Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa
File: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (raw, json)
Hash identifier: DyXpABTcR6ftxeuG5nYBymh2ADbl6y3AQYTkphqzjyw=
Subject key identifier: E5:E7:32:3C:87:98:84:A8:5D:59:17:BF:24:6D:89:4F:2C:20:0C:99
Certificate issuer: /CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B
Certificate serial: 6A40E0105CCDF72FB5AF98D35D47A070BA9A2965
Authority key identifier: 5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa
Signing time: Tue 07 May 2024 10:00:02 +0000
ROA not before: Tue 07 May 2024 09:55:02 +0000
ROA not after: Tue 06 May 2025 10:00:02 +0000
asID: 149675
IP address blocks: 103.184.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:40:e0:10:5c:cd:f7:2f:b5:af:98:d3:5d:47:a0:70:ba:9a:29:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B
Validity
Not Before: May 7 09:55:02 2024 GMT
Not After : May 6 10:00:02 2025 GMT
Subject: CN=E5E7323C879884A85D5917BF246D894F2C200C99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ff:e7:e5:25:a5:f8:7c:4e:21:b0:42:a6:86:
90:ad:62:57:9a:10:5d:f2:dc:10:5e:5f:09:65:bb:
7e:f7:bf:cf:cb:68:1f:0b:72:6a:c9:39:45:6a:49:
13:91:44:5a:dd:91:02:61:b9:d1:b9:59:64:66:e7:
5b:10:ba:83:21:f4:bb:fa:20:28:31:cf:30:a1:c0:
86:f4:b6:c6:0c:e6:67:e4:36:55:6b:07:e6:41:61:
1e:62:bd:e9:68:aa:db:78:72:47:24:d8:00:69:3f:
e5:4b:3a:be:ef:cc:f1:1d:cf:ca:d3:ce:f2:94:08:
77:25:a0:c8:3b:80:23:74:74:ea:16:1f:28:cb:a5:
67:ea:2a:47:27:b1:82:97:99:6f:c9:a4:78:ec:ed:
34:fa:bb:c1:ec:0b:5a:de:86:3d:5f:c4:84:cb:cc:
2d:79:1e:50:6d:33:36:7a:d1:b5:5d:cb:7c:3a:17:
16:2b:26:9b:7a:57:9a:5b:86:e2:a3:f2:47:05:91:
4d:c0:e1:29:98:4b:a3:16:8e:ed:29:0a:27:27:4f:
58:cb:75:78:4b:c6:29:00:b2:0c:89:fd:d1:83:e3:
c3:56:fb:d2:16:29:a3:02:72:be:cb:59:05:58:19:
12:4c:82:41:cb:9e:e0:80:09:d1:ea:81:e2:72:b7:
e0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E7:32:3C:87:98:84:A8:5D:59:17:BF:24:6D:89:4F:2C:20:0C:99
X509v3 Authority Key Identifier:
keyid:5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.18.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:45:16:2b:ca:a5:26:5a:3a:e8:87:d9:d3:e1:29:bf:4c:ab:
1b:ad:5a:c7:88:11:f3:4e:3b:78:88:6f:14:7a:3d:95:fe:3f:
ac:ca:86:42:11:6f:72:6b:2c:35:10:3d:8e:49:90:5a:3a:af:
f6:e2:28:5f:c1:cb:b7:6f:a2:d9:65:19:15:af:a8:66:8f:a3:
44:eb:0b:40:e2:da:be:a7:1a:7f:54:c9:b6:1b:2f:ce:5f:4f:
df:10:1b:23:0a:16:09:26:ab:50:01:d5:7b:77:34:95:4a:65:
8a:97:dc:11:ec:41:7a:ee:9d:45:87:3b:0c:53:06:98:6e:13:
d4:1e:07:24:3c:a1:95:6e:72:a4:05:84:37:e7:46:2d:c9:91:
36:15:8f:40:c0:24:57:36:d0:f0:ed:22:ae:e7:53:58:02:8d:
25:ca:f3:6e:07:2f:1f:f1:cd:3e:6f:e5:64:5a:08:a9:82:83:
c9:e4:23:e9:ba:e0:8b:01:2e:ee:38:17:5f:48:ca:70:13:df:
73:3e:9a:cc:0d:5f:8b:f9:87:c4:be:44:d9:c7:34:e6:bc:c6:
86:85:4c:8f:ce:5b:93:9e:d8:69:d0:2a:80:13:16:b1:c6:67:
fc:a0:55:d6:e6:c8:3d:ae:48:45:35:de:96:d7:87:fc:9e:cc:
3e:36:18:68
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUakDgEFzN9y+1r5jTXUegcLqaKWUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5
MDg5NTUyQjAeFw0yNDA1MDcwOTU1MDJaFw0yNTA1MDYxMDAwMDJaMDMxMTAvBgNV
BAMTKEU1RTczMjNDODc5ODg0QTg1RDU5MTdCRjI0NkQ4OTRGMkMyMDBDOTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa/+flJaX4fE4hsEKmhpCtYlea
EF3y3BBeXwllu373v8/LaB8LcmrJOUVqSRORRFrdkQJhudG5WWRm51sQuoMh9Lv6
ICgxzzChwIb0tsYM5mfkNlVrB+ZBYR5iveloqtt4ckck2ABpP+VLOr7vzPEdz8rT
zvKUCHcloMg7gCN0dOoWHyjLpWfqKkcnsYKXmW/JpHjs7TT6u8HsC1rehj1fxITL
zC15HlBtMzZ60bVdy3w6FxYrJpt6V5pbhuKj8kcFkU3A4SmYS6MWju0pCicnT1jL
dXhLxikAsgyJ/dGD48NW+9IWKaMCcr7LWQVYGRJMgkHLnuCACdHqgeJyt+CNAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU5ecyPIeYhKhdWRe/JG2JTywgDJkwHwYDVR0j
BBgwFoAUWkD9GeLdU4DLblAvFtsiL5CJVSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MGQ5MTRlZi0wYjFmLTQ5MGItODA4ZC1hMjdiODNmZjlhM2UvMC81QTQwRkQxOUUy
REQ1MzgwQ0I2RTUwMkYxNkRCMjIyRjkwODk1NTJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5MDg5
NTUyQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwZDkxNGVmLTBiMWYtNDkwYi04
MDhkLWEyN2I4M2ZmOWEzZS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gSMA0GCSqG
SIb3DQEBCwUAA4IBAQBrRRYryqUmWjroh9nT4Sm/TKsbrVrHiBHzTjt4iG8Uej2V
/j+syoZCEW9yayw1ED2OSZBaOq/24ihfwcu3b6LZZRkVr6hmj6NE6wtA4tq+pxp/
VMm2Gy/OX0/fEBsjChYJJqtQAdV7dzSVSmWKl9wR7EF67p1FhzsMUwaYbhPUHgck
PKGVbnKkBYQ350YtyZE2FY9AwCRXNtDw7SKu51NYAo0lyvNuBy8f8c0+b+VkWgip
goPJ5CPpuuCLAS7uOBdfSMpwE99zPprMDV+L+YfEvkTZxzTmvMaGhUyPzluTnthp
0CqAExaxxmf8oFXW5sg9rkhFNd6W14f8nsw+Nhho
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:21:49 2025 by rpki-client