Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32342d3234203d3e20313530353530.roa
File: 3130332e38352e35362e302f32342d3234203d3e20313530353530.roa (raw, json)
Hash identifier: ZDyxHBlNGIzYgtnVCT1eXLwOr1vFMRFU8WTMZvphid0=
Subject key identifier: 12:58:B5:2D:07:F0:63:48:00:C1:B4:A6:08:31:C6:C1:A5:A1:E4:FA
Certificate issuer: /CN=60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A
Certificate serial: 2467B3388886135EE69C0BC26BF37EF6AF772E7D
Authority key identifier: 60:BD:54:CF:D6:7B:2F:FF:B1:3B:54:7D:9F:06:CE:DF:8E:B1:19:6A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32342d3234203d3e20313530353530.roa
Signing time: Sun 19 Jan 2025 04:01:04 +0000
ROA not before: Sun 19 Jan 2025 03:56:04 +0000
ROA not after: Sun 18 Jan 2026 04:01:04 +0000
asID: 150550
IP address blocks: 103.85.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:67:b3:38:88:86:13:5e:e6:9c:0b:c2:6b:f3:7e:f6:af:77:2e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A
Validity
Not Before: Jan 19 03:56:04 2025 GMT
Not After : Jan 18 04:01:04 2026 GMT
Subject: CN=1258B52D07F0634800C1B4A60831C6C1A5A1E4FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:78:48:a1:54:3d:34:a1:df:ac:e6:c3:35:06:
d4:04:36:fd:f2:55:2e:71:25:29:ff:57:61:24:f2:
e0:5b:cb:85:5b:e2:5b:60:85:50:c2:b2:82:e0:40:
72:08:ff:56:a6:05:7f:aa:3f:65:f5:65:e0:82:cc:
6f:be:9a:e2:43:cf:bd:c3:7d:d5:c0:7b:eb:5e:0b:
e7:aa:57:25:48:e7:06:fd:d1:f7:f5:54:fb:a1:e1:
04:24:3c:f7:51:8a:55:b4:5e:28:8f:f3:02:c4:ff:
83:aa:e1:78:e8:8e:b5:4b:ba:f5:47:3c:fb:4e:cb:
b7:ba:1d:af:4b:99:1c:eb:d0:b5:84:98:ce:52:21:
cd:7f:55:25:f5:c5:28:c0:19:bd:0a:8c:42:45:c7:
9c:06:39:b9:58:d8:23:32:82:8e:95:ce:fc:7c:b2:
8a:f6:ed:30:ab:f3:b6:bc:e4:73:ba:65:99:2a:0f:
c4:15:35:b2:a0:61:94:4c:62:ce:91:7d:df:7e:a5:
d5:cc:f3:24:95:a5:26:a6:02:b2:af:c5:71:83:a3:
ba:c7:3e:e3:fa:12:be:8e:80:9b:a2:1d:00:e4:8f:
9d:ba:83:33:99:d7:6f:a9:18:db:ae:ec:2f:4f:cb:
a0:3b:40:c0:da:de:09:e8:05:f6:ad:f4:7d:76:d0:
56:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:58:B5:2D:07:F0:63:48:00:C1:B4:A6:08:31:C6:C1:A5:A1:E4:FA
X509v3 Authority Key Identifier:
keyid:60:BD:54:CF:D6:7B:2F:FF:B1:3B:54:7D:9F:06:CE:DF:8E:B1:19:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60BD54CFD67B2FFFB13B547D9F06CEDF8EB1196A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea57613b-8b04-4c45-bedf-4ab061d4dcf9/0/3130332e38352e35362e302f32342d3234203d3e20313530353530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.85.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:5f:79:ae:31:4e:a0:0f:90:fe:f5:ce:90:28:1b:64:c4:07:
