Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa
File: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (raw, json)
Hash identifier: KC/48KyBK866tyRqnFAk104o6NtYIjI9BYH4NY1WGf4=
Subject key identifier: D7:3A:8C:05:46:94:08:CF:93:20:0E:65:6D:25:85:CC:4F:FD:2D:6F
Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD
Certificate serial: 19CC5AD78797F7F5780750BAFB5EC9FFD2BB3CC5
Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa
Signing time: Wed 07 Aug 2024 05:00:45 +0000
ROA not before: Wed 07 Aug 2024 04:55:45 +0000
ROA not after: Wed 06 Aug 2025 05:00:45 +0000
asID: 59278
IP address blocks: 103.58.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:cc:5a:d7:87:97:f7:f5:78:07:50:ba:fb:5e:c9:ff:d2:bb:3c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD
Validity
Not Before: Aug 7 04:55:45 2024 GMT
Not After : Aug 6 05:00:45 2025 GMT
Subject: CN=D73A8C05469408CF93200E656D2585CC4FFD2D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5e:46:65:6f:0c:28:55:a0:ab:de:c8:78:72:
b5:bb:ef:50:a6:fe:32:2b:ae:08:2b:7d:c1:1e:d3:
42:9b:50:67:d9:f4:1f:7a:e3:27:80:7c:10:36:71:
a1:86:74:8e:f8:db:98:73:75:c5:77:2a:04:b4:5c:
7e:fa:b8:9b:75:11:5a:74:78:d8:dd:cf:50:f9:7f:
58:ce:cb:9c:79:d7:4a:7f:52:bb:bc:9c:d8:ab:93:
7a:12:6d:f3:5e:86:14:a7:6d:bf:93:5a:1c:d6:b1:
ef:57:aa:aa:10:4d:49:1d:7b:51:fb:a2:f5:9d:84:
d5:97:1c:51:55:d2:aa:a6:ff:87:2b:53:15:1e:71:
68:71:d5:1c:4f:98:e7:98:07:3c:40:cf:08:83:16:
35:94:4d:44:f1:b2:ee:59:b7:02:62:2f:dc:53:ca:
d2:26:39:ad:79:77:99:a1:04:71:7a:8c:54:57:8c:
3e:d4:df:3a:04:26:9b:64:a4:9d:4f:5a:43:6c:1d:
fe:ec:3e:b2:0c:37:0d:e7:74:77:41:ab:9b:22:4f:
47:7d:5d:49:70:f3:23:b2:92:63:fa:f3:a5:23:a1:
d4:29:22:4a:e8:64:35:58:1b:e1:e8:fa:d8:69:1c:
36:ab:cc:6d:57:60:f8:58:9e:60:7e:aa:d3:73:f9:
76:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3A:8C:05:46:94:08:CF:93:20:0E:65:6D:25:85:CC:4F:FD:2D:6F
X509v3 Authority Key Identifier:
keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/3130332e35382e3136302e302f32322d3234203d3e203539323738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.58.160.0/22
Signature Algorithm: sha256WithRSAEncryption
55:73:81:0e:1b:78:96:af:b8:e4:8a:3b:bb:f1:13:89:44:d2:
f0:82:71:6b:4b:d4:6e:fa:b4:25:38:98:f9:73:c7:a5:c1:cd:
6e:79:6d:51:77:ba:f2:aa:6a:7a:f5:76:62:b6:0e:3b:1f:bf:
f4:88:35:62:71:6e:c9:10:e7:e9:74:d3:f4:d7:94:7f:9f:fd:
df:7e:6e:03:0c:a8:f8:e8:55:2e:cb:b1:00:cf:4e:b4:cc:86:
bf:8e:3c:4c:85:52:d5:21:12:da:c6:2f:77:0e:df:93:7e:fc:
0f:9c:d7:8f:d7:d1:d1:e0:1d:b8:2e:95:fb:ea:ee:49:97:41:
b5:b2:b6:f2:e7:93:b2:52:bf:60:1a:d0:89:7d:42:18:1b:68:
66:36:65:d1:e9:15:a7:ff:4c:e8:81:81:84:42:24:8c:b4:33:
1c:d0:f2:52:32:58:63:e2:fa:09:a7:f2:9c:ad:bc:4c:bd:e1:
2a:41:68:c9:70:0b:d8:ad:24:f7:47:f0:f9:79:c7:22:ea:44:
d5:64:f6:46:a7:1e:ea:4b:8e:de:b0:0f:a4:47:b5:24:31:25:
72:4b:34:db:7a:81:9c:ef:7e:7b:db:39:c2:12:22:d7:f2:65:
6f:5b:67:3f:7f:28:c1:4c:d7:f6:4b:a9:e7:0e:9d:6a:47:81:
2a:cd:ed:cb
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUGcxa14eX9/V4B1C6+17J/9K7PMUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE
RDc4QzVCRDAeFw0yNDA4MDcwNDU1NDVaFw0yNTA4MDYwNTAwNDVaMDMxMTAvBgNV
BAMTKEQ3M0E4QzA1NDY5NDA4Q0Y5MzIwMEU2NTZEMjU4NUNDNEZGRDJENkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaXkZlbwwoVaCr3sh4crW771Cm
/jIrrggrfcEe00KbUGfZ9B964yeAfBA2caGGdI7425hzdcV3KgS0XH76uJt1EVp0
eNjdz1D5f1jOy5x510p/Uru8nNirk3oSbfNehhSnbb+TWhzWse9XqqoQTUkde1H7
ovWdhNWXHFFV0qqm/4crUxUecWhx1RxPmOeYBzxAzwiDFjWUTUTxsu5ZtwJiL9xT
ytImOa15d5mhBHF6jFRXjD7U3zoEJptkpJ1PWkNsHf7sPrIMNw3ndHdBq5siT0d9
XUlw8yOykmP686UjodQpIkroZDVYG+Ho+thpHDarzG1XYPhYnmB+qtNz+XZNAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU1zqMBUaUCM+TIA5lbSWFzE/9LW8wHwYDVR0j
BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz
REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4
QzVCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05
ZTA4LTBiMjkwMGRhNjk0OS8wLzMxMzAzMzJlMzUzODJlMzEzNjMwMmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc6oDANBgkqhkiG
9w0BAQsFAAOCAQEAVXOBDht4lq+45Io7u/ETiUTS8IJxa0vUbvq0JTiY+XPHpcHN
bnltUXe68qpqevV2YrYOOx+/9Ig1YnFuyRDn6XTT9NeUf5/9335uAwyo+OhVLsux
AM9OtMyGv448TIVS1SES2sYvdw7fk378D5zXj9fR0eAduC6V++ruSZdBtbK28ueT
slK/YBrQiX1CGBtoZjZl0ekVp/9M6IGBhEIkjLQzHNDyUjJYY+L6CafynK28TL3h
KkFoyXAL2K0k90fw+XnHIupE1WT2Rqce6kuO3rAPpEe1JDElcks023qBnO9+e9s5
whIi1/Jlb1tnP38owUzX9kup5w6dakeBKs3tyw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:52:43 2025 by rpki-client