Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138322e302f32332d3234203d3e20313335343738.roa
File: 3130332e3132312e3138322e302f32332d3234203d3e20313335343738.roa (raw, json)
Hash identifier: EVf2WcFs3bKP8tYqDIaCEQ9aXkKueuElwWbdJ2ysh6o=
Subject key identifier: C8:2F:DE:A3:F5:4A:EA:BB:FF:6D:EB:0C:61:B8:B6:A3:82:4F:BF:DE
Certificate issuer: /CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20
Certificate serial: 079E31D5B24558582065397C10D0B575178D1CB8
Authority key identifier: AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138322e302f32332d3234203d3e20313335343738.roa
Signing time: Wed 04 Dec 2024 09:03:08 +0000
ROA not before: Wed 04 Dec 2024 08:58:08 +0000
ROA not after: Wed 03 Dec 2025 09:03:08 +0000
asID: 135478
IP address blocks: 103.121.182.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:9e:31:d5:b2:45:58:58:20:65:39:7c:10:d0:b5:75:17:8d:1c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20
Validity
Not Before: Dec 4 08:58:08 2024 GMT
Not After : Dec 3 09:03:08 2025 GMT
Subject: CN=C82FDEA3F54AEABBFF6DEB0C61B8B6A3824FBFDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:2f:db:20:12:42:07:18:c6:28:31:ce:5c:88:
ee:97:f4:ab:5a:fa:30:4a:54:97:d9:aa:93:a4:4b:
cb:82:0f:54:71:0f:c0:dd:b0:06:f5:c6:25:82:1d:
5f:21:03:a5:1a:21:be:f9:a9:ba:94:c5:65:d6:86:
69:51:8c:96:da:4f:ad:12:e9:f1:7c:90:a3:be:fa:
22:0e:6f:98:43:40:35:d3:39:90:83:c2:9a:62:86:
7a:70:e3:03:5d:0e:e6:1f:8e:8f:71:9d:85:91:bb:
87:b4:7d:79:e7:46:b6:07:e5:48:c8:da:c6:5c:63:
e0:f7:f4:7a:be:dc:3e:1d:ec:41:1f:ae:d1:02:84:
f7:ea:a5:d4:0e:b7:9f:f7:6f:3b:26:e0:ac:31:81:
1b:ad:55:9e:4e:b8:85:78:2c:7f:80:29:19:f7:ac:
cb:3f:89:88:3b:78:d8:3c:ad:ec:fc:a3:65:5d:43:
cb:32:e8:ab:08:09:1d:1a:0b:44:5f:ab:63:52:66:
22:73:2a:ad:f9:4b:07:2a:01:dd:dd:de:15:00:07:
b6:a3:d8:aa:da:f4:2d:c5:09:29:4a:04:9b:96:73:
6d:10:cf:94:b9:b9:52:ef:20:43:1f:87:ff:84:62:
ce:02:49:3c:84:15:80:ea:7c:7b:37:d4:bc:38:58:
fa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2F:DE:A3:F5:4A:EA:BB:FF:6D:EB:0C:61:B8:B6:A3:82:4F:BF:DE
X509v3 Authority Key Identifier:
keyid:AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138322e302f32332d3234203d3e20313335343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.182.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:89:d7:11:d3:4f:a3:96:32:e9:d0:9f:5c:75:f7:d4:0b:ad:
2f:10:7e:fd:06:d8:f9:cd:f8:ef:27:21:86:0d:8f:c4:8a:39:
ae:df:8e:91:14:8a:b4:b1:90:69:02:ef:26:79:dc:09:f0:db:
f9:b0:3c:5e:1d:cd:44:ee:c3:ab:45:07:39:aa:26:88:ba:0a:
3e:0e:30:74:d9:ac:7a:9c:1a:10:fa:62:53:59:37:7e:14:53:
ff:b8:b7:3d:f4:cd:7b:0b:f9:a2:9e:8e:de:4d:99:55:87:55:
99:01:81:1d:fb:45:a9:33:80:66:54:40:71:20:13:35:d6:0a:
b1:a1:21:1a:da:33:07:eb:8c:28:29:fa:27:5c:e4:f5:84:47:
b4:97:61:f6:b5:7e:a3:a5:a2:b8:28:08:8f:77:67:b0:88:56:
a6:aa:58:3d:ec:5f:48:bf:e4:54:c0:0e:74:6a:92:3d:3d:5c:
1b:25:35:04:ae:ae:48:05:de:f3:d4:97:07:d9:cb:ca:8d:22:
75:db:b3:12:ca:b0:a9:f4:e6:f6:a0:9a:d2:2e:ed:03:24:ed:
1a:0a:87:ea:30:b2:02:5e:da:8c:1e:06:f7:54:b9:22:89:c3:
29:60:9c:d6:4e:6a:f0:0e:d9:9a:f0:32:0f:fa:c1:64:65:ee:
cc:9d:33:3e
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUB54x1bJFWFggZTl8ENC1dReNHLgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2
OUZGNUUyMDAeFw0yNDEyMDQwODU4MDhaFw0yNTEyMDMwOTAzMDhaMDMxMTAvBgNV
BAMTKEM4MkZERUEzRjU0QUVBQkJGRjZERUIwQzYxQjhCNkEzODI0RkJGREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6L9sgEkIHGMYoMc5ciO6X9Kta
+jBKVJfZqpOkS8uCD1RxD8DdsAb1xiWCHV8hA6UaIb75qbqUxWXWhmlRjJbaT60S
6fF8kKO++iIOb5hDQDXTOZCDwppihnpw4wNdDuYfjo9xnYWRu4e0fXnnRrYH5UjI
2sZcY+D39Hq+3D4d7EEfrtEChPfqpdQOt5/3bzsm4KwxgRutVZ5OuIV4LH+AKRn3
rMs/iYg7eNg8rez8o2VdQ8sy6KsICR0aC0Rfq2NSZiJzKq35SwcqAd3d3hUAB7aj
2Kra9C3FCSlKBJuWc20Qz5S5uVLvIEMfh/+EYs4CSTyEFYDqfHs31Lw4WPoNAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUyC/eo/VK6rv/besMYbi2o4JPv94wHwYDVR0j
BBgwFoAUrnthqcFnk3hMwlzsApVRbGn/XiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
ZTg5NWNlYi0yNzc3LTRhZDktOTJkYi00ODczZTQ4NWMxZjYvMC9BRTdCNjFBOUMx
Njc5Mzc4NENDMjVDRUMwMjk1NTE2QzY5RkY1RTIwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2OUZG
NUUyMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlODk1Y2ViLTI3NzctNGFkOS05
MmRiLTQ4NzNlNDg1YzFmNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzIyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnebYwDQYJ
KoZIhvcNAQELBQADggEBAGqJ1xHTT6OWMunQn1x199QLrS8Qfv0G2PnN+O8nIYYN
j8SKOa7fjpEUirSxkGkC7yZ53Anw2/mwPF4dzUTuw6tFBzmqJoi6Cj4OMHTZrHqc
GhD6YlNZN34UU/+4tz30zXsL+aKejt5NmVWHVZkBgR37RakzgGZUQHEgEzXWCrGh
IRraMwfrjCgp+idc5PWER7SXYfa1fqOlorgoCI93Z7CIVqaqWD3sX0i/5FTADnRq
kj09XBslNQSurkgF3vPUlwfZy8qNInXbsxLKsKn05vagmtIu7QMk7RoKh+owsgJe
2oweBvdUuSKJwylgnNZOavAO2ZrwMg/6wWRl7sydMz4=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:27 2025 by rpki-client