Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa
File: 3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa (raw, json)
Hash identifier: S0p/daZGbVg/6osVTIYUqF7J3lXGwRxwBETpqSAS5qY=
Subject key identifier: 49:7E:5A:BD:B2:B3:8F:64:54:E2:D9:0D:BB:AF:E7:3B:80:3F:35:52
Certificate issuer: /CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8
Certificate serial: 60F2F30DC4BC8AFD5AFC3E5B7D82CE6078ABF88B
Authority key identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa
Signing time: Tue 25 Jun 2024 10:00:37 +0000
ROA not before: Tue 25 Jun 2024 09:55:37 +0000
ROA not after: Tue 24 Jun 2025 10:00:37 +0000
asID: 149967
IP address blocks: 103.21.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f2:f3:0d:c4:bc:8a:fd:5a:fc:3e:5b:7d:82:ce:60:78:ab:f8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8
Validity
Not Before: Jun 25 09:55:37 2024 GMT
Not After : Jun 24 10:00:37 2025 GMT
Subject: CN=497E5ABDB2B38F6454E2D90DBBAFE73B803F3552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:03:fc:62:43:49:21:ab:08:65:42:6c:94:a1:
38:4d:a6:8e:85:66:7b:53:ac:0c:04:55:7e:3b:84:
c6:16:d7:75:b6:67:4a:7f:b8:b4:d5:4d:44:f7:05:
4c:cd:e6:f9:86:10:4a:a6:d8:4d:2e:96:21:e2:df:
25:0b:f4:71:74:95:d6:32:50:af:b5:28:38:83:f0:
4d:64:66:bf:25:c1:86:4c:92:b3:18:c8:16:20:89:
7d:03:b7:4f:a7:f2:69:e1:8a:72:0b:93:79:ee:06:
9b:a1:fa:00:71:4a:7a:bd:af:e1:6e:e7:38:19:77:
06:e4:08:91:a8:88:f4:76:9c:ab:1e:b6:8c:5d:89:
e0:af:7d:25:f0:0a:f1:bd:24:58:ca:8a:0d:1a:99:
4c:8e:db:94:44:18:ac:a3:22:cd:6a:88:a4:d7:e0:
92:b7:a4:1b:c8:24:2f:3f:64:45:6c:76:f6:21:b6:
09:3d:1b:6a:eb:f6:23:d1:ec:5a:75:01:a2:90:ff:
a5:0f:fd:b4:45:30:e3:5d:6c:e4:b0:32:cd:83:e9:
d7:b8:6d:84:84:27:5e:71:a8:76:c1:ab:8e:b2:b3:
55:73:a0:39:4e:ee:0b:68:47:ef:ba:2e:8f:19:09:
db:58:50:b7:36:c3:a7:29:82:22:61:d6:37:4b:ea:
68:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:7E:5A:BD:B2:B3:8F:64:54:E2:D9:0D:BB:AF:E7:3B:80:3F:35:52
X509v3 Authority Key Identifier:
keyid:E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/3130332e32312e3139352e302f32342d3234203d3e20313439393637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.21.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:58:5b:e1:3e:c6:ab:2d:56:c0:bc:b4:09:58:04:e0:2b:79:
98:55:e3:5f:64:a3:84:1b:00:ef:60:bd:a2:4d:1b:0f:71:7a:
b4:34:14:89:fe:5a:f3:3a:d1:5f:ca:61:87:ef:71:a9:00:59:
62:89:0a:d8:2e:01:f7:b0:f3:ce:94:ae:55:65:7d:66:a0:af:
8a:14:2f:4c:b6:35:78:5d:eb:9b:1f:f6:31:2d:03:c7:ab:b1:
ff:0c:de:4c:17:59:56:f6:57:8a:63:7b:05:20:12:84:51:d0:
e2:af:51:21:a8:2b:ab:de:a3:2f:bd:1d:02:de:de:50:0b:9c:
5a:81:18:d6:9c:54:df:4e:0e:ca:a0:58:c4:4d:ed:01:23:13:
fc:66:1c:ed:e8:62:1e:73:1b:44:5a:70:f1:fc:7e:db:5d:5c:
4f:86:63:6b:2f:ae:f5:d0:b1:85:60:5f:b2:76:c1:7d:2a:bf:
27:9e:9e:81:6c:db:c9:d6:f0:eb:f5:52:af:a3:4b:e3:f2:ed:
66:3b:51:9a:3b:df:56:77:b0:a4:4a:d4:6d:70:80:64:52:fe:
66:c4:fe:df:06:fd:26:69:28:cb:64:60:ef:b8:23:3c:de:62:
4e:ff:02:30:ef:7f:b9:7d:2e:5c:32:b3:18:a4:34:cd:d2:7f:
08:0b:bd:b9
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUYPLzDcS8iv1a/D5bfYLOYHir+IswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTM1RDQ0MzM4RTU5MzdCNEFFMjY5REREQ0RBNDBBMjhG
ODdGM0VDODAeFw0yNDA2MjUwOTU1MzdaFw0yNTA2MjQxMDAwMzdaMDMxMTAvBgNV
BAMTKDQ5N0U1QUJEQjJCMzhGNjQ1NEUyRDkwREJCQUZFNzNCODAzRjM1NTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOA/xiQ0khqwhlQmyUoThNpo6F
ZntTrAwEVX47hMYW13W2Z0p/uLTVTUT3BUzN5vmGEEqm2E0uliHi3yUL9HF0ldYy
UK+1KDiD8E1kZr8lwYZMkrMYyBYgiX0Dt0+n8mnhinILk3nuBpuh+gBxSnq9r+Fu
5zgZdwbkCJGoiPR2nKsetoxdieCvfSXwCvG9JFjKig0amUyO25REGKyjIs1qiKTX
4JK3pBvIJC8/ZEVsdvYhtgk9G2rr9iPR7Fp1AaKQ/6UP/bRFMONdbOSwMs2D6de4
bYSEJ15xqHbBq46ys1VzoDlO7gtoR++6Lo8ZCdtYULc2w6cpgiJh1jdL6mh9AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUSX5avbKzj2RU4tkNu6/nO4A/NVIwHwYDVR0j
BBgwFoAU411EM45ZN7SuJp3dzaQKKPh/PsgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
NjgzYjI3Yy1hNzMwLTQwMDItOTFiOC1kMDM2NmRmYWM3N2UvMC9FMzVENDQzMzhF
NTkzN0I0QUUyNjlERERDREE0MEEyOEY4N0YzRUM4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRTM1RDQ0MzM4RTU5MzdCNEFFMjY5REREQ0RBNDBBMjhGODdG
M0VDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODNiMjdjLWE3MzAtNDAwMi05
MWI4LWQwMzY2ZGZhYzc3ZS8wLzMxMzAzMzJlMzIzMTJlMzEzOTM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXDMA0GCSqG
SIb3DQEBCwUAA4IBAQBrWFvhPsarLVbAvLQJWATgK3mYVeNfZKOEGwDvYL2iTRsP
cXq0NBSJ/lrzOtFfymGH73GpAFliiQrYLgH3sPPOlK5VZX1moK+KFC9MtjV4Xeub
H/YxLQPHq7H/DN5MF1lW9leKY3sFIBKEUdDir1EhqCur3qMvvR0C3t5QC5xagRjW
nFTfTg7KoFjETe0BIxP8Zhzt6GIecxtEWnDx/H7bXVxPhmNrL6710LGFYF+ydsF9
Kr8nnp6BbNvJ1vDr9VKvo0vj8u1mO1GaO99Wd7CkStRtcIBkUv5mxP7fBv0maSjL
ZGDvuCM83mJO/wIw73+5fS5cMrMYpDTN0n8IC725
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:25:47 2025 by rpki-client