Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa
File: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (raw, json)
Hash identifier: qSzxrfqd29Pg9HOqmUjPO7crmnWP/zs2luJUdYRC76s=
Subject key identifier: 49:24:4C:8E:13:E2:29:68:62:93:9B:48:13:20:24:D3:90:E4:FC:AA
Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B
Certificate serial: 2018D9D4D32D089B05BC5C0DB88FFEAE16845579
Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa
Signing time: Tue 19 Nov 2024 22:00:00 +0000
ROA not before: Tue 19 Nov 2024 21:55:00 +0000
ROA not after: Tue 18 Nov 2025 22:00:00 +0000
asID: 150540
IP address blocks: 103.83.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:18:d9:d4:d3:2d:08:9b:05:bc:5c:0d:b8:8f:fe:ae:16:84:55:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B
Validity
Not Before: Nov 19 21:55:00 2024 GMT
Not After : Nov 18 22:00:00 2025 GMT
Subject: CN=49244C8E13E2296862939B48132024D390E4FCAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:94:c7:08:23:fb:65:e3:08:f5:9c:bf:e6:
ae:23:d6:a7:fe:54:dc:74:dd:12:3d:74:ea:73:a4:
08:d9:4d:6c:8c:6b:77:1f:70:df:5f:19:87:db:23:
bf:6b:fb:cb:a6:29:ea:2b:b1:f8:f2:41:95:a3:44:
e1:ba:87:c8:4c:ff:a6:67:0b:c6:38:fb:8a:a7:9a:
a4:94:6b:f9:85:0d:d7:b9:5d:44:2b:4c:d8:0e:c3:
a7:a1:dc:7e:92:b4:33:61:a8:60:af:f4:76:6f:98:
ec:87:cd:3c:31:39:a5:76:c5:d8:3c:10:02:ea:5c:
4d:a0:79:19:45:8b:23:5d:29:27:aa:e3:76:34:d8:
93:23:3f:8a:31:1b:1e:e8:0a:ee:b1:f7:03:07:6c:
56:d1:e3:c4:fc:d6:a9:52:34:ec:ef:b3:ab:74:e9:
89:6d:4f:69:33:ff:fc:9c:cc:fd:ad:b4:7e:6e:ac:
4b:20:90:08:5e:5f:8f:7b:be:ad:c1:12:92:6e:66:
f0:bf:a0:bb:ce:60:be:71:87:cd:54:04:5d:ff:9a:
ed:23:58:68:df:61:30:98:5b:fe:31:b3:f0:19:d7:
c6:c1:98:d3:82:47:e6:e7:21:20:dc:c1:ee:69:fc:
a4:61:58:f7:3c:57:5d:a7:d8:72:89:20:8a:0a:f2:
a0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:24:4C:8E:13:E2:29:68:62:93:9B:48:13:20:24:D3:90:E4:FC:AA
X509v3 Authority Key Identifier:
keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.83.237.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d1:3a:a4:57:3d:90:b2:75:84:7b:e6:31:bd:58:e0:88:1e:
af:4d:7f:27:7c:ba:46:43:e4:29:f6:a7:84:6d:d5:53:6b:56:
47:c1:63:f6:e6:32:77:4b:e2:88:c0:77:2e:9c:48:91:f2:ab:
e9:fd:82:b1:87:db:69:57:71:0b:ea:1c:69:18:59:22:a7:e8:
4b:f5:a2:51:9f:37:3e:f5:6a:8e:d5:9b:09:da:27:66:51:07:
61:be:f1:73:bc:05:47:84:a9:db:0c:4b:b7:0c:69:a4:97:34:
e1:c6:18:e0:a2:25:74:ca:a4:70:ae:13:43:6e:ee:85:aa:30:
fc:5f:dc:c9:e8:8f:b7:f2:c0:17:6e:8d:3e:22:8d:e0:25:3f:
da:5e:86:48:f2:56:f3:e7:88:c8:f1:42:db:5b:02:c5:0a:58:
1b:17:4b:de:34:f4:1d:88:5e:da:4d:4c:e3:c5:5e:a5:8e:84:
5b:f3:05:79:a8:63:25:18:58:62:8e:d9:04:a3:89:86:7d:d2:
cc:e3:e8:53:93:36:97:0f:e1:9c:bb:a0:40:9a:1e:68:33:1f:
2d:87:53:0c:ae:a2:e1:67:21:1b:a9:73:25:eb:59:2e:ed:32:
55:69:1e:02:3a:cf:3e:9e:c4:7f:75:b0:1a:fe:45:6c:03:99:
21:dd:8a:71
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUIBjZ1NMtCJsFvFwNuI/+rhaEVXkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez
NjAxQTg4QjAeFw0yNDExMTkyMTU1MDBaFw0yNTExMTgyMjAwMDBaMDMxMTAvBgNV
BAMTKDQ5MjQ0QzhFMTNFMjI5Njg2MjkzOUI0ODEzMjAyNEQzOTBFNEZDQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRAZTHCCP7ZeMI9Zy/5q4j1qf+
VNx03RI9dOpzpAjZTWyMa3cfcN9fGYfbI79r+8umKeorsfjyQZWjROG6h8hM/6Zn
C8Y4+4qnmqSUa/mFDde5XUQrTNgOw6eh3H6StDNhqGCv9HZvmOyHzTwxOaV2xdg8
EALqXE2geRlFiyNdKSeq43Y02JMjP4oxGx7oCu6x9wMHbFbR48T81qlSNOzvs6t0
6YltT2kz//yczP2ttH5urEsgkAheX497vq3BEpJuZvC/oLvOYL5xh81UBF3/mu0j
WGjfYTCYW/4xs/AZ18bBmNOCR+bnISDcwe5p/KRhWPc8V12n2HKJIIoK8qBPAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUSSRMjhPiKWhik5tIEyAk05Dk/KowHwYDVR0j
BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF
RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx
QTg4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3LTJhYTEtNDRkZi05
MTRjLWYxOTE4NGY2ZjNiMS8wLzMxMzAzMzJlMzgzMzJlMzIzMzM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PtMA0GCSqG
SIb3DQEBCwUAA4IBAQAm0TqkVz2QsnWEe+YxvVjgiB6vTX8nfLpGQ+Qp9qeEbdVT
a1ZHwWP25jJ3S+KIwHcunEiR8qvp/YKxh9tpV3EL6hxpGFkip+hL9aJRnzc+9WqO
1ZsJ2idmUQdhvvFzvAVHhKnbDEu3DGmklzThxhjgoiV0yqRwrhNDbu6FqjD8X9zJ
6I+38sAXbo0+Io3gJT/aXoZI8lbz54jI8ULbWwLFClgbF0veNPQdiF7aTUzjxV6l
joRb8wV5qGMlGFhijtkEo4mGfdLM4+hTkzaXD+Gcu6BAmh5oMx8th1MMrqLhZyEb
qXMl61ku7TJVaR4COs8+nsR/dbAa/kVsA5kh3Ypx
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:26:53 2025 by rpki-client