75:f2:21:0d:ed:db:ee:d5:a8:54:68:6b:f2:50:48:d7:89:d4:
ce:94:9b:41:00:54:6a:05:32:e0:16:91:85:43:25:bc:fa:89:
62:d5:9e:6d:e4:91:fd:7e:22:9c:ba:08:05:73:a9:21:aa:85:
a2:f4:74:0e:71:b7:39:f5:15:18:3a:36:fc:53:9c:8b:5a:8d:
4c:b7:b4:fe:f8:af:7e:92:65:e0:cb:7c:e4:8a:6a:df:8a:16:
e6:e3:88:f2:4c:ff:3c:83:e8:18:b4:d2:75:d7:7f:76:93:d2:
b1:6e:cd:a1:fe:04:bc:45:1d:73:f8:08:fe:96:00:fb:b0:a5:
e1:b6:3d:7c:dc:55:0f:97:d9:f1:9c:20:5f:2a:cf:58:a3:9d:
f8:d4:cb:b5:ac:64:87:9e:75:ea:e8:9a:48:12:8e:9c:c7:b9:
88:f6:28:69:33:57:2d:c8:b2:eb:2e:cd:a8:b6:e2:5c:cb:d8:
4e:15:06:7a:7c:fc:50:d3:18:9b:6d:d1:3a:25:53:64:1b:10:
bc:eb:0f:9e:3c:da:70:1f:11:5e:2a:a8:1a:06:ed:0c:3c:05:
ab:f6:5f:d7:76:91:eb:94:41:c1:85:e0:1f:c2:22:39:3d:d4:
b9:22:1b:19
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUJGezOIiGE17mnAvCa/N+9q93Ln0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjBCRDU0Q0ZENjdCMkZGRkIxM0I1NDdEOUYwNkNFREY4
RUIxMTk2QTAeFw0yNTAxMTkwMzU2MDRaFw0yNjAxMTgwNDAxMDRaMDMxMTAvBgNV
BAMTKDEyNThCNTJEMDdGMDYzNDgwMEMxQjRBNjA4MzFDNkMxQTVBMUU0RkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVeEihVD00od+s5sM1BtQENv3y
VS5xJSn/V2Ek8uBby4Vb4ltghVDCsoLgQHII/1amBX+qP2X1ZeCCzG++muJDz73D
fdXAe+teC+eqVyVI5wb90ff1VPuh4QQkPPdRilW0XiiP8wLE/4Oq4XjojrVLuvVH
PPtOy7e6Ha9LmRzr0LWEmM5SIc1/VSX1xSjAGb0KjEJFx5wGOblY2CMygo6Vzvx8
sor27TCr87a85HO6ZZkqD8QVNbKgYZRMYs6Rfd9+pdXM8ySVpSamArKvxXGDo7rH
PuP6Er6OgJuiHQDkj526gzOZ12+pGNuu7C9Py6A7QMDa3gnoBfat9H120FbnAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUEli1LQfwY0gAwbSmCDHGwaWh5PowHwYDVR0j
BBgwFoAUYL1Uz9Z7L/+xO1R9nwbO346xGWowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
YTU3NjEzYi04YjA0LTRjNDUtYmVkZi00YWIwNjFkNGRjZjkvMC82MEJENTRDRkQ2
N0IyRkZGQjEzQjU0N0Q5RjA2Q0VERjhFQjExOTZBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjBCRDU0Q0ZENjdCMkZGRkIxM0I1NDdEOUYwNkNFREY4RUIx
MTk2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNTc2MTNiLThiMDQtNGM0NS1i
ZWRmLTRhYjA2MWQ0ZGNmOS8wLzMxMzAzMzJlMzgzNTJlMzUzNjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdVODANBgkqhkiG
9w0BAQsFAAOCAQEASl95rjFOoA+Q/vXOkCgbZMQHdfIhDe3b7tWoVGhr8lBI14nU
zpSbQQBUagUy4BaRhUMlvPqJYtWebeSR/X4inLoIBXOpIaqFovR0DnG3OfUVGDo2
/FOci1qNTLe0/vivfpJl4Mt85Ipq34oW5uOI8kz/PIPoGLTSddd/dpPSsW7Nof4E
vEUdc/gI/pYA+7Cl4bY9fNxVD5fZ8ZwgXyrPWKOd+NTLtaxkh5516uiaSBKOnMe5
iPYoaTNXLciy6y7NqLbiXMvYThUGenz8UNMYm23ROiVTZBsQvOsPnjzacB8RXiqo
GgbtDDwFq/Zf13aR65RBwYXgH8IiOT3UuSIbGQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:07 2025 by rpki-client