Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa
File: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (raw, json)
Hash identifier: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=
Subject key identifier: 6B:9E:86:F2:8C:EF:1E:5F:0F:C7:1B:2A:5B:7C:B4:69:85:E8:1D:B2
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 15F6B3987E1BCD8B3B474B45A563D88A7E45454E
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa
Signing time: Wed 12 Mar 2025 05:00:01 +0000
ROA not before: Wed 12 Mar 2025 04:55:01 +0000
ROA not after: Wed 11 Mar 2026 05:00:01 +0000
asID: 140023
IP address blocks: 103.149.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:f6:b3:98:7e:1b:cd:8b:3b:47:4b:45:a5:63:d8:8a:7e:45:45:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Mar 12 04:55:01 2025 GMT
Not After : Mar 11 05:00:01 2026 GMT
Subject: CN=6B9E86F28CEF1E5F0FC71B2A5B7CB46985E81DB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8b:d8:ad:42:7f:72:33:f4:8c:06:71:43:5a:
44:db:f5:99:21:a3:9a:56:14:e2:3f:fb:da:a7:d5:
61:0b:b2:69:d8:55:be:9c:ca:f7:a8:e4:a3:7d:67:
a7:8a:fd:7e:8d:05:8d:85:23:dd:e1:75:d8:c7:e3:
71:fb:12:1e:e5:ae:f5:4b:c6:99:b9:ec:a0:ea:61:
29:fe:a2:dc:0c:09:97:c1:c1:4a:f5:17:1e:b0:5b:
bb:d3:5b:c8:e9:64:b0:b9:13:96:cc:af:aa:a1:a3:
d4:d4:8a:2e:ea:3f:7d:0b:10:7c:8b:5f:51:8e:4d:
ba:93:2b:3c:47:f6:0e:da:f4:8e:7b:75:07:85:0c:
58:f7:cf:aa:9e:30:63:26:00:6f:eb:47:62:99:00:
96:a0:66:4a:41:74:f4:f3:21:c8:ef:88:db:25:fc:
35:a0:91:fb:92:11:e5:8c:eb:a0:e0:9c:4d:60:d7:
93:fc:c1:48:ff:f8:cf:c5:0d:08:ba:36:2d:f8:a2:
13:73:3a:9d:3b:48:fe:7f:a7:33:11:da:99:f0:97:
33:ae:71:45:dd:ce:ff:8c:f2:7a:25:04:42:5f:3d:
23:7f:c2:2a:01:95:5a:ef:dd:3f:fd:2d:a4:9d:b5:
1a:62:30:02:e4:11:e9:92:88:00:e5:00:42:db:dc:
e0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9E:86:F2:8C:EF:1E:5F:0F:C7:1B:2A:5B:7C:B4:69:85:E8:1D:B2
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:13:e5:e6:cd:5d:1a:17:8e:63:ba:d7:a0:10:9a:47:ae:02:
60:ce:f5:d4:80:de:24:f6:d3:fb:ef:ef:99:0c:7f:8d:c7:db:
00:dd:20:8a:64:a5:4e:b9:b2:4a:bb:15:55:58:d1:3e:8a:e6:
d9:38:59:61:47:40:7f:c9:83:7f:83:e0:38:02:b2:4e:53:91:
cf:5c:6a:d0:b0:00:67:b2:5d:57:ca:19:5d:41:e1:09:0b:8c:
65:46:09:c6:c5:11:5a:f5:f7:64:f2:31:7d:4d:6a:8a:bc:1a:
17:66:3a:42:a4:2d:52:74:3d:84:df:16:fd:1a:71:4b:b7:95:
90:4b:d9:ef:6e:d4:dc:f9:35:5f:9f:be:71:4b:b5:79:8e:e6:
87:4d:26:7c:84:6e:c8:9f:e4:d4:20:e4:d7:8e:3b:e0:08:6a:
93:44:80:78:c0:31:3b:32:93:e9:fc:dd:c3:9b:ac:d6:ee:2c:
02:22:1a:99:9b:12:7d:59:6a:70:5d:0a:3e:da:01:ea:00:0d:
38:74:bf:6c:20:30:9d:48:34:50:49:ca:c5:47:e0:1d:51:b6:
9f:83:e7:98:c0:4b:30:ae:fc:e2:d0:28:25:43:f2:57:2f:2f:
48:c9:b7:79:62:dd:89:f7:e2:f8:9c:ac:b3:20:03:7b:d5:35:
3a:81:67:75
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUFfazmH4bzYs7R0tFpWPYin5FRU4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC
NzQwMTY2MTAeFw0yNTAzMTIwNDU1MDFaFw0yNjAzMTEwNTAwMDFaMDMxMTAvBgNV
BAMTKDZCOUU4NkYyOENFRjFFNUYwRkM3MUIyQTVCN0NCNDY5ODVFODFEQjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqi9itQn9yM/SMBnFDWkTb9Zkh
o5pWFOI/+9qn1WELsmnYVb6cyveo5KN9Z6eK/X6NBY2FI93hddjH43H7Eh7lrvVL
xpm57KDqYSn+otwMCZfBwUr1Fx6wW7vTW8jpZLC5E5bMr6qho9TUii7qP30LEHyL
X1GOTbqTKzxH9g7a9I57dQeFDFj3z6qeMGMmAG/rR2KZAJagZkpBdPTzIcjviNsl
/DWgkfuSEeWM66DgnE1g15P8wUj/+M/FDQi6Ni34ohNzOp07SP5/pzMR2pnwlzOu
cUXdzv+M8nolBEJfPSN/wioBlVrv3T/9LaSdtRpiMALkEemSiADlAELb3OBfAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUa56G8ozvHl8PxxsqW3y0aYXoHbIwHwYDVR0j
BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND
RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw
MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04
NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ
KoZIhvcNAQELBQADggEBAKoT5ebNXRoXjmO616AQmkeuAmDO9dSA3iT20/vv75kM
f43H2wDdIIpkpU65skq7FVVY0T6K5tk4WWFHQH/Jg3+D4DgCsk5Tkc9catCwAGey
XVfKGV1B4QkLjGVGCcbFEVr192TyMX1Naoq8GhdmOkKkLVJ0PYTfFv0acUu3lZBL
2e9u1Nz5NV+fvnFLtXmO5odNJnyEbsif5NQg5NeOO+AIapNEgHjAMTsyk+n83cOb
rNbuLAIiGpmbEn1ZanBdCj7aAeoADTh0v2wgMJ1INFBJysVH4B1Rtp+D55jASzCu
/OLQKCVD8lcvL0jJt3li3Yn34vicrLMgA3vVNTqBZ3U=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:17 2025 by rpki-client