Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa
File: 3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa (raw, json)
Hash identifier: HF0dYwlz6vdJov/k+WgwRu0xhExNgUTwhPU6qhbpy2A=
Subject key identifier: E7:59:51:9A:77:3B:6E:78:7C:BF:88:1B:8C:37:16:65:BF:4B:60:CC
Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB
Certificate serial: 4C5D5EA0C6715A78D1547A85EDE639ECA2AEBE4E
Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa
Signing time: Sat 31 Aug 2024 09:01:13 +0000
ROA not before: Sat 31 Aug 2024 08:56:13 +0000
ROA not after: Sat 30 Aug 2025 09:01:13 +0000
asID: 138087
IP address blocks: 103.125.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:5d:5e:a0:c6:71:5a:78:d1:54:7a:85:ed:e6:39:ec:a2:ae:be:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB
Validity
Not Before: Aug 31 08:56:13 2024 GMT
Not After : Aug 30 09:01:13 2025 GMT
Subject: CN=E759519A773B6E787CBF881B8C371665BF4B60CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f5:b0:bd:54:eb:d1:4a:b4:4e:13:33:4c:20:
b3:19:95:cb:fe:a0:d5:0a:ea:65:cb:f2:fa:e4:96:
2b:11:a4:dd:4c:b0:01:21:f7:5e:9e:64:bd:6f:fa:
27:e1:af:8e:b6:80:9c:61:e1:e1:ce:18:9d:6b:f4:
fa:3e:46:a4:0d:65:a3:ef:c2:ea:de:dd:06:ab:66:
53:56:04:4d:f8:f6:46:03:6c:6b:9d:4d:a2:16:ec:
9a:f8:34:08:8f:7f:72:d6:ed:5b:97:c6:68:fc:69:
92:67:08:cd:b7:3d:ec:6d:d1:99:28:31:8b:f6:29:
6c:34:f7:f2:43:ee:17:ff:23:4e:2a:2f:93:22:ee:
9b:d6:e1:80:ca:95:b1:bc:fe:95:5b:03:2b:30:0b:
6e:c0:8c:42:30:20:0b:85:7f:be:9f:57:58:29:5e:
5e:f5:5e:da:bb:c9:32:89:df:70:b1:a5:d7:c2:dd:
16:a5:f6:f0:92:a0:5c:23:41:d7:ef:9b:1d:09:d3:
e4:18:80:80:2b:d1:b8:57:2d:22:20:19:4e:c0:b7:
e4:33:76:c8:72:c2:e0:e5:0e:66:cb:b5:4e:e2:6a:
29:26:02:33:bf:87:f8:32:99:08:ed:3b:35:ec:ef:
a5:35:03:e5:6e:36:0a:5f:32:e7:e1:75:ce:19:71:
9f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:59:51:9A:77:3B:6E:78:7C:BF:88:1B:8C:37:16:65:BF:4B:60:CC
X509v3 Authority Key Identifier:
keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.125.16.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:88:19:3e:c1:9b:c7:15:a8:c0:d5:a0:b2:3c:27:e6:22:ae:
bd:a1:99:63:22:60:03:eb:b1:23:53:a9:10:74:d6:ee:f4:b9:
9e:63:0d:cf:7e:a0:af:1f:15:cf:e6:84:8b:d6:ab:a8:3a:de:
e5:d7:58:80:c2:9f:81:ed:14:d3:76:96:a2:02:f9:d2:54:a5:
39:92:a1:17:32:4b:7a:36:f7:46:20:6a:97:00:30:76:34:02:
d2:34:3c:23:82:7f:72:3b:93:20:86:b6:a7:ef:bb:c7:38:0e:
e9:b3:04:93:07:5a:64:d8:e6:0f:72:29:b5:2d:01:32:0c:44:
1a:5d:1a:4d:b0:10:6f:06:b1:2d:df:41:e8:b8:1e:9c:9d:68:
a1:10:d7:d5:45:16:b3:99:96:26:17:c0:6f:67:53:53:4e:79:
61:f8:18:cf:16:0f:9e:d1:59:f7:3a:63:e7:ae:c1:24:1b:d3:
8e:6d:e6:0a:84:ff:af:0a:1f:e6:0e:50:c1:96:8c:00:53:9e:
5c:85:c5:80:ba:80:9f:49:1f:f9:03:c6:63:1e:6a:dc:8e:56:
0a:4f:ff:c1:6a:5b:37:81:df:83:83:96:ff:05:d3:6e:37:a4:
6c:e3:95:a7:64:6c:e3:84:04:6b:b0:88:b6:6f:58:ba:1f:71:
9a:f1:67:7b
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUTF1eoMZxWnjRVHqF7eY57KKuvk4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0
RDBFMTREQjAeFw0yNDA4MzEwODU2MTNaFw0yNTA4MzAwOTAxMTNaMDMxMTAvBgNV
BAMTKEU3NTk1MTlBNzczQjZFNzg3Q0JGODgxQjhDMzcxNjY1QkY0QjYwQ0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99bC9VOvRSrROEzNMILMZlcv+
oNUK6mXL8vrklisRpN1MsAEh916eZL1v+ifhr462gJxh4eHOGJ1r9Po+RqQNZaPv
wure3QarZlNWBE349kYDbGudTaIW7Jr4NAiPf3LW7VuXxmj8aZJnCM23Pext0Zko
MYv2KWw09/JD7hf/I04qL5Mi7pvW4YDKlbG8/pVbAyswC27AjEIwIAuFf76fV1gp
Xl71Xtq7yTKJ33CxpdfC3Ral9vCSoFwjQdfvmx0J0+QYgIAr0bhXLSIgGU7At+Qz
dshywuDlDmbLtU7iaikmAjO/h/gymQjtOzXs76U1A+VuNgpfMufhdc4ZcZ93AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU51lRmnc7bnh8v4gbjDcWZb9LYMwwHwYDVR0j
BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF
OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF
MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04
NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz
MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ30QMA0GCSqG
SIb3DQEBCwUAA4IBAQDJiBk+wZvHFajA1aCyPCfmIq69oZljImAD67EjU6kQdNbu
9LmeYw3PfqCvHxXP5oSL1quoOt7l11iAwp+B7RTTdpaiAvnSVKU5kqEXMkt6NvdG
IGqXADB2NALSNDwjgn9yO5Mghran77vHOA7pswSTB1pk2OYPcim1LQEyDEQaXRpN
sBBvBrEt30HouB6cnWihENfVRRazmZYmF8BvZ1NTTnlh+BjPFg+e0Vn3OmPnrsEk
G9OObeYKhP+vCh/mDlDBlowAU55chcWAuoCfSR/5A8ZjHmrcjlYKT//Bals3gd+D
g5b/BdNuN6Rs45WnZGzjhARrsIi2b1i6H3Ga8Wd7
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:38:49 2025 by rpki-client