Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34322e302f32332d3234203d3e20313430343434.roa
File: 3130332e3135332e34322e302f32332d3234203d3e20313430343434.roa (raw, json)
Hash identifier: IpAhfyBk6UVvHL1CrMEsCPgMXpI9vxk9SZkiJxXgvQk=
Subject key identifier: E6:12:5D:07:17:7C:35:A4:B5:5D:96:B9:09:B5:CE:E1:13:6B:0B:4A
Certificate issuer: /CN=45C9770C2C07C2696447FAA1E820E46170A3C56C
Certificate serial: 1611DF63A44C7200BEEF94601D5081569547A20F
Authority key identifier: 45:C9:77:0C:2C:07:C2:69:64:47:FA:A1:E8:20:E4:61:70:A3:C5:6C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45C9770C2C07C2696447FAA1E820E46170A3C56C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34322e302f32332d3234203d3e20313430343434.roa
Signing time: Tue 06 Aug 2024 04:00:00 +0000
ROA not before: Tue 06 Aug 2024 03:55:00 +0000
ROA not after: Tue 05 Aug 2025 04:00:00 +0000
asID: 140444
IP address blocks: 103.153.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:11:df:63:a4:4c:72:00:be:ef:94:60:1d:50:81:56:95:47:a2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45C9770C2C07C2696447FAA1E820E46170A3C56C
Validity
Not Before: Aug 6 03:55:00 2024 GMT
Not After : Aug 5 04:00:00 2025 GMT
Subject: CN=E6125D07177C35A4B55D96B909B5CEE1136B0B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:74:41:2c:0b:3d:7f:fa:e9:f9:43:d1:bc:8e:
f1:53:41:4a:6b:c5:86:7a:81:d5:95:d4:28:4f:ba:
19:e0:a8:ee:0d:05:69:48:e8:e7:92:d2:32:11:66:
3b:d4:cd:54:40:7e:59:41:a3:8b:59:48:cf:3c:b5:
f6:c3:8f:dc:a1:60:54:63:93:9b:95:2b:ff:73:26:
4e:0d:98:5a:af:c8:71:9a:b8:e6:c1:21:81:34:cd:
75:1d:92:9b:15:17:58:b6:c8:0f:ea:f8:cb:24:47:
b5:78:1b:91:b8:03:11:fe:cf:88:53:0f:3a:80:94:
c6:92:94:2e:0b:b6:1b:51:bc:74:18:38:0e:b6:fe:
2c:73:ac:cd:3a:12:37:db:71:da:ee:36:b6:87:88:
97:d1:be:e1:8a:fc:d4:23:63:e7:11:45:dc:b3:89:
21:10:54:41:f4:69:f5:b6:7d:c5:ab:a7:f0:0e:70:
71:f0:36:19:6a:3c:a7:ee:89:1d:8e:42:1c:33:01:
76:60:92:81:cb:61:fc:0a:59:1a:a6:34:42:01:07:
19:86:5b:aa:20:f7:5e:24:c3:0e:ec:1f:6a:fc:a8:
64:d1:85:1e:1e:64:0f:31:89:8d:65:72:62:83:d1:
2e:4e:5b:29:cf:84:97:be:7e:6f:b4:3a:f1:a2:02:
00:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:12:5D:07:17:7C:35:A4:B5:5D:96:B9:09:B5:CE:E1:13:6B:0B:4A
X509v3 Authority Key Identifier:
keyid:45:C9:77:0C:2C:07:C2:69:64:47:FA:A1:E8:20:E4:61:70:A3:C5:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/45C9770C2C07C2696447FAA1E820E46170A3C56C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45C9770C2C07C2696447FAA1E820E46170A3C56C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c711559e-d5ec-4c19-b335-ee29ddfbb9d5/0/3130332e3135332e34322e302f32332d3234203d3e20313430343434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.42.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:23:3b:b5:03:ee:b6:7d:d8:ad:a8:29:a8:79:eb:05:6c:e2:
73:88:2d:f5:d0:0e:89:6a:83:99:76:83:db:a7:70:69:f0:73:
76:e7:c5:16:8f:94:14:91:55:ef:9f:67:e2:28:f5:6d:42:c7:
cc:68:ed:74:15:35:e9:fe:45:52:3e:e3:3b:58:43:f6:0d:3d:
a8:56:ea:a8:27:e9:88:14:85:d6:3e:e8:26:dd:c4:22:5a:52:
eb:0f:8b:93:60:27:24:18:94:0f:2f:f8:a5:a5:8b:59:8b:70:
32:9c:df:04:82:dd:2f:52:97:3f:57:32:6d:37:fb:e4:a9:e0:
b6:4d:0a:b1:82:e8:6b:7a:47:44:43:4a:1b:5e:cf:aa:81:11:
fc:38:9a:f0:24:ab:d8:bd:64:62:44:c8:51:8e:24:d9:fb:5b:
ae:49:97:88:89:a5:61:6a:f8:58:4b:9b:e0:76:75:5c:95:63:
8a:d0:92:7c:f4:70:bc:41:78:f2:ad:04:17:8a:0b:67:e9:ec:
18:9a:97:93:16:6b:61:64:a7:e2:bd:c1:f4:4b:08:10:9f:47:
2a:1f:72:df:58:aa:94:0d:ea:26:76:2b:f0:c3:55:94:81:a5:
14:89:bb:db:f3:6e:12:2b:d4:22:2b:3c:b8:ac:43:4e:90:e7:
a1:8d:51:5c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUFhHfY6RMcgC+75RgHVCBVpVHog8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDVDOTc3MEMyQzA3QzI2OTY0NDdGQUExRTgyMEU0NjE3
MEEzQzU2QzAeFw0yNDA4MDYwMzU1MDBaFw0yNTA4MDUwNDAwMDBaMDMxMTAvBgNV
BAMTKEU2MTI1RDA3MTc3QzM1QTRCNTVEOTZCOTA5QjVDRUUxMTM2QjBCNEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXdEEsCz1/+un5Q9G8jvFTQUpr
xYZ6gdWV1ChPuhngqO4NBWlI6OeS0jIRZjvUzVRAfllBo4tZSM88tfbDj9yhYFRj
k5uVK/9zJk4NmFqvyHGauObBIYE0zXUdkpsVF1i2yA/q+MskR7V4G5G4AxH+z4hT
DzqAlMaSlC4LthtRvHQYOA62/ixzrM06EjfbcdruNraHiJfRvuGK/NQjY+cRRdyz
iSEQVEH0afW2fcWrp/AOcHHwNhlqPKfuiR2OQhwzAXZgkoHLYfwKWRqmNEIBBxmG
W6og914kww7sH2r8qGTRhR4eZA8xiY1lcmKD0S5OWynPhJe+fm+0OvGiAgB/AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU5hJdBxd8NaS1XZa5CbXO4RNrC0owHwYDVR0j
BBgwFoAURcl3DCwHwmlkR/qh6CDkYXCjxWwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
NzExNTU5ZS1kNWVjLTRjMTktYjMzNS1lZTI5ZGRmYmI5ZDUvMC80NUM5NzcwQzJD
MDdDMjY5NjQ0N0ZBQTFFODIwRTQ2MTcwQTNDNTZDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDVDOTc3MEMyQzA3QzI2OTY0NDdGQUExRTgyMEU0NjE3MEEz
QzU2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3MTE1NTllLWQ1ZWMtNGMxOS1i
MzM1LWVlMjlkZGZiYjlkNS8wLzMxMzAzMzJlMzEzNTMzMmUzNDMyMmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5kqMA0GCSqG
SIb3DQEBCwUAA4IBAQCbIzu1A+62fditqCmoeesFbOJziC310A6JaoOZdoPbp3Bp
8HN258UWj5QUkVXvn2fiKPVtQsfMaO10FTXp/kVSPuM7WEP2DT2oVuqoJ+mIFIXW
Pugm3cQiWlLrD4uTYCckGJQPL/ilpYtZi3AynN8Egt0vUpc/VzJtN/vkqeC2TQqx
guhrekdEQ0obXs+qgRH8OJrwJKvYvWRiRMhRjiTZ+1uuSZeIiaVhavhYS5vgdnVc
lWOK0JJ89HC8QXjyrQQXigtn6ewYmpeTFmthZKfivcH0SwgQn0cqH3LfWKqUDeom
divww1WUgaUUibvb824SK9QiKzy4rENOkOehjVFc
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:38 2025 by rpki-client