Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e312e302f32342d3234203d3e20313335343435.roa
File: 3130332e3232332e312e302f32342d3234203d3e20313335343435.roa (raw, json)
Hash identifier: Meqto9gp7Tw3/wVHdB4HIOhRI0iUBfsDLYkbvujxqHk=
Subject key identifier: 1F:18:4E:19:0D:3B:FF:BA:28:2A:06:B9:99:B0:56:79:C4:B0:A3:AC
Certificate issuer: /CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B
Certificate serial: 097BADA112F68C8EE360CB1CB0B7F30E9ECCC713
Authority key identifier: 6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e312e302f32342d3234203d3e20313335343435.roa
Signing time: Wed 26 Feb 2025 17:00:03 +0000
ROA not before: Wed 26 Feb 2025 16:55:03 +0000
ROA not after: Wed 25 Feb 2026 17:00:03 +0000
asID: 135445
IP address blocks: 103.223.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:7b:ad:a1:12:f6:8c:8e:e3:60:cb:1c:b0:b7:f3:0e:9e:cc:c7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B
Validity
Not Before: Feb 26 16:55:03 2025 GMT
Not After : Feb 25 17:00:03 2026 GMT
Subject: CN=1F184E190D3BFFBA282A06B999B05679C4B0A3AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6c:b1:3c:58:a1:eb:7b:b0:b6:7b:93:b2:45:
f7:2a:2a:39:dd:75:86:95:b9:00:52:f2:7e:4f:f4:
da:eb:29:2a:ee:db:3b:a0:36:a4:71:87:d4:c9:5c:
6d:00:f9:23:81:65:34:8b:23:6c:f4:da:8e:6d:0d:
43:3c:13:79:ca:c4:b5:5c:2e:c4:6d:6e:8f:e6:3a:
da:f6:63:60:2d:2b:4d:43:2e:41:76:1b:e6:ff:c2:
11:21:ff:a7:09:73:74:bc:cc:21:03:2b:5d:59:6e:
9a:85:14:fa:1e:d1:2a:3c:8f:de:5b:13:d6:9a:83:
19:e1:fe:0b:45:97:4d:31:dd:47:48:4c:46:87:9c:
2a:08:18:81:e8:86:7d:9d:49:52:4f:ed:d8:9f:48:
63:db:14:c1:34:e2:f9:b6:21:76:51:d1:06:5b:b7:
55:7e:b5:e7:ee:c3:eb:08:d5:3e:b8:01:cc:4e:74:
07:45:da:5a:25:56:23:26:5f:5a:f8:1d:01:90:5c:
8d:9b:2e:6f:52:22:22:35:2c:4f:e1:a2:6e:40:7d:
22:7c:06:56:27:e1:1f:a0:a7:61:21:19:ca:ed:b0:
33:e4:70:e7:f1:ac:ee:e0:b8:9d:bf:8d:42:34:e8:
f5:d7:08:73:dc:d0:17:53:09:b9:48:36:31:26:c6:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:18:4E:19:0D:3B:FF:BA:28:2A:06:B9:99:B0:56:79:C4:B0:A3:AC
X509v3 Authority Key Identifier:
keyid:6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e312e302f32342d3234203d3e20313335343435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.223.1.0/24
Signature Algorithm: sha256WithRSAEncryption
18:cd:3b:9f:fb:db:28:73:19:44:97:c9:d7:96:c2:92:7f:ed:
4d:e9:74:3e:aa:ef:31:23:11:1c:fe:35:32:ea:7e:73:1d:a9:
69:bb:d8:20:0d:7b:7b:e3:a8:63:96:7e:b6:fa:e5:e9:e5:9a:
0a:07:79:f9:84:dc:4c:12:d5:f7:3f:48:d0:e6:dc:f8:cc:96:
53:a4:50:d1:d0:89:38:82:83:17:b0:54:ee:db:b9:2c:34:37:
b6:98:b9:85:14:ba:dd:b9:41:d9:8f:fa:11:02:d8:c1:f0:ed:
f8:2b:a7:5f:16:97:47:19:90:cc:0e:25:05:6e:e7:2c:42:c1:
12:3b:45:72:ab:a9:82:43:87:22:a6:3a:f9:02:fe:f8:20:5b:
80:3b:b0:9e:00:2a:3d:55:58:c5:fe:65:37:f9:10:ed:a8:92:
9e:d6:89:de:e8:9c:08:48:5b:49:d9:8d:c0:c9:8e:98:8e:72:
79:dc:99:2d:a5:11:a5:2c:e9:06:5d:fa:b6:b7:cd:c3:8d:ed:
c1:37:23:89:68:c9:e9:4b:48:75:2b:17:3f:24:c7:b1:a0:f0:
01:f0:cc:cc:b6:dd:e7:f7:51:cb:32:e6:88:84:b8:ce:03:65:
e6:3a:70:f9:cd:bc:17:ce:43:ef:9d:a9:27:e7:d3:57:91:25:
83:0c:1c:49
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUCXutoRL2jI7jYMscsLfzDp7MxxMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5
RDREOTMwQjAeFw0yNTAyMjYxNjU1MDNaFw0yNjAyMjUxNzAwMDNaMDMxMTAvBgNV
BAMTKDFGMTg0RTE5MEQzQkZGQkEyODJBMDZCOTk5QjA1Njc5QzRCMEEzQUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8bLE8WKHre7C2e5OyRfcqKjnd
dYaVuQBS8n5P9NrrKSru2zugNqRxh9TJXG0A+SOBZTSLI2z02o5tDUM8E3nKxLVc
LsRtbo/mOtr2Y2AtK01DLkF2G+b/whEh/6cJc3S8zCEDK11ZbpqFFPoe0So8j95b
E9aagxnh/gtFl00x3UdITEaHnCoIGIHohn2dSVJP7difSGPbFME04vm2IXZR0QZb
t1V+tefuw+sI1T64AcxOdAdF2lolViMmX1r4HQGQXI2bLm9SIiI1LE/hom5AfSJ8
BlYn4R+gp2EhGcrtsDPkcOfxrO7guJ2/jUI06PXXCHPc0BdTCblINjEmxh/3AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUHxhOGQ07/7ooKga5mbBWecSwo6wwHwYDVR0j
BBgwFoAUa00U/G03SvzKsZDFTd86Gp1NkwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
NzU0NWI4NS05Mjc0LTQ3MGEtYWQyNy0yNDY5ZTlkMTU1YmMvMC82QjREMTRGQzZE
Mzc0QUZDQ0FCMTkwQzU0RERGM0ExQTlENEQ5MzBCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5RDRE
OTMwQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3NTQ1Yjg1LTkyNzQtNDcwYS1h
ZDI3LTI0NjllOWQxNTViYy8wLzMxMzAzMzJlMzIzMjMzMmUzMTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGffATANBgkqhkiG
9w0BAQsFAAOCAQEAGM07n/vbKHMZRJfJ15bCkn/tTel0PqrvMSMRHP41Mup+cx2p
abvYIA17e+OoY5Z+tvrl6eWaCgd5+YTcTBLV9z9I0Obc+MyWU6RQ0dCJOIKDF7BU
7tu5LDQ3tpi5hRS63blB2Y/6EQLYwfDt+CunXxaXRxmQzA4lBW7nLELBEjtFcqup
gkOHIqY6+QL++CBbgDuwngAqPVVYxf5lN/kQ7aiSntaJ3uicCEhbSdmNwMmOmI5y
edyZLaURpSzpBl36trfNw43twTcjiWjJ6UtIdSsXPyTHsaDwAfDMzLbd5/dRyzLm
iIS4zgNl5jpw+c28F85D752pJ+fTV5ElgwwcSQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:17:18 2025 by rpki-client