Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa
File: 3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: JYMDp6E4TEckql4p/4GjSNO2rr/124noQyLp4F0BuMo=
Subject key identifier: 3C:FE:47:19:94:C7:FA:B4:B0:1A:74:B1:C5:E2:7E:F1:AF:49:F2:3F
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 6E4AF692A8ABAB12E5CEF4BB57DC962596D898B4
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:46 +0000
ROA not before: Sat 21 Dec 2024 17:55:46 +0000
ROA not after: Sat 20 Dec 2025 18:00:46 +0000
asID: 149746
IP address blocks: 103.255.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:4a:f6:92:a8:ab:ab:12:e5:ce:f4:bb:57:dc:96:25:96:d8:98:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:46 2024 GMT
Not After : Dec 20 18:00:46 2025 GMT
Subject: CN=3CFE471994C7FAB4B01A74B1C5E27EF1AF49F23F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ef:ac:d4:a6:ff:3e:df:e7:f2:02:23:cd:40:
73:78:c2:49:57:f9:9f:c5:a6:19:e2:e6:7d:18:48:
e4:8d:ab:78:50:3c:f7:28:b1:3b:93:98:6d:e9:30:
b0:43:1a:3f:3e:91:ab:fe:cd:be:22:b9:d0:92:12:
3f:e5:45:ef:a9:4f:4a:42:cd:71:69:7a:02:e7:3b:
ce:c7:b0:98:57:33:b3:27:83:6f:2d:49:16:a1:61:
5c:b8:d0:d7:a4:1a:9e:ba:0d:f9:40:f4:f5:85:9d:
f4:08:e9:f4:7b:6f:ca:56:f9:4f:9e:1f:e6:e8:f7:
6d:65:e6:b5:67:fd:a8:f2:97:05:a1:26:2e:59:60:
79:d4:a1:9b:fa:dc:0d:a1:53:25:ae:8a:a9:59:11:
54:5e:be:f0:fb:08:0e:44:ab:87:37:02:93:17:57:
94:27:9a:aa:f7:91:07:bd:e5:c7:09:3c:4e:51:12:
d4:3d:13:89:4a:92:c0:9f:58:9a:83:68:52:40:c6:
dd:da:03:a4:1f:ab:61:77:2f:ad:93:de:c5:fe:4c:
6e:c4:d9:52:18:0c:b2:43:76:cb:62:c5:e9:8a:40:
8f:0f:30:54:18:10:35:52:02:7a:0a:e0:a4:eb:7e:
c2:e7:8c:5d:ac:9f:a2:a1:8a:81:3e:4a:c2:b8:1c:
2e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FE:47:19:94:C7:FA:B4:B0:1A:74:B1:C5:E2:7E:F1:AF:49:F2:3F
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.255.242.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0d:94:db:bd:9b:72:f9:9e:6e:05:1c:0b:03:de:93:41:f9:
8f:a1:f8:df:65:ac:2c:c7:5b:1d:df:5e:e0:a0:e0:09:c7:1b:
ef:e4:79:5a:88:35:4a:2f:bb:f6:9d:11:b0:fa:9e:d7:be:a6:
f2:e7:3a:2a:8a:37:83:47:94:a9:54:90:95:d0:e2:21:1e:96:
4c:ee:a1:04:4e:55:b6:85:3f:f3:4e:2a:00:5a:a1:97:8b:4d:
b0:8c:cc:c2:af:72:e6:47:ed:53:06:73:b8:ee:ec:88:6c:8c:
2b:b4:25:63:3b:5a:f8:cf:89:88:5e:21:71:57:a4:f8:a4:e9:
f7:01:1e:78:ee:4e:ee:d2:c1:34:66:e4:66:f0:31:3e:a1:e0:
b0:4f:27:9f:ac:c7:96:25:9e:de:0f:0d:e7:9c:c3:96:c0:ea:
3e:72:6e:07:95:97:2a:85:44:3c:55:44:b6:a4:0a:db:91:3d:
a2:f5:10:61:c4:9b:3f:bd:77:ae:1d:d2:0d:1a:b1:b7:32:e1:
5f:1d:a7:97:7a:55:3a:64:fd:d4:0b:6d:6c:8e:91:29:4d:b3:
68:62:e6:9b:fc:8b:f0:6e:af:8e:50:fa:14:22:d3:44:22:0d:
09:c6:07:32:d1:ad:3d:f7:ec:3e:1d:b8:dc:71:41:75:4d:47:
12:26:07:37
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUbkr2kqirqxLlzvS7V9yWJZbYmLQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE
NTU3Qzk1MzAeFw0yNDEyMjExNzU1NDZaFw0yNTEyMjAxODAwNDZaMDMxMTAvBgNV
BAMTKDNDRkU0NzE5OTRDN0ZBQjRCMDFBNzRCMUM1RTI3RUYxQUY0OUYyM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC776zUpv8+3+fyAiPNQHN4wklX
+Z/Fphni5n0YSOSNq3hQPPcosTuTmG3pMLBDGj8+kav+zb4iudCSEj/lRe+pT0pC
zXFpegLnO87HsJhXM7Mng28tSRahYVy40NekGp66DflA9PWFnfQI6fR7b8pW+U+e
H+bo921l5rVn/ajylwWhJi5ZYHnUoZv63A2hUyWuiqlZEVRevvD7CA5Eq4c3ApMX
V5Qnmqr3kQe95ccJPE5REtQ9E4lKksCfWJqDaFJAxt3aA6Qfq2F3L62T3sX+TG7E
2VIYDLJDdstixemKQI8PMFQYEDVSAnoK4KTrfsLnjF2sn6KhioE+SsK4HC65AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUPP5HGZTH+rSwGnSxxeJ+8a9J8j8wHwYDVR0j
BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG
MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3
Qzk1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04
MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNTM1MmUzMjM0MzIyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn//IwDQYJ
KoZIhvcNAQELBQADggEBAFANlNu9m3L5nm4FHAsD3pNB+Y+h+N9lrCzHWx3fXuCg
4AnHG+/keVqINUovu/adEbD6nte+pvLnOiqKN4NHlKlUkJXQ4iEelkzuoQROVbaF
P/NOKgBaoZeLTbCMzMKvcuZH7VMGc7ju7IhsjCu0JWM7WvjPiYheIXFXpPik6fcB
HnjuTu7SwTRm5GbwMT6h4LBPJ5+sx5Ylnt4PDeecw5bA6j5ybgeVlyqFRDxVRLak
CtuRPaL1EGHEmz+9d64d0g0asbcy4V8dp5d6VTpk/dQLbWyOkSlNs2hi5pv8i/Bu
r45Q+hQi00QiDQnGBzLRrT337D4duNxxQXVNRxImBzc=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:43:14 2025 by rpki-client