Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa
File: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (raw, json)
Hash identifier: bGhluMXBlQ6D58wwD+73zV+Z0ql197un24tcoC8iLHI=
Subject key identifier: B3:CD:60:F1:A9:2F:2E:56:95:3F:18:BD:50:2D:5E:66:49:42:DB:45
Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9
Certificate serial: 2EF7E7306EE844B4C4BA6B9EACF1E15FBCFFEC26
Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa
Signing time: Mon 01 Jul 2024 01:05:06 +0000
ROA not before: Mon 01 Jul 2024 01:00:06 +0000
ROA not after: Mon 30 Jun 2025 01:05:06 +0000
asID: 17538
IP address blocks: 103.151.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f7:e7:30:6e:e8:44:b4:c4:ba:6b:9e:ac:f1:e1:5f:bc:ff:ec:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9
Validity
Not Before: Jul 1 01:00:06 2024 GMT
Not After : Jun 30 01:05:06 2025 GMT
Subject: CN=B3CD60F1A92F2E56953F18BD502D5E664942DB45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:04:e3:39:15:28:47:aa:15:a2:08:0d:92:73:
39:2a:76:dc:5d:6c:2f:d2:52:60:54:86:e4:e8:8c:
35:b4:78:ab:5e:ad:ba:bb:bf:6b:b2:20:92:ac:6b:
64:63:5c:ef:b7:3d:9e:d8:e4:b2:f6:23:ae:bc:a5:
b4:fd:fb:51:85:59:74:0d:fa:60:57:3d:4e:a8:6b:
b6:1c:f0:44:2e:44:30:ee:3b:4d:3b:b9:97:96:c3:
cb:81:ef:4b:e2:8d:56:25:ef:89:11:a1:24:95:31:
64:0f:c2:d7:82:f5:06:68:9d:10:a8:7e:5b:0e:b7:
ca:fa:70:04:61:9c:1e:a3:71:1f:46:6e:fa:b1:88:
81:ad:7a:5d:08:97:b3:b4:de:c4:d5:67:b1:01:08:
c9:b1:f7:1c:01:c6:c3:07:36:1a:18:34:e9:6d:b4:
42:d7:ed:ab:ed:56:29:b8:46:09:9f:16:69:85:36:
64:7f:a2:70:b3:7a:d1:8c:46:1f:01:39:0c:33:e5:
b5:ba:50:ac:73:e4:3a:e1:f7:99:b8:dc:cf:9f:86:
f5:1c:91:9d:d6:6a:7a:91:af:50:c3:11:be:5b:a1:
de:41:4e:e7:49:86:24:35:9a:51:bf:ec:6c:1d:8c:
22:e6:1f:c0:a4:7b:f5:db:83:d7:9b:0e:2e:78:20:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CD:60:F1:A9:2F:2E:56:95:3F:18:BD:50:2D:5E:66:49:42:DB:45
X509v3 Authority Key Identifier:
keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.95.0/24
Signature Algorithm: sha256WithRSAEncryption
98:35:1e:45:9f:34:5f:34:bb:ec:61:ae:14:e8:5c:38:8a:9c:
55:21:1a:fd:f2:7f:af:59:4b:67:3e:22:1f:0f:69:9f:fe:af:
6b:fd:83:51:56:e9:f6:65:8d:36:94:05:63:19:27:a8:d6:d1:
6c:d1:43:41:74:f0:37:a7:c0:0b:21:a5:00:4a:de:b9:7d:0b:
d9:0b:2a:36:13:9d:8a:61:97:ae:09:33:fb:ec:9b:9e:f9:b1:
17:85:f0:1d:76:ae:f2:24:7b:86:30:0e:e0:da:01:0a:cd:07:
6a:7c:93:85:bd:b3:7f:e6:13:a4:58:a7:1f:cd:21:cd:74:be:
95:93:1b:1a:16:75:a6:6a:fc:39:95:65:55:48:72:1c:0d:df:
c8:12:be:85:af:ac:cd:5e:55:07:d4:21:c1:fe:be:fe:2b:7f:
fa:0c:99:df:80:1d:37:01:b8:37:d6:ca:78:09:42:2c:2f:81:
6b:b4:e4:a5:9f:e7:82:4a:6e:54:c5:3a:de:02:76:77:ec:02:
55:bd:36:9c:77:77:db:cd:db:a0:e9:59:0b:39:c1:fe:36:19:
78:bb:79:9e:f1:00:ee:e6:b6:4e:a9:9c:f7:75:b5:e8:16:c4:
a8:9a:f9:f8:8e:c1:b7:73:15:4a:42:29:3c:61:3f:54:bf:3f:
a0:4a:6f:4b
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIULvfnMG7oRLTEumuerPHhX7z/7CYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz
OTRCQThFOTAeFw0yNDA3MDEwMTAwMDZaFw0yNTA2MzAwMTA1MDZaMDMxMTAvBgNV
BAMTKEIzQ0Q2MEYxQTkyRjJFNTY5NTNGMThCRDUwMkQ1RTY2NDk0MkRCNDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgBOM5FShHqhWiCA2Sczkqdtxd
bC/SUmBUhuTojDW0eKterbq7v2uyIJKsa2RjXO+3PZ7Y5LL2I668pbT9+1GFWXQN
+mBXPU6oa7Yc8EQuRDDuO007uZeWw8uB70vijVYl74kRoSSVMWQPwteC9QZonRCo
flsOt8r6cARhnB6jcR9GbvqxiIGtel0Il7O03sTVZ7EBCMmx9xwBxsMHNhoYNOlt
tELX7avtVim4RgmfFmmFNmR/onCzetGMRh8BOQwz5bW6UKxz5Drh95m43M+fhvUc
kZ3WanqRr1DDEb5bod5BTudJhiQ1mlG/7GwdjCLmH8Cke/Xbg9ebDi54IN4BAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUs81g8akvLlaVPxi9UC1eZklC20UwHwYDVR0j
BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx
MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC
QThFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04
ZmFjLTE4NThiMjgyM2QxYy8wLzMxMzAzMzJlMzEzNTMxMmUzOTM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXXzANBgkqhkiG
9w0BAQsFAAOCAQEAmDUeRZ80XzS77GGuFOhcOIqcVSEa/fJ/r1lLZz4iHw9pn/6v
a/2DUVbp9mWNNpQFYxknqNbRbNFDQXTwN6fACyGlAEreuX0L2QsqNhOdimGXrgkz
++ybnvmxF4XwHXau8iR7hjAO4NoBCs0HanyThb2zf+YTpFinH80hzXS+lZMbGhZ1
pmr8OZVlVUhyHA3fyBK+ha+szV5VB9Qhwf6+/it/+gyZ34AdNwG4N9bKeAlCLC+B
a7TkpZ/ngkpuVMU63gJ2d+wCVb02nHd3283boOlZCznB/jYZeLt5nvEA7ua2Tqmc
93W16BbEqJr5+I7Bt3MVSkIpPGE/VL8/oEpvSw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:18:25 2025 by rpki-client