Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/3130332e39312e3134382e302f32342d3234203d3e20313530393139.roa
File: 3130332e39312e3134382e302f32342d3234203d3e20313530393139.roa (raw, json)
Hash identifier: 2BdVqKJM7wkCXb7z3xWM42z8nq2M+ZXCEKBrPXEyNn4=
Subject key identifier: 32:22:19:26:66:BE:C6:50:8B:80:03:2B:D1:F5:49:6F:DC:28:F7:59
Certificate issuer: /CN=781285AE1A8C595D354913D0B93F6982FCDFD898
Certificate serial: 40AF615E7786AE0E75C0814E11559CD1D99FA35E
Authority key identifier: 78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/781285AE1A8C595D354913D0B93F6982FCDFD898.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/3130332e39312e3134382e302f32342d3234203d3e20313530393139.roa
Signing time: Fri 31 Jan 2025 05:01:56 +0000
ROA not before: Fri 31 Jan 2025 04:56:56 +0000
ROA not after: Fri 30 Jan 2026 05:01:56 +0000
asID: 150919
IP address blocks: 103.91.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:af:61:5e:77:86:ae:0e:75:c0:81:4e:11:55:9c:d1:d9:9f:a3:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=781285AE1A8C595D354913D0B93F6982FCDFD898
Validity
Not Before: Jan 31 04:56:56 2025 GMT
Not After : Jan 30 05:01:56 2026 GMT
Subject: CN=3222192666BEC6508B80032BD1F5496FDC28F759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fb:19:e7:11:89:1b:af:53:1f:ac:2c:08:e0:
84:5e:9f:87:30:ab:85:34:48:8d:f5:cb:33:95:62:
a4:da:f0:29:31:e7:49:82:00:9c:9b:00:11:4c:e5:
e8:68:1a:88:89:ea:c7:37:83:99:e3:d2:80:99:b7:
ef:3b:de:6b:35:01:e9:4b:b8:68:32:7e:e8:a3:99:
28:9d:e8:ba:29:e2:4c:6d:02:99:de:5c:de:87:ce:
51:ce:a4:6f:29:2f:ca:e0:79:44:d4:f2:6f:41:58:
f2:3b:9c:16:81:13:fe:16:65:b3:15:18:05:c9:de:
a0:45:9d:2e:62:33:73:f2:56:7f:cd:a8:51:40:44:
d0:05:d4:68:2d:63:cc:52:cb:b8:76:af:dd:0d:75:
00:2a:8b:e4:ff:e7:f0:fb:79:ca:33:f6:3f:6b:20:
97:56:8c:a0:12:43:86:16:b5:a1:47:67:34:64:30:
dd:46:7b:d7:11:28:fa:93:c6:f5:44:81:24:bc:73:
76:df:52:18:ad:6a:f5:08:a5:c6:9d:82:a2:c6:3f:
6c:b7:61:20:ad:5f:60:4f:ce:cf:13:28:09:f4:50:
75:dd:05:c1:e1:be:26:6a:76:2d:7e:83:bb:67:85:
1c:35:8a:43:84:41:f2:18:e7:c4:cb:29:5b:92:2c:
75:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:22:19:26:66:BE:C6:50:8B:80:03:2B:D1:F5:49:6F:DC:28:F7:59
X509v3 Authority Key Identifier:
keyid:78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/781285AE1A8C595D354913D0B93F6982FCDFD898.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/781285AE1A8C595D354913D0B93F6982FCDFD898.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/3130332e39312e3134382e302f32342d3234203d3e20313530393139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.91.148.0/24
Signature Algorithm: sha256WithRSAEncryption
08:de:4d:ac:dd:a0:a3:fd:4c:1e:b2:66:33:4a:db:1b:00:fc:
ff:e6:92:3c:cc:0a:7c:79:33:38:f1:90:81:f8:4f:17:9d:fc:
ac:8c:da:0b:b3:93:94:f3:0e:cf:e4:c6:db:47:fb:2c:48:57:
32:11:d6:4b:14:fe:88:80:c5:29:94:1f:5d:6d:f9:74:12:cb:
00:85:e2:77:29:b9:fc:b4:6f:97:76:20:44:1d:4a:22:19:f9:
4c:76:34:e0:91:75:22:81:2b:19:4e:80:15:17:d0:99:35:f9:
db:37:4c:d5:16:7d:af:cc:8c:d5:ef:69:b8:ca:34:4e:2f:21:
32:5d:6a:14:35:c4:61:df:7a:c5:42:5f:25:8e:35:3d:00:38:
4e:b4:85:bb:5f:90:ff:49:a0:5c:da:29:14:2d:47:96:28:fa:
70:2b:61:e3:30:76:ee:86:ea:70:5b:9d:13:b9:20:3d:5a:a4:
0e:e1:fd:35:fe:5e:bd:91:36:f8:b3:11:e0:3b:8e:6b:09:99:
1f:07:4d:60:bd:71:de:f9:35:c3:a1:eb:7d:f6:57:7a:d6:ce:
f8:82:96:3c:d2:9a:d8:4e:ee:15:c0:50:22:ba:95:2b:e8:19:
12:c0:2a:c1:fe:ed:87:d2:10:99:21:ea:fa:ca:2d:f7:41:8a:
ab:d0:d5:c3
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUQK9hXneGrg51wIFOEVWc0dmfo14wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzgxMjg1QUUxQThDNTk1RDM1NDkxM0QwQjkzRjY5ODJG
Q0RGRDg5ODAeFw0yNTAxMzEwNDU2NTZaFw0yNjAxMzAwNTAxNTZaMDMxMTAvBgNV
BAMTKDMyMjIxOTI2NjZCRUM2NTA4QjgwMDMyQkQxRjU0OTZGREMyOEY3NTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+xnnEYkbr1MfrCwI4IRen4cw
q4U0SI31yzOVYqTa8Ckx50mCAJybABFM5ehoGoiJ6sc3g5nj0oCZt+873ms1AelL
uGgyfuijmSid6Lop4kxtApneXN6HzlHOpG8pL8rgeUTU8m9BWPI7nBaBE/4WZbMV
GAXJ3qBFnS5iM3PyVn/NqFFARNAF1GgtY8xSy7h2r90NdQAqi+T/5/D7ecoz9j9r
IJdWjKASQ4YWtaFHZzRkMN1Ge9cRKPqTxvVEgSS8c3bfUhitavUIpcadgqLGP2y3
YSCtX2BPzs8TKAn0UHXdBcHhviZqdi1+g7tnhRw1ikOEQfIY58TLKVuSLHX5AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUMiIZJma+xlCLgAMr0fVJb9wo91kwHwYDVR0j
BBgwFoAUeBKFrhqMWV01SRPQuT9pgvzf2JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
Mjc1ZmQ3Ni1lOGVlLTQ2YzgtOWQ4Mi1iNzM1YjlmNzA0MzEvMC83ODEyODVBRTFB
OEM1OTVEMzU0OTEzRDBCOTNGNjk4MkZDREZEODk4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzgxMjg1QUUxQThDNTk1RDM1NDkxM0QwQjkzRjY5ODJGQ0RG
RDg5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNzVmZDc2LWU4ZWUtNDZjOC05
ZDgyLWI3MzViOWY3MDQzMS8wLzMxMzAzMzJlMzkzMTJlMzEzNDM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1uUMA0GCSqG
SIb3DQEBCwUAA4IBAQAI3k2s3aCj/UwesmYzStsbAPz/5pI8zAp8eTM48ZCB+E8X
nfysjNoLs5OU8w7P5MbbR/ssSFcyEdZLFP6IgMUplB9dbfl0EssAheJ3Kbn8tG+X
diBEHUoiGflMdjTgkXUigSsZToAVF9CZNfnbN0zVFn2vzIzV72m4yjROLyEyXWoU
NcRh33rFQl8ljjU9ADhOtIW7X5D/SaBc2ikULUeWKPpwK2HjMHbuhupwW50TuSA9
WqQO4f01/l69kTb4sxHgO45rCZkfB01gvXHe+TXDoet99ld61s74gpY80prYTu4V
wFAiupUr6BkSwCrB/u2H0hCZIer6yi33QYqr0NXD
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:01:54 2025 by rpki-client