Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31362e302f32332d3234203d3e203338313635.roa
File: 3130332e3234372e31362e302f32332d3234203d3e203338313635.roa (raw, json)
Hash identifier: JZKT1hKov2oReOkEzJhrEwMAt2YO8iabNTye4lOuZK0=
Subject key identifier: 45:F1:80:8C:53:A5:5A:CF:7A:5F:37:12:C7:53:4F:E6:51:1B:53:3B
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 5F57BFCF55CA91BFC20F78418A6692040300C0E1
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31362e302f32332d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 03:00:01 +0000
ROA not before: Mon 27 Jan 2025 02:55:01 +0000
ROA not after: Mon 26 Jan 2026 03:00:01 +0000
asID: 38165
IP address blocks: 103.247.16.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:57:bf:cf:55:ca:91:bf:c2:0f:78:41:8a:66:92:04:03:00:c0:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 02:55:01 2025 GMT
Not After : Jan 26 03:00:01 2026 GMT
Subject: CN=45F1808C53A55ACF7A5F3712C7534FE6511B533B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:c6:03:31:db:b1:f0:f6:d7:f5:bd:e3:d7:
83:86:a7:c1:e6:05:f6:fa:b6:30:44:e3:63:6d:14:
32:cf:4f:5c:0b:53:45:86:d5:00:6a:63:7e:0f:14:
58:92:83:a6:1e:f7:de:85:f7:65:f7:ab:13:b8:81:
e4:10:ec:74:31:1b:5b:33:09:b6:fc:3e:f5:3e:ec:
87:0e:88:d7:de:ed:53:ed:22:d8:18:cc:17:e4:84:
15:db:71:be:4e:54:2d:cb:77:82:a8:12:33:9a:71:
ed:42:79:a1:5d:7e:38:90:e5:62:83:76:f1:1d:19:
c6:62:c0:03:31:99:9a:6c:2a:34:c7:b1:5f:f3:48:
b6:d9:41:e4:60:8e:23:09:62:99:57:7e:06:7d:9e:
38:8c:f7:be:08:2c:15:5d:25:53:ae:2b:e9:ca:e0:
fa:5f:74:34:d2:6d:ca:f3:64:d7:9e:0a:82:5c:f6:
75:33:90:61:05:60:a3:dd:60:bb:c3:d5:03:6c:9c:
ec:d3:75:3e:2d:f5:55:17:e8:a7:c8:5d:71:eb:10:
e6:15:61:1e:da:8a:88:b4:5f:5f:0f:f6:93:c4:96:
9a:24:3e:26:2e:b8:ad:dd:b3:c5:9c:88:b8:ff:c4:
45:a5:dc:64:f4:17:21:37:a9:89:e3:2f:f2:da:fb:
39:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F1:80:8C:53:A5:5A:CF:7A:5F:37:12:C7:53:4F:E6:51:1B:53:3B
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31362e302f32332d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.16.0/23
Signature Algorithm: sha256WithRSAEncryption
44:8a:95:ad:e0:d3:27:73:1d:d3:31:d4:b0:c4:11:83:77:75:
3d:8a:0e:8c:78:5e:a6:49:56:33:4a:ec:36:bb:32:9d:7b:42:
e5:a0:64:f6:08:8a:78:3b:6f:67:ed:6c:f8:15:ed:5d:80:a3:
66:9f:f4:30:8d:08:93:44:09:a6:b8:11:5f:f6:57:4d:dd:49:
61:21:91:0c:c2:de:fb:ee:12:b9:4c:6b:eb:34:e4:41:65:be:
25:1a:6e:96:27:87:57:d3:d7:7d:92:86:93:46:f8:aa:6e:ee:
79:00:27:e1:69:5f:fa:7f:67:8b:e2:f4:8a:74:0a:2d:43:7e:
45:2f:f3:02:76:84:b5:12:54:80:61:58:bf:5c:c2:c1:f2:c2:
fc:60:d0:89:ec:eb:c9:d3:38:46:ed:9b:9e:22:9e:de:8a:2c:
8e:21:f6:f5:1e:e7:8d:d7:6f:e0:3f:08:9e:54:66:b8:54:29:
bf:c5:d3:a8:7b:d0:1a:d9:c3:0c:6e:c1:ec:62:60:2f:83:e0:
c7:80:28:2a:9e:57:b5:f4:86:f2:1d:08:27:c5:5e:ee:cd:69:
ec:b7:5a:f3:1c:9d:4a:f8:46:56:7a:69:5e:cf:f2:16:ca:4f:
9e:f3:4b:a4:a1:f6:39:e5:e6:ca:2f:bd:da:60