Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa
File: 3130332e3130362e37382e302f32332d3233203d3e203436303233.roa (raw, json)
Hash identifier: eJ9GbsoPpuqjf9GV+xkr8k7F5h0W8otETbBjey1b6zQ=
Subject key identifier: 08:3F:5D:2F:87:24:9D:65:D1:4C:26:91:D2:43:DD:F2:91:B4:88:C4
Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B
Certificate serial: 2CB1FA68B1827BE92C428D9F458B03EF7ABBD348
Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa
Signing time: Tue 05 Nov 2024 08:36:06 +0000
ROA not before: Tue 05 Nov 2024 08:31:06 +0000
ROA not after: Tue 04 Nov 2025 08:36:06 +0000
asID: 46023
IP address blocks: 103.106.78.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b1:fa:68:b1:82:7b:e9:2c:42:8d:9f:45:8b:03:ef:7a:bb:d3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B
Validity
Not Before: Nov 5 08:31:06 2024 GMT
Not After : Nov 4 08:36:06 2025 GMT
Subject: CN=083F5D2F87249D65D14C2691D243DDF291B488C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:ce:7a:d0:63:3d:81:d1:c0:ea:a4:01:49:
c6:8f:19:82:fc:bb:6a:33:c7:aa:a1:95:08:ea:58:
70:35:8b:e9:e3:03:8d:32:21:77:2d:86:f1:eb:7d:
eb:1b:3f:e1:76:15:17:b7:98:39:a9:2a:34:a2:83:
0e:8a:07:1e:e5:56:89:d0:58:5e:68:a7:71:ae:d3:
7e:51:d7:22:23:62:df:5e:a3:89:56:7b:ae:49:ef:
9a:1f:a9:05:63:58:e7:6f:c8:22:c5:bc:3c:7c:f5:
bd:aa:f6:4b:e5:df:e1:ef:7e:6d:af:3e:01:10:ae:
cf:0d:64:99:e9:b9:7f:62:37:d4:17:95:8d:b2:d9:
09:6c:b7:8a:8c:ec:b7:d2:b0:cf:06:9d:af:0f:30:
76:54:df:0e:b3:47:3d:0b:9b:0d:80:82:87:5b:55:
d0:9b:dd:0e:67:d2:d5:99:19:7d:51:bf:ba:b5:ec:
ae:aa:cc:a9:4a:2a:ce:46:0a:23:d8:82:a4:b8:1f:
f6:70:e7:6b:b1:29:01:64:c5:3d:5b:9a:c2:86:99:
c5:ca:8c:8a:27:ab:cd:12:19:74:ab:4e:80:39:22:
ae:08:72:aa:d6:c3:d6:e9:b1:78:55:95:a4:83:d6:
4e:bb:96:7d:d5:ed:1f:99:47:4f:09:5a:fd:83:18:
95:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3F:5D:2F:87:24:9D:65:D1:4C:26:91:D2:43:DD:F2:91:B4:88:C4
X509v3 Authority Key Identifier:
keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37382e302f32332d3233203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.106.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:c5:89:9b:20:7f:96:88:ff:ab:f8:79:22:ce:70:b2:90:8d:
2d:47:c4:54:b1:e9:13:83:f3:6d:58:53:09:54:b5:0f:7a:ad:
34:69:39:54:ab:7f:c9:cd:ee:1d:6e:01:50:de:36:e4:ee:90:
4e:6c:f9:dc:e8:87:8c:75:b5:42:1f:b6:cb:43:99:06:21:c6:
6a:4f:c0:3c:78:1d:c0:30:5b:d4:f2:dd:4d:e0:87:ed:fc:f7:
89:e6:b0:59:e4:48:9b:91:e3:59:a3:16:e5:c6:95:20:a0:c0:
4b:b5:94:f4:a4:f3:12:97:06:b4:c2:88:4e:de:9b:a0:ed:05:
4b:3e:e8:98:4c:a6:a1:dc:1b:14:78:74:63:d9:51:11:0b:80:
60:4f:b3:18:f2:31:39:af:e8:1a:5d:69:c4:65:21:45:ee:1d:
ce:7d:3c:0d:65:e3:59:5d:5f:29:45:15:f5:60:92:42:9e:8e:
91:9e:3d:33:bc:9f:b1:42:cc:8b:fa:4a:51:d5:3b:34:3d:4f:
9b:92:1f:73:e9:85:cc:15:77:b4:7f:d1:04:05:be:08:e5:af:
dd:31:b0:3c:2f:8e:7a:73:0a:69:78:61:b3:59:81:87:aa:ee:
1d:4d:87:3a:7b:f0:d0:e0:69:8f:87:f9:e7:c6:2e:9b:b0:8d:
0c:e7:5d:2f
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIULLH6aLGCe+ksQo2fRYsD73q700gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy
RjQ0RjE1QjAeFw0yNDExMDUwODMxMDZaFw0yNTExMDQwODM2MDZaMDMxMTAvBgNV
BAMTKDA4M0Y1RDJGODcyNDlENjVEMTRDMjY5MUQyNDNEREYyOTFCNDg4QzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYmc560GM9gdHA6qQBScaPGYL8
u2ozx6qhlQjqWHA1i+njA40yIXcthvHrfesbP+F2FRe3mDmpKjSigw6KBx7lVonQ
WF5op3Gu035R1yIjYt9eo4lWe65J75ofqQVjWOdvyCLFvDx89b2q9kvl3+Hvfm2v
PgEQrs8NZJnpuX9iN9QXlY2y2Qlst4qM7LfSsM8Gna8PMHZU3w6zRz0Lmw2Agodb
VdCb3Q5n0tWZGX1Rv7q17K6qzKlKKs5GCiPYgqS4H/Zw52uxKQFkxT1bmsKGmcXK
jIonq80SGXSrToA5Iq4IcqrWw9bpsXhVlaSD1k67ln3V7R+ZR08JWv2DGJUHAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUCD9dL4cknWXRTCaR0kPd8pG0iMQwHwYDVR0j
BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB
M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0
RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h
Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM4MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdqTjANBgkqhkiG
9w0BAQsFAAOCAQEAfcWJmyB/loj/q/h5Is5wspCNLUfEVLHpE4PzbVhTCVS1D3qt
NGk5VKt/yc3uHW4BUN425O6QTmz53OiHjHW1Qh+2y0OZBiHGak/APHgdwDBb1PLd
TeCH7fz3ieawWeRIm5HjWaMW5caVIKDAS7WU9KTzEpcGtMKITt6boO0FSz7omEym
odwbFHh0Y9lREQuAYE+zGPIxOa/oGl1pxGUhRe4dzn08DWXjWV1fKUUV9WCSQp6O
kZ49M7yfsULMi/pKUdU7ND1Pm5Ifc+mFzBV3tH/RBAW+COWv3TGwPC+OenMKaXhh
s1mBh6ruHU2HOnvw0OBpj4f558Yum7CNDOddLw==
-----END CERTIFICATE-----
Generated at Fri Apr 11 21:03:10 2025 by rpki-client