Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa
File: 3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa (raw, json)
Hash identifier: 98fawBN8lcuV1BpV1P5Bi+MmBkZ4ZywKpxF8wCR2MbU=
Subject key identifier: 27:07:8F:D5:A8:37:B6:DF:E4:BC:5C:35:2C:4E:20:B9:86:CF:11:82
Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499
Certificate serial: 5D98DC00137BFBBDD045D234225817099F4AC1EC
Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa
Signing time: Mon 30 Dec 2024 15:00:02 +0000
ROA not before: Mon 30 Dec 2024 14:55:02 +0000
ROA not after: Mon 29 Dec 2025 15:00:02 +0000
asID: 151003
IP address blocks: 103.213.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:98:dc:00:13:7b:fb:bd:d0:45:d2:34:22:58:17:09:9f:4a:c1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499
Validity
Not Before: Dec 30 14:55:02 2024 GMT
Not After : Dec 29 15:00:02 2025 GMT
Subject: CN=27078FD5A837B6DFE4BC5C352C4E20B986CF1182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0c:0e:46:77:46:7a:fa:20:2b:de:48:a7:7f:
72:85:64:a7:51:12:c6:5d:39:18:73:01:7b:ea:a0:
bb:c7:d7:6d:fd:cb:0d:30:d7:3f:01:51:a7:65:e0:
f6:7f:a6:a1:46:29:1f:2f:2b:c5:f0:c6:1e:87:cc:
42:a4:13:e6:10:aa:c2:b0:ff:47:cf:5c:45:46:54:
01:16:dd:8e:d1:fe:9d:b5:55:b1:4a:7e:dc:43:ca:
38:a6:7b:83:0d:0e:cb:c3:58:80:44:98:f1:d7:02:
63:79:ea:25:4b:d5:40:b9:c8:89:51:bd:a2:94:99:
d3:76:97:5b:1a:63:b6:8b:24:c6:52:1b:d0:6d:2b:
40:4d:d6:04:46:49:dd:b5:cb:cb:8a:01:c3:7f:68:
09:57:42:b8:cc:20:2b:c0:a8:e7:6e:a9:a3:cc:42:
b3:e7:0b:df:25:e3:2b:ec:f3:ce:34:4c:d3:45:75:
f5:58:94:64:e6:06:ef:7c:5c:7e:a1:93:9d:e0:7d:
ec:48:24:ff:f4:24:4c:d8:3f:59:5a:5d:51:f7:cb:
d9:5d:7d:ed:53:17:21:c4:24:1d:1f:8b:82:bd:04:
78:5d:7f:9a:91:2c:e3:2e:3d:c2:04:23:10:86:bb:
20:89:b5:f8:bb:3b:30:bd:43:58:53:b0:9d:a9:a6:
82:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:07:8F:D5:A8:37:B6:DF:E4:BC:5C:35:2C:4E:20:B9:86:CF:11:82
X509v3 Authority Key Identifier:
keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32342d3234203d3e20313531303033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.213.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:e4:0a:e2:05:d4:ce:ca:f4:17:24:ba:de:b6:e4:81:83:34:
77:55:37:7a:ea:37:c9:0d:22:3d:16:c0:92:2d:25:38:52:5a:
48:21:c1:68:87:16:24:c6:ed:3f:7c:c8:8d:f0:11:9f:33:cd:
fb:24:b9:73:34:d1:0a:79:51:a8:6c:36:51:b8:56:63:1e:8c:
c4:73:4e:01:3b:37:2f:5a:94:24:39:b4:b4:69:b8:e9:68:a9:
1d:07:bb:98:ae:73:47:98:4f:22:5d:31:d2:3d:e7:be:ac:d8:
a2:f6:a6:6e:5c:4a:a3:e6:62:68:b1:b6:7f:ac:45:c7:8b:1f:
b3:2a:e3:76:83:e8:4f:95:a2:96:57:d2:f8:80:f0:26:20:4c:
6d:d4:24:0e:b5:66:1f:5d:29:2e:d8:3d:df:4f:9f:03:18:c8:
1d:6f:4f:40:78:10:eb:f5:a6:c7:b7:7d:93:66:98:a6:92:38:
49:26:69:3a:cf:94:b1:18:de:05:db:e5:bb:1e:4d:08:df:ee:
e2:5d:79:ce:02:88:40:1c:f7:a2:60:3d:36:4f:ce:91:93:31:
d0:c4:5b:52:0e:34:d3:b9:c1:19:b8:81:64:65:a6:b1:83:f9:
d9:79:c6:32:ad:ae:b8:4b:df:9e:85:b7:d1:92:ad:58:23:6f:
db:35:d7:2d
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUXZjcABN7+73QRdI0IlgXCZ9KwewwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD
RDQzQzQ5OTAeFw0yNDEyMzAxNDU1MDJaFw0yNTEyMjkxNTAwMDJaMDMxMTAvBgNV
BAMTKDI3MDc4RkQ1QTgzN0I2REZFNEJDNUMzNTJDNEUyMEI5ODZDRjExODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDADA5Gd0Z6+iAr3kinf3KFZKdR
EsZdORhzAXvqoLvH1239yw0w1z8BUadl4PZ/pqFGKR8vK8Xwxh6HzEKkE+YQqsKw
/0fPXEVGVAEW3Y7R/p21VbFKftxDyjime4MNDsvDWIBEmPHXAmN56iVL1UC5yIlR
vaKUmdN2l1saY7aLJMZSG9BtK0BN1gRGSd21y8uKAcN/aAlXQrjMICvAqOduqaPM
QrPnC98l4yvs8840TNNFdfVYlGTmBu98XH6hk53gfexIJP/0JEzYP1laXVH3y9ld
fe1TFyHEJB0fi4K9BHhdf5qRLOMuPcIEIxCGuyCJtfi7OzC9Q1hTsJ2ppoJfAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUJweP1ag3tt/kvFw1LE4guYbPEYIwHwYDVR0j
BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3
OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz
QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04
OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzQyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eowDQYJ
KoZIhvcNAQELBQADggEBAC7kCuIF1M7K9Bckut625IGDNHdVN3rqN8kNIj0WwJIt
JThSWkghwWiHFiTG7T98yI3wEZ8zzfskuXM00Qp5UahsNlG4VmMejMRzTgE7Ny9a
lCQ5tLRpuOloqR0Hu5iuc0eYTyJdMdI9576s2KL2pm5cSqPmYmixtn+sRceLH7Mq
43aD6E+VopZX0viA8CYgTG3UJA61Zh9dKS7YPd9PnwMYyB1vT0B4EOv1pse3fZNm
mKaSOEkmaTrPlLEY3gXb5bseTQjf7uJdec4CiEAc96JgPTZPzpGTMdDEW1IONNO5
wRm4gWRlprGD+dl5xjKtrrhL356Ft9GSrVgjb9s11y0=
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:52:11 2025 by rpki-client