Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa
File: 3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa (raw, json)
Hash identifier: H3hffUKrAMQgM7P8EVWElY25bwWrRFq4QzBAmlTISAU=
Subject key identifier: C4:93:59:AC:D5:A5:D8:30:CD:AB:4F:69:42:A9:C0:8E:79:02:8F:43
Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7
Certificate serial: 42E537DE5786B2D6B761DB1D0D0838E9AD6E921F
Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa
Signing time: Thu 03 Oct 2024 09:36:34 +0000
ROA not before: Thu 03 Oct 2024 09:31:34 +0000
ROA not after: Thu 02 Oct 2025 09:36:34 +0000
asID: 151519
IP address blocks: 103.239.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e5:37:de:57:86:b2:d6:b7:61:db:1d:0d:08:38:e9:ad:6e:92:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7
Validity
Not Before: Oct 3 09:31:34 2024 GMT
Not After : Oct 2 09:36:34 2025 GMT
Subject: CN=C49359ACD5A5D830CDAB4F6942A9C08E79028F43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:23:6b:f3:38:c1:7b:cc:0b:d5:36:1e:be:88:
a2:86:70:dd:10:04:f4:05:11:aa:e1:7f:8f:d3:ec:
bd:d4:62:85:3e:0c:9d:0b:b6:57:1b:fb:9a:c8:b7:
26:a3:a9:82:6a:54:b9:b1:79:9f:6c:99:67:bb:3b:
41:74:dc:15:02:08:32:a0:83:91:96:0c:10:66:08:
c5:80:8c:46:88:6a:74:5f:73:6b:79:d1:84:a1:81:
45:26:8b:db:29:0b:fa:21:19:50:2c:ef:79:b0:6c:
43:00:a2:63:37:43:71:eb:24:95:92:1d:97:69:06:
3e:34:87:cf:b5:22:be:92:b7:bc:85:6b:ec:fe:9d:
98:53:79:5d:e9:9b:02:b8:e6:03:17:a7:3e:64:eb:
a8:ed:6c:73:d4:b9:bc:6a:e7:dd:8e:35:95:4d:09:
18:a3:b6:09:f6:2a:b1:53:5b:ed:dd:60:5a:68:16:
e5:e3:0c:2c:a1:d9:7f:a0:2c:de:89:a5:e3:95:34:
9d:7a:8c:9c:4a:b7:9a:71:3d:9f:1c:c5:0d:61:5d:
45:1c:50:b2:4f:3b:7c:58:a0:ba:1a:f4:e4:e0:31:
e7:3e:88:fd:a2:1c:d8:91:fa:45:e2:eb:e3:58:e0:
84:bb:33:85:a8:99:ca:3a:d1:2c:09:5d:a9:93:ff:
79:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:93:59:AC:D5:A5:D8:30:CD:AB:4F:69:42:A9:C0:8E:79:02:8F:43
X509v3 Authority Key Identifier:
keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.239.21.0/24
Signature Algorithm: sha256WithRSAEncryption
46:17:86:8c:3a:64:7b:a5:ac:9f:90:7c:b0:4b:03:2d:ee:72:
75:f6:35:40:f4:58:c9:2c:d2:a8:2a:63:2d:29:b1:0d:ff:7d:
c5:75:34:4d:01:96:c2:de:57:88:ec:c3:e3:16:66:91:e2:05:
4e:07:21:ce:f4:10:13:1a:7d:f7:c2:84:42:12:a7:2d:90:6b:
6f:28:f9:15:b6:eb:c9:5a:47:20:ae:68:4a:73:5a:1d:1a:31:
64:ab:13:46:c5:21:d9:ea:24:b0:5d:b2:7a:a0:7d:6a:ce:24:
c0:30:ff:b1:7a:6a:34:9c:61:2a:43:83:d3:01:67:f9:8c:27:
86:78:38:a9:2b:0d:16:fd:91:31:28:4f:46:a4:10:5a:03:0e:
13:52:03:7a:22:b6:aa:93:df:96:49:1b:fd:72:80:61:6e:71:
a4:1e:54:56:db:31:78:d1:8e:ec:15:3f:df:09:c9:ab:bf:3b:
75:2e:16:7d:a5:c8:7d:c1:18:2b:ac:13:dc:23:9b:2c:29:41:
52:92:e7:bb:4a:ac:ce:e1:7a:c5:25:56:6e:2c:59:f3:1f:49:
6d:49:a1:db:fb:4d:49:22:6f:ff:2b:98:e8:20:1a:48:2b:f3:
12:83:84:79:2d:41:c6:d5:67:54:68:a7:13:26:b4:d9:35:93:
1d:ca:5a:79
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUQuU33leGsta3YdsdDQg46a1ukh8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0
NTQyRTdENzAeFw0yNDEwMDMwOTMxMzRaFw0yNTEwMDIwOTM2MzRaMDMxMTAvBgNV
BAMTKEM0OTM1OUFDRDVBNUQ4MzBDREFCNEY2OTQyQTlDMDhFNzkwMjhGNDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4I2vzOMF7zAvVNh6+iKKGcN0Q
BPQFEarhf4/T7L3UYoU+DJ0Ltlcb+5rItyajqYJqVLmxeZ9smWe7O0F03BUCCDKg
g5GWDBBmCMWAjEaIanRfc2t50YShgUUmi9spC/ohGVAs73mwbEMAomM3Q3HrJJWS
HZdpBj40h8+1Ir6St7yFa+z+nZhTeV3pmwK45gMXpz5k66jtbHPUubxq592ONZVN
CRijtgn2KrFTW+3dYFpoFuXjDCyh2X+gLN6JpeOVNJ16jJxKt5pxPZ8cxQ1hXUUc
ULJPO3xYoLoa9OTgMec+iP2iHNiR+kXi6+NY4IS7M4Womco60SwJXamT/3k3AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUxJNZrNWl2DDNq09pQqnAjnkCj0MwHwYDVR0j
BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3
MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy
RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i
NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMxMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8VMA0GCSqG
SIb3DQEBCwUAA4IBAQBGF4aMOmR7payfkHywSwMt7nJ19jVA9FjJLNKoKmMtKbEN
/33FdTRNAZbC3leI7MPjFmaR4gVOByHO9BATGn33woRCEqctkGtvKPkVtuvJWkcg
rmhKc1odGjFkqxNGxSHZ6iSwXbJ6oH1qziTAMP+xemo0nGEqQ4PTAWf5jCeGeDip
Kw0W/ZExKE9GpBBaAw4TUgN6Iraqk9+WSRv9coBhbnGkHlRW2zF40Y7sFT/fCcmr
vzt1LhZ9pch9wRgrrBPcI5ssKUFSkue7SqzO4XrFJVZuLFnzH0ltSaHb+01JIm//
K5joIBpIK/MSg4R5LUHG1WdUaKcTJrTZNZMdylp5
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:00 2025 by rpki-client