e7:5d:57:27:fc:
29:c8:4b:98:1a:01:92:c9:95:41:af:0d:17:5b:24:a9:f1:ca:
5e:f7:64:d1:29:a0:1f:29:30:17:46:98:a8:ba:b9:96:8d:25:
4b:5f:56:1a:ed:fa:2e:d3:cd:85:ae:d2:d6:53:19:1f:3f:2a:
c0:1a:c7:b2:1c:a5:78:0c:7b:20:c7:69:eb:62:b7:7b:62:d2:
5e:01:82:92:32:6e:77:d1:09:50:ac:7d:7f:e1:ca:de:58:a1:
a9:af:45:a9:94:23:af:43:62:f3:88:5c:c7:76:4a:73:a0:be:
ad:37:9c:6e:51:71:34:56:7f:6d:4b:42:19:64:98:b7:87:c7:
46:71:10:40:d5:bf:12:cf:4e:b5:00:82:26:ff:87:15:e9:70:
a5:bf:26:9c:0b:63:28:a2:a4:db:a8:96:d7:88:3c:26:cd:65:
32:cb:98:7c:82:23:f1:bc:46:61:c3:92:75:12:48:b8:f9:6b:
a4:93:ba:50
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUEST8GIqanaO/kFxPseFGeT2+tF4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzU0QUU1NzFFMzQzMkIyMEU3ODA0NUJFN0IyQzk5RTM5
RTBGMTg3MzAeFw0yNDA0MTYxMDU1MDBaFw0yNTA0MTUxMTAwMDBaMDMxMTAvBgNV
BAMTKEM1QUMwNDg4MTEzNDk1OTU2MUQ3NEQ1N0QxOUI2REU1OTFDMDVDQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBO32kN7rJckqJiMpRaKcYkjcn
3ydyMB8cSnn3E5T7eDiJqz3ZfkdjvRUpdnroXtiq65fKaRkq4EMntBPGd42Wg9f+
YOUXGE6O451WmEV55TrzWlyXRblyLyPZe8adwmLTbRHVXNgaLmyERlVfWBqeLi1k
JpZ4Ju34Q1nmzGO2AICmnuSjcBKFcPrmwCekiKfmE86OVDJ17+H3CFs4YeOOR6vm
WsaJUa/Nxj4um+33zZNWi2eL5Hipdvge5beeIT988OQxZDgUnUBgiuJxtN+yPA4c
mkdmOGI1XW0j2Z5D869UxkrnFD5Y+0RXB8u1Oi9uSA/kylrfgmrpLBsF0UJHAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUxawEiBE0lZVh101X0Ztt5ZHAXLAwHwYDVR0j
BBgwFoAUdUrlceNDKyDngEW+eyyZ454PGHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
NjM1OGRkYS0wZmYxLTRmNmEtYmI2Ni02MGY0Y2EwNGM0OTAvMC83NTRBRTU3MUUz
NDMyQjIwRTc4MDQ1QkU3QjJDOTlFMzlFMEYxODczLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzU0QUU1NzFFMzQzMkIyMEU3ODA0NUJFN0IyQzk5RTM5RTBG
MTg3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzU4ZGRhLTBmZjEtNGY2YS1i
YjY2LTYwZjRjYTA0YzQ5MC8wLzMxMzAzMzJlMzcyZTMyMzIzNjJlMzAyZjMyMzMy
ZDMyMzMyMDNkM2UyMDM1MzkzMTMzMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnB+IwDQYJKoZIhvcN
AQELBQADggEBAFdTtB4rQ9mehRkTiKCQlUhScZNY0V/CLWUNTdXFBnp632n1/2e9
41H/q3F+h7ZEYNuyfGz+9B//A83ELWG0d7WeGgnnXVcn/CnIS5gaAZLJlUGvDRdb
JKnxyl73ZNEpoB8pMBdGmKi6uZaNJUtfVhrt+i7TzYWu0tZTGR8/KsAax7IcpXgM
eyDHaetit3ti0l4BgpIybnfRCVCsfX/hyt5YoamvRamUI69DYvOIXMd2SnOgvq03
nG5RcTRWf21LQhlkmLeHx0ZxEEDVvxLPTrUAgib/hxXpcKW/JpwLYyiipNuolteI
PCbNZTLLmHyCI/G8RmHDknUSSLj5a6STulA=
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:06:52 2025 by rpki-client