Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32332d3234203d3e20313337333733.roa
File: 3130332e3132302e36342e302f32332d3234203d3e20313337333733.roa (raw, json)
Hash identifier: iFaAxi0PM/hgZKE/oQtyBH44ESJg2ZCsggHfIjGB4BQ=
Subject key identifier: 13:F7:7D:4E:52:B6:B3:B8:24:06:2A:10:D3:62:FA:54:9D:64:38:BB
Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E
Certificate serial: 3FB954971A844F8F2F97BE6922BB3BDCEE226FDE
Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32332d3234203d3e20313337333733.roa
Signing time: Tue 04 Feb 2025 17:00:01 +0000
ROA not before: Tue 04 Feb 2025 16:55:01 +0000
ROA not after: Tue 03 Feb 2026 17:00:01 +0000
asID: 137373
IP address blocks: 103.120.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:b9:54:97:1a:84:4f:8f:2f:97:be:69:22:bb:3b:dc:ee:22:6f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E
Validity
Not Before: Feb 4 16:55:01 2025 GMT
Not After : Feb 3 17:00:01 2026 GMT
Subject: CN=13F77D4E52B6B3B824062A10D362FA549D6438BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:ce:c7:f8:8c:6d:65:01:6c:b1:f9:f5:64:
86:97:6f:c0:22:a3:52:5d:94:a3:14:0c:18:b9:98:
df:61:cb:a7:22:c0:8e:54:ba:dd:53:04:6e:9b:07:
e2:6b:36:10:23:76:33:52:a4:50:94:97:71:07:2b:
0b:91:d9:48:ea:c9:3d:10:4e:f3:22:d7:ee:41:99:
6e:3f:ef:06:02:14:4d:88:38:4d:f0:c8:ec:02:a8:
b4:98:34:75:f4:8b:80:f0:ff:b2:e7:c0:2c:84:ea:
a1:22:bb:cf:f8:a3:03:03:03:19:fe:b9:b0:67:5f:
3f:90:53:5d:e8:a6:80:37:0f:43:36:df:95:b6:70:
90:10:0a:6f:db:49:07:ea:fd:95:28:55:9a:57:70:
22:af:16:05:97:24:43:9d:18:4b:38:8a:67:6c:55:
92:6a:b2:ae:47:fc:3b:4e:95:0b:8a:47:49:18:ad:
e0:64:69:84:63:4a:db:4d:72:7b:50:c2:a5:41:11:
8e:b9:f5:bb:5a:30:41:af:db:cc:05:41:27:99:79:
4c:16:77:d1:1b:f0:7b:80:0b:6e:80:c4:32:3d:4d:
e8:e8:7f:4b:e7:c5:06:ea:20:77:15:30:9f:60:07:
b4:d5:f4:71:93:6a:6b:0f:0b:98:0f:49:d7:d6:5e:
91:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F7:7D:4E:52:B6:B3:B8:24:06:2A:10:D3:62:FA:54:9D:64:38:BB
X509v3 Authority Key Identifier:
keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36342e302f32332d3234203d3e20313337333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.120.64.0/23
Signature Algorithm: sha256WithRSAEncryption
17:97:da:e4:a4:dd:16:dd:09:37:09:e2:91:fa:00:6d:c9:a2:
ca:cd:96:a1:e1:4d:31:e7:c1:13:da:fa:ef:98:4e:fb:a2:c3:
94:22:04:0c:1a:db:e3:f7:e0:18:b6:77:46:5e:9a:e6:9f:95:
29:b3:a2:93:bf:a8:6b:d5:97:bb:be:87:ce:68:fd:cf:9f:e2:
c4:86:f5:ab:83:95:27:84:5a:9f:b5:31:ff:21:c7:3f:23:b0:
d7:fe:35:45:ec:ed:9d:1f:61:52:ac:47:db:a0:1a:6e:8b:ef:
2c:3b:9d:a2:3a:3d:fb:78:d2:95:18:f7:19:86:32:60:80:b1:
12:fb:79:2a:78:76:2a:0d:cb:1a:8d:a4:0e:f1:1f:3c:1b:af:
ef:70:80:b8:b2:3c:e9:48:9d:8b:12:a2:d7:c5:27:95:09:ae:
00:46:e5:1f:6b:f8:57:6f:64:65:ac:6c:07:80:a4:e6:ca:49:
86:02:06:37:ff:e2:1d:10:3c:fa:55:19:c5:6f:80:f5:de:1f:
65:ff:0b:70:41:95:e8:95:62:31:7e:e6:51:57:38:b4:c4:60:
b1:f8:58:a9:ed:e8:19:33:ef:1b:b7:9d:1e:68:87:18:dc:cf:
71:60:db:5d:50:a4:a5:cf:bf:46:dc:71:48:96:70:98:c4:45:
dc:1f:7b:c9
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUP7lUlxqET48vl75pIrs73O4ib94wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVF
NTY2Rjk0RTAeFw0yNTAyMDQxNjU1MDFaFw0yNjAyMDMxNzAwMDFaMDMxMTAvBgNV
BAMTKDEzRjc3RDRFNTJCNkIzQjgyNDA2MkExMEQzNjJGQTU0OUQ2NDM4QkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5jc7H+IxtZQFssfn1ZIaXb8Ai
o1JdlKMUDBi5mN9hy6ciwI5Uut1TBG6bB+JrNhAjdjNSpFCUl3EHKwuR2UjqyT0Q
TvMi1+5BmW4/7wYCFE2IOE3wyOwCqLSYNHX0i4Dw/7LnwCyE6qEiu8/4owMDAxn+
ubBnXz+QU13opoA3D0M235W2cJAQCm/bSQfq/ZUoVZpXcCKvFgWXJEOdGEs4imds
VZJqsq5H/DtOlQuKR0kYreBkaYRjSttNcntQwqVBEY659btaMEGv28wFQSeZeUwW
d9Eb8HuAC26AxDI9Tejof0vnxQbqIHcVMJ9gB7TV9HGTamsPC5gPSdfWXpGRAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUE/d9TlK2s7gkBioQ02L6VJ1kOLswHwYDVR0j
BBgwFoAUa2R/aWqbtccYYF6JIr7xvuVm+U4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
ODZlNDZlYy1kZjVjLTRiNGQtYTMwZS0xMGIyYzY4OGMyZmMvMC82QjY0N0Y2OTZB
OUJCNUM3MTg2MDVFODkyMkJFRjFCRUU1NjZGOTRFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVFNTY2
Rjk0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h
MzBlLTEwYjJjNjg4YzJmYy8wLzMxMzAzMzJlMzEzMjMwMmUzNjM0MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3hAMA0GCSqG
SIb3DQEBCwUAA4IBAQAXl9rkpN0W3Qk3CeKR+gBtyaLKzZah4U0x58ET2vrvmE77
osOUIgQMGtvj9+AYtndGXprmn5Ups6KTv6hr1Ze7vofOaP3Pn+LEhvWrg5UnhFqf
tTH/Icc/I7DX/jVF7O2dH2FSrEfboBpui+8sO52iOj37eNKVGPcZhjJggLES+3kq
eHYqDcsajaQO8R88G6/vcIC4sjzpSJ2LEqLXxSeVCa4ARuUfa/hXb2RlrGwHgKTm
ykmGAgY3/+IdEDz6VRnFb4D13h9l/wtwQZXolWIxfuZRVzi0xGCx+Fip7egZM+8b
t50eaIcY3M9xYNtdUKSlz79G3HFIlnCYxEXcH3vJ
-----END CERTIFICATE-----
Generated at Sun Apr 6 18:59:03 2025 by rpki-client