Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa
File: 3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa (raw, json)
Hash identifier: ZCH3XXiTrQMOGAjRhT39z3F568gOjmz+EgX36Ate/V4=
Subject key identifier: 2D:3F:A2:D2:D1:B0:79:77:B3:25:61:4B:A9:9E:C7:F4:12:79:50:8B
Certificate issuer: /CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915
Certificate serial: 6084BCA50F0085EA69D61ED4B0DEEBFB31C77A19
Authority key identifier: DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa
Signing time: Mon 01 Jul 2024 01:05:01 +0000
ROA not before: Mon 01 Jul 2024 01:00:01 +0000
ROA not after: Mon 30 Jun 2025 01:05:01 +0000
asID: 136880
IP address blocks: 103.106.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:84:bc:a5:0f:00:85:ea:69:d6:1e:d4:b0:de:eb:fb:31:c7:7a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915
Validity
Not Before: Jul 1 01:00:01 2024 GMT
Not After : Jun 30 01:05:01 2025 GMT
Subject: CN=2D3FA2D2D1B07977B325614BA99EC7F41279508B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fe:e9:de:57:09:d5:33:60:49:8a:06:f3:cf:
e0:59:02:e8:6f:e4:6c:8b:f9:7f:9a:20:e0:90:f6:
c9:2e:b4:b2:47:31:f2:45:e9:83:6f:7a:41:94:0f:
92:b1:56:30:6f:22:9d:19:ff:d6:38:28:f9:d3:60:
6f:e0:74:49:ea:47:6e:ac:59:6b:5c:4e:15:0d:f5:
0b:6b:15:05:93:08:82:d1:9d:8c:21:ff:e3:74:29:
ca:57:5c:47:ec:e1:92:06:e0:41:17:68:26:6d:08:
1b:76:fd:3c:e2:99:3e:47:ce:06:19:7c:04:e8:29:
05:ac:50:b9:94:af:c7:98:e0:06:a7:5f:c1:ec:f7:
af:35:11:52:10:56:b2:1c:80:00:cf:bb:78:d4:1c:
d0:6d:c3:19:88:a6:fe:23:18:e1:79:fd:9a:99:18:
2b:e8:f6:73:2c:b6:16:fe:4b:73:23:4e:55:24:63:
75:63:50:f8:ec:9a:b1:4a:3b:9f:45:c9:c7:34:62:
86:cb:22:06:8d:9b:47:81:62:2b:da:c5:78:ae:0e:
83:fe:18:db:d8:03:e2:45:62:68:c5:be:67:82:f1:
f2:a7:22:7d:07:82:e1:94:c7:58:01:30:3b:c0:de:
f6:06:b4:38:e7:6e:8b:30:c0:b0:d4:92:80:e5:86:
e6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3F:A2:D2:D1:B0:79:77:B3:25:61:4B:A9:9E:C7:F4:12:79:50:8B
X509v3 Authority Key Identifier:
keyid:DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.106.112.0/22
Signature Algorithm: sha256WithRSAEncryption
e4:ef:be:3f:59:ba:53:67:69:86:33:17:cb:c7:46:fb:6e:94:
f7:1f:b1:6b:ca:90:3a:78:a8:8e:57:e0:0c:71:75:58:00:fa:
23:d7:d1:b7:2f:e8:07:a0:9c:b7:e3:32:82:5e:fa:e2:84:b0:
e9:9d:96:39:79:cb:91:32:15:99:04:9a:6d:5a:f4:d8:58:90:
69:de:e4:e4:5e:f7:a2:fd:20:7e:22:5a:dd:3e:05:5a:77:95:
61:48:77:8e:77:05:aa:4e:ed:c6:ed:5f:01:de:20:c4:7f:57:
77:b3:cf:8b:94:12:c7:1b:4e:1c:3e:58:c8:c1:c4:30:82:ee:
a0:9e:54:db:e9:75:c4:36:ea:5a:6e:fe:12:dc:bf:6e:21:1c:
6e:69:50:45:f1:fc:a9:90:ca:19:45:c1:77:81:15:a7:ee:46:
b8:9a:61:d9:92:e4:0c:e5:52:43:45:74:c3:23:d5:f6:e4:a6:
fa:1e:a1:5e:14:1d:05:e1:0f:aa:34:42:ca:b2:ed:e7:37:ea:
d4:17:f3:89:01:da:1f:89:ca:d2:72:c0:1f:30:f0:64:a7:1f:
ba:33:d6:b4:0d:95:ee:76:b3:2b:0a:69:f5:f3:db:8c:b9:2c:
12:b4:b9:bc:52:c3:6f:4e:87:2b:d2:d1:19:8d:41:15:d6:d4:
e9:8c:5f:f8
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUYIS8pQ8Ahepp1h7UsN7r+zHHehkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBD
MUIwRjkxNTAeFw0yNDA3MDEwMTAwMDFaFw0yNTA2MzAwMTA1MDFaMDMxMTAvBgNV
BAMTKDJEM0ZBMkQyRDFCMDc5NzdCMzI1NjE0QkE5OUVDN0Y0MTI3OTUwOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj/uneVwnVM2BJigbzz+BZAuhv
5GyL+X+aIOCQ9skutLJHMfJF6YNvekGUD5KxVjBvIp0Z/9Y4KPnTYG/gdEnqR26s
WWtcThUN9QtrFQWTCILRnYwh/+N0KcpXXEfs4ZIG4EEXaCZtCBt2/TzimT5HzgYZ
fAToKQWsULmUr8eY4AanX8Hs9681EVIQVrIcgADPu3jUHNBtwxmIpv4jGOF5/ZqZ
GCvo9nMsthb+S3MjTlUkY3VjUPjsmrFKO59Fycc0YobLIgaNm0eBYivaxXiuDoP+
GNvYA+JFYmjFvmeC8fKnIn0HguGUx1gBMDvA3vYGtDjnboswwLDUkoDlhuY5AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQULT+i0tGweXezJWFLqZ7H9BJ5UIswHwYDVR0j
BBgwFoAU3ICGACKk1dFNt4CCuscF4MGw+RUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
YjA3YjM3Yy0wNTA3LTQ5MTMtODMyOS0zZjE2MWI2YWZmNTYvMC9EQzgwODYwMDIy
QTRENUQxNERCNzgwODJCQUM3MDVFMEMxQjBGOTE1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBDMUIw
RjkxNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMDdiMzdjLTA1MDctNDkxMy04
MzI5LTNmMTYxYjZhZmY1Ni8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzIyZTMwMmYz
MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnanAwDQYJ
KoZIhvcNAQELBQADggEBAOTvvj9ZulNnaYYzF8vHRvtulPcfsWvKkDp4qI5X4Axx
dVgA+iPX0bcv6AegnLfjMoJe+uKEsOmdljl5y5EyFZkEmm1a9NhYkGne5ORe96L9
IH4iWt0+BVp3lWFId453BapO7cbtXwHeIMR/V3ezz4uUEscbThw+WMjBxDCC7qCe
VNvpdcQ26lpu/hLcv24hHG5pUEXx/KmQyhlFwXeBFafuRriaYdmS5AzlUkNFdMMj
1fbkpvoeoV4UHQXhD6o0Qsqy7ec36tQX84kB2h+JytJywB8w8GSnH7oz1rQNle52
sysKafXz24y5LBK0ubxSw29OhyvS0RmNQRXW1OmMX/g=
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:55:11 2025 by rpki-client