Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa
File: 3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa (raw, json)
Hash identifier: Ue24uXPwQGc54JNB/telr39Lz7e1QRjzsLYAEfr9eLA=
Subject key identifier: A5:D9:2B:F9:F8:43:53:F4:24:55:2D:7B:DF:B5:F8:C1:43:99:A3:AB
Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Certificate serial: 20252F7C4CD1D2AA373BD59B4B3B6E2C1813D0ED
Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa
Signing time: Tue 28 Jan 2025 10:00:01 +0000
ROA not before: Tue 28 Jan 2025 09:55:01 +0000
ROA not after: Tue 27 Jan 2026 10:00:01 +0000
asID: 136854
IP address blocks: 103.102.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:25:2f:7c:4c:d1:d2:aa:37:3b:d5:9b:4b:3b:6e:2c:18:13:d0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Validity
Not Before: Jan 28 09:55:01 2025 GMT
Not After : Jan 27 10:00:01 2026 GMT
Subject: CN=A5D92BF9F84353F424552D7BDFB5F8C14399A3AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8f:ca:e1:72:10:0e:05:c7:10:9e:d0:24:48:
df:5c:e5:02:07:ed:1e:f7:61:67:a0:54:a4:9a:87:
ab:9b:f9:6b:be:08:cd:f3:9a:04:e9:e4:98:b9:d4:
3b:89:08:46:04:ca:fc:04:fe:bd:03:4f:65:98:09:
8c:72:37:53:72:1b:29:6e:b1:69:eb:3f:ef:5b:be:
3b:bd:a6:c9:df:36:dc:eb:39:ee:7f:a3:f0:48:30:
fb:db:47:30:7b:ec:89:36:59:84:78:35:c8:5a:84:
e3:8e:79:50:ad:c3:d5:c2:05:99:1c:8d:f6:2b:fd:
e6:de:72:8a:28:53:98:af:98:34:41:34:73:ff:3d:
0e:bc:94:6a:a7:2f:96:9c:4c:17:d5:82:8b:06:15:
d9:63:3d:01:a7:c9:54:9a:8e:67:4d:be:ea:7b:6d:
a3:ad:49:80:4a:fc:0a:18:a8:f9:01:e1:7e:d7:44:
8a:9e:d9:0f:d6:92:22:7c:88:79:eb:51:4f:3f:cb:
25:80:26:38:65:fc:ca:23:b2:76:29:7b:10:c4:62:
d1:e4:02:d7:14:c8:57:be:75:1e:92:bb:17:cf:61:
ce:9c:5c:9c:d8:0e:44:3b:44:27:aa:94:eb:a6:38:
85:ed:f0:06:85:11:d7:92:2c:70:f0:a0:8c:ce:83:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D9:2B:F9:F8:43:53:F4:24:55:2D:7B:DF:B5:F8:C1:43:99:A3:AB
X509v3 Authority Key Identifier:
keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134332e302f32342d3234203d3e20313336383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.143.0/24
Signature Algorithm: sha256WithRSAEncryption
18:de:91:fe:2f:3a:07:00:f4:e6:b7:5f:33:41:33:f1:66:c5:
a1:4c:6e:ee:3e:98:d1:cc:fd:d0:2a:2f:14:9e:cb:71:b5:98:
fd:4d:e4:6d:b5:1b:9f:f8:f1:ed:90:b9:bc:86:da:62:e5:40:
fa:e7:54:e2:37:4e:e0:c3:bf:c4:0b:b9:3f:1b:a0:72:f8:e5:
59:d4:63:18:ca:15:f6:fe:3d:9c:ce:04:46:62:ff:83:26:7e:
11:8f:b5:ae:0f:86:60:2d:af:13:74:36:0a:53:ed:bd:5a:59:
34:02:44:19:d0:f1:bc:e1:0b:c7:a5:fb:be:13:d2:0f:3d:45:
c8:5b:ff:f5:9b:13:e0:72:c9:f2:ce:0b:32:18:70:54:98:68:
d6:6e:f3:93:b8:59:4e:72:cd:3b:f5:42:55:a4:24:65:2d:89:
78:8e:f0:e3:9b:d7:64:39:90:83:0d:0e:45:ca:af:5e:82:68:
14:17:88:a7:59:3a:6d:15:0d:0e:bb:19:53:7a:a3:e3:73:b7:
f5:98:89:e2:2d:ec:4c:76:47:77:86:dc:dd:d8:22:68:60:98:
f4:e8:b4:85:e6:5c:44:31:31:27:61:1e:0e:52:c9:07:42:51:
85:96:ab:38:0a:cf:e4:9e:48:ef:9f:ee:f6:d2:dd:69:21:4c:
92:a5:cf:b5
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUICUvfEzR0qo3O9WbSztuLBgT0O0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdB
RjUwRDc1NDAeFw0yNTAxMjgwOTU1MDFaFw0yNjAxMjcxMDAwMDFaMDMxMTAvBgNV
BAMTKEE1RDkyQkY5Rjg0MzUzRjQyNDU1MkQ3QkRGQjVGOEMxNDM5OUEzQUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcj8rhchAOBccQntAkSN9c5QIH
7R73YWegVKSah6ub+Wu+CM3zmgTp5Ji51DuJCEYEyvwE/r0DT2WYCYxyN1NyGylu
sWnrP+9bvju9psnfNtzrOe5/o/BIMPvbRzB77Ik2WYR4NchahOOOeVCtw9XCBZkc
jfYr/ebecoooU5ivmDRBNHP/PQ68lGqnL5acTBfVgosGFdljPQGnyVSajmdNvup7
baOtSYBK/AoYqPkB4X7XRIqe2Q/WkiJ8iHnrUU8/yyWAJjhl/MojsnYpexDEYtHk
AtcUyFe+dR6SuxfPYc6cXJzYDkQ7RCeqlOumOIXt8AaFEdeSLHDwoIzOg+TvAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUpdkr+fhDU/QkVS1737X4wUOZo6swHwYDVR0j
BBgwFoAUHWABpPRlSLN+2HHKXPCI969Q11QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
NTYzMmQ5OS0zMmIyLTQ2N2ItYjdmZS0wZDI1Zjg1M2JmYTYvMC8xRDYwMDFBNEY0
NjU0OEIzN0VEODcxQ0E1Q0YwODhGN0FGNTBENzU0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdBRjUw
RDc1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NjMyZDk5LTMyYjItNDY3Yi1i
N2ZlLTBkMjVmODUzYmZhNi8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZo8wDQYJ
KoZIhvcNAQELBQADggEBABjekf4vOgcA9Oa3XzNBM/FmxaFMbu4+mNHM/dAqLxSe
y3G1mP1N5G21G5/48e2QubyG2mLlQPrnVOI3TuDDv8QLuT8boHL45VnUYxjKFfb+
PZzOBEZi/4MmfhGPta4PhmAtrxN0NgpT7b1aWTQCRBnQ8bzhC8el+74T0g89Rchb
//WbE+ByyfLOCzIYcFSYaNZu85O4WU5yzTv1QlWkJGUtiXiO8OOb12Q5kIMNDkXK
r16CaBQXiKdZOm0VDQ67GVN6o+Nzt/WYieIt7Ex2R3eG3N3YImhgmPTotIXmXEQx
MSdhHg5SyQdCUYWWqzgKz+SeSO+f7vbS3WkhTJKlz7U=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:43:45 2025 by rpki-client