Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa
File: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (raw, json)
Hash identifier: RjVxvxxbyDiQSv718+JovDu9zNSEKhSMEBDdXzJXwvE=
Subject key identifier: 7A:E3:94:A1:F7:80:44:5E:F5:FE:08:84:E7:40:97:FD:F2:11:79:F7
Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38
Certificate serial: 37A52842520348A908DE175246B603A593B1AFF3
Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa
Signing time: Sun 01 Dec 2024 05:00:02 +0000
ROA not before: Sun 01 Dec 2024 04:55:02 +0000
ROA not after: Sun 30 Nov 2025 05:00:02 +0000
asID: 150487
IP address blocks: 103.55.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:a5:28:42:52:03:48:a9:08:de:17:52:46:b6:03:a5:93:b1:af:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38
Validity
Not Before: Dec 1 04:55:02 2024 GMT
Not After : Nov 30 05:00:02 2025 GMT
Subject: CN=7AE394A1F780445EF5FE0884E74097FDF21179F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:87:5b:9c:97:8d:9c:61:3a:e3:24:b9:8f:c0:
27:bf:5e:16:ff:cc:2a:58:0d:12:de:07:66:50:3a:
45:b8:2a:5c:a1:4e:27:4c:be:a9:4f:25:6e:59:74:
bb:73:42:13:35:a3:33:8d:b0:14:7a:fa:07:3b:bc:
19:a7:53:bd:9b:fa:bc:8b:b0:4b:b4:3a:87:44:46:
3c:eb:da:ca:7d:54:28:71:d1:d6:59:ba:3c:41:99:
db:7c:76:f0:3a:52:bb:c5:0f:18:e2:1b:ff:22:00:
62:d8:8e:7a:a7:66:a8:31:ff:0d:1e:6a:70:2e:6d:
88:b8:9b:31:70:77:59:27:2d:70:ce:8e:60:fd:d3:
e7:1a:78:2f:d7:be:53:7b:5c:ba:17:15:d0:7a:25:
ba:f9:5a:4a:e3:1a:76:29:66:33:22:8a:ed:4d:8b:
eb:f7:fa:cc:4d:18:ed:ce:48:eb:94:a2:d0:66:f7:
9c:f9:e4:6e:83:9c:61:36:43:94:06:bd:35:35:50:
ee:ca:cd:a1:a0:95:1f:63:3c:f1:20:11:76:13:9f:
5a:87:2b:b8:ec:36:2a:86:ea:52:71:0c:ca:9d:84:
bb:03:d5:66:fd:af:41:72:1d:e7:67:b7:40:e7:82:
6c:2a:69:44:f5:6f:89:67:cd:e1:5d:7e:9a:08:c5:
3c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E3:94:A1:F7:80:44:5E:F5:FE:08:84:E7:40:97:FD:F2:11:79:F7
X509v3 Authority Key Identifier:
keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/3130332e35352e32382e302f32342d3234203d3e20313530343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.55.28.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e4:b3:ce:eb:b6:bb:0a:f9:4a:30:1e:07:03:35:67:1b:27:
4d:6f:b8:2e:83:bf:d8:89:59:d3:6a:ea:ee:2f:7d:10:bb:03:
5e:c9:5b:73:17:35:b1:8e:ee:cb:93:4c:8b:04:22:c6:4f:e3:
63:33:6c:1d:32:96:4d:eb:cf:c9:56:5e:ea:dd:4b:5b:8a:89:
a7:4d:d4:ea:c0:31:d2:c8:14:37:8a:d8:60:d1:a9:ec:13:f7:
e9:ec:bf:04:b9:13:67:be:a5:eb:6b:2d:80:58:01:74:b1:ac:
41:63:0c:1a:d1:2b:98:6c:59:17:9b:82:12:74:cf:c9:49:f8:
5f:b5:17:e3:76:f7:be:44:36:bd:fc:aa:68:0a:84:d5:b8:a6:
d7:c0:43:e0:57:5b:d6:92:69:91:d6:b9:e0:08:0b:f4:c7:50:
f5:09:c2:b7:b5:49:70:e8:d3:0c:2d:53:0f:54:55:1f:03:9e:
8f:49:8f:f6:be:8b:7c:14:34:b4:e6:72:0a:80:06:bc:c7:13:
f9:bc:ec:87:fa:fc:eb:6d:0a:5b:4d:c8:0c:ee:75:5d:17:db:
23:ea:fc:89:82:e7:bb:64:83:7a:cc:e6:d5:61:3c:c2:ad:1b:
9b:d5:b7:d9:02:83:f7:04:9a:c1:a8:f9:2e:99:6c:b4:0d:33:
72:04:55:29
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUN6UoQlIDSKkI3hdSRrYDpZOxr/MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1
MEUzNkEzODAeFw0yNDEyMDEwNDU1MDJaFw0yNTExMzAwNTAwMDJaMDMxMTAvBgNV
BAMTKDdBRTM5NEExRjc4MDQ0NUVGNUZFMDg4NEU3NDA5N0ZERjIxMTc5RjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoh1ucl42cYTrjJLmPwCe/Xhb/
zCpYDRLeB2ZQOkW4KlyhTidMvqlPJW5ZdLtzQhM1ozONsBR6+gc7vBmnU72b+ryL
sEu0OodERjzr2sp9VChx0dZZujxBmdt8dvA6UrvFDxjiG/8iAGLYjnqnZqgx/w0e
anAubYi4mzFwd1knLXDOjmD90+caeC/XvlN7XLoXFdB6Jbr5WkrjGnYpZjMiiu1N
i+v3+sxNGO3OSOuUotBm95z55G6DnGE2Q5QGvTU1UO7KzaGglR9jPPEgEXYTn1qH
K7jsNiqG6lJxDMqdhLsD1Wb9r0FyHednt0DngmwqaUT1b4lnzeFdfpoIxTzDAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUeuOUofeARF71/giE50CX/fIRefcwHwYDVR0j
BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz
NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz
NkEzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNjLWMyMDktNDY5YS04
ZTNjLWViM2Y1YTgzODYzZi8wLzMxMzAzMzJlMzUzNTJlMzIzODJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc3HDANBgkqhkiG
9w0BAQsFAAOCAQEAg+Szzuu2uwr5SjAeBwM1ZxsnTW+4LoO/2IlZ02rq7i99ELsD
Xslbcxc1sY7uy5NMiwQixk/jYzNsHTKWTevPyVZe6t1LW4qJp03U6sAx0sgUN4rY
YNGp7BP36ey/BLkTZ76l62stgFgBdLGsQWMMGtErmGxZF5uCEnTPyUn4X7UX43b3
vkQ2vfyqaAqE1bim18BD4Fdb1pJpkda54AgL9MdQ9QnCt7VJcOjTDC1TD1RVHwOe
j0mP9r6LfBQ0tOZyCoAGvMcT+bzsh/r8620KW03IDO51XRfbI+r8iYLnu2SDeszm
1WE8wq0bm9W32QKD9wSawaj5LplstA0zcgRVKQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:46 2025 by rpki-client