Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3231302e3139332e302f32342d3234203d3e203338353236.roa
File: 3130332e3231302e3139332e302f32342d3234203d3e203338353236.roa (raw, json)
Hash identifier: 9yye+03Fj1e22ei3jZD8TgEHt8rr+C5XwQ1zmjEP/ug=
Subject key identifier: 03:3C:79:03:67:91:C4:D2:55:EC:9B:41:A7:A7:69:4B:7A:81:AC:13
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 0E0D4D169628CCA8C0863BB7DCEFE93B22BE0125
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3231302e3139332e302f32342d3234203d3e203338353236.roa
Signing time: Tue 21 Jan 2025 08:00:01 +0000
ROA not before: Tue 21 Jan 2025 07:55:01 +0000
ROA not after: Tue 20 Jan 2026 08:00:01 +0000
asID: 38526
IP address blocks: 103.210.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:0d:4d:16:96:28:cc:a8:c0:86:3b:b7:dc:ef:e9:3b:22:be:01:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Jan 21 07:55:01 2025 GMT
Not After : Jan 20 08:00:01 2026 GMT
Subject: CN=033C79036791C4D255EC9B41A7A7694B7A81AC13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:fb:cb:a8:eb:2e:38:52:56:eb:94:20:06:
fb:3f:c7:d4:aa:4e:62:e6:06:da:44:08:a6:1c:1c:
4d:c5:bd:8e:ba:c5:d3:43:b3:55:3d:1b:9e:3f:91:
d5:6f:9e:6b:02:24:7a:7a:7a:63:2d:f0:33:05:0e:
dd:10:36:87:c2:7a:76:f4:27:bb:ee:27:8b:8b:bd:
5d:17:f3:0f:23:fc:64:43:9e:b4:12:23:80:a9:b9:
27:7e:58:44:a9:a0:f9:ce:f0:50:e9:3e:5e:c5:df:
2c:70:3b:41:98:53:87:fa:34:a1:f2:81:b3:5b:dd:
e4:73:89:a8:8a:ad:c2:60:31:10:cb:a1:dc:ea:5b:
8e:bd:3a:fc:d7:cb:48:d9:f3:6b:e2:a8:42:a7:bc:
49:36:43:c7:c3:bd:b9:36:a6:23:f8:c2:f0:50:e6:
14:ca:f4:4e:a5:d0:5b:f8:19:c5:c1:18:7d:cf:05:
20:f6:23:f6:00:b9:38:aa:77:77:32:fa:51:e9:82:
2c:96:62:4f:31:a8:bf:39:ea:01:33:98:1f:2e:8b:
10:7a:d6:17:c4:36:c4:3c:52:33:47:32:16:cf:38:
1f:0c:47:3b:c2:0f:8b:99:1b:02:83:c8:40:42:d1:
2a:24:48:e2:22:2d:70:97:d8:06:58:30:0c:d6:27:
51:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3C:79:03:67:91:C4:D2:55:EC:9B:41:A7:A7:69:4B:7A:81:AC:13
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3231302e3139332e302f32342d3234203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.210.193.0/24
Signature Algorithm: sha256WithRSAEncryption
57:34:e2:45:70:61:11:40:17:70:a3:b5:c6:a1:fe:9c:05:81:
30:1e:c0:ff:b3:1e:13:4e:c1:58:43:cb:80:ac:de:3f:d4:45:
28:ab:28:bc:99:f3:03:51:4a:a1:92:2a:84:ba:34:c3:9a:47:
ea:03:59:c3:ed:ce:38:13:3f:80:5d:2a:27:0d:b2:fb:b0:d8:
62:81:ab:11:51:08:07:01:50:8a:52:57:10:32:f7:30:8a:43:
ea:de:28:a9:9f:04:cb:50:83:5a:99:3c:0a:81:94:24:f3:eb:
a2:6f:59:e5:48:c9:7c:c7:e7:1f:e2:ea:6f:ff:76:f8:8e:d7:
a5:46:8c:3f:d1:6e:63:ac:f6:de:11:4a:fb:43:2f:4c:dc:cd:
6d:59:63:4b:d9:62:e3:5f:cb:7b:2c:55:c3:3e:93:06:15:0a:
61:54:57:8a:ff:c2:22:98:80:a1:24:8d:33:72:70:80:09:a9:
3c:5c:1b:d7:7c:18:cf:28:cb:60:4f:11:39:ff:07:02:c9:fc:
16:f8:92:03:81:bc:2d:0c:2e:8e:71:e7:82:96:0a:2a:64:46:
a6:1f:2d:62:62:e0:48:09:77:70:8e:59:88:87:09:dd:41:56:
7e:1e:81:b0:b6:c8:b1:f9:c2:91:23:5f:a6:6a:70:22:c3:81:
97:ef:d7:0f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUDg1NFpYozKjAhju33O/pOyK+ASUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx
MzIyNTIwRDAeFw0yNTAxMjEwNzU1MDFaFw0yNjAxMjAwODAwMDFaMDMxMTAvBgNV
BAMTKDAzM0M3OTAzNjc5MUM0RDI1NUVDOUI0MUE3QTc2OTRCN0E4MUFDMTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxAvvLqOsuOFJW65QgBvs/x9Sq
TmLmBtpECKYcHE3FvY66xdNDs1U9G54/kdVvnmsCJHp6emMt8DMFDt0QNofCenb0
J7vuJ4uLvV0X8w8j/GRDnrQSI4CpuSd+WESpoPnO8FDpPl7F3yxwO0GYU4f6NKHy
gbNb3eRziaiKrcJgMRDLodzqW469OvzXy0jZ82viqEKnvEk2Q8fDvbk2piP4wvBQ
5hTK9E6l0Fv4GcXBGH3PBSD2I/YAuTiqd3cy+lHpgiyWYk8xqL856gEzmB8uixB6
1hfENsQ8UjNHMhbPOB8MRzvCD4uZGwKDyEBC0SokSOIiLXCX2AZYMAzWJ1ETAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUAzx5A2eRxNJV7JtBp6dpS3qBrBMwHwYDVR0j
BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy
MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy
NTIwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04
MDM0LTQ2NTI3MzNiOGRkMi8wLzMxMzAzMzJlMzIzMTMwMmUzMTM5MzMyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9LBMA0GCSqG
SIb3DQEBCwUAA4IBAQBXNOJFcGERQBdwo7XGof6cBYEwHsD/sx4TTsFYQ8uArN4/
1EUoqyi8mfMDUUqhkiqEujTDmkfqA1nD7c44Ez+AXSonDbL7sNhigasRUQgHAVCK
UlcQMvcwikPq3iipnwTLUINamTwKgZQk8+uib1nlSMl8x+cf4upv/3b4jtelRow/
0W5jrPbeEUr7Qy9M3M1tWWNL2WLjX8t7LFXDPpMGFQphVFeK/8IimIChJI0zcnCA
Cak8XBvXfBjPKMtgTxE5/wcCyfwW+JIDgbwtDC6OceeClgoqZEamHy1iYuBICXdw
jlmIhwndQVZ+HoGwtsix+cKRI1+manAiw4GX79cP
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:18:32 2025 by rpki-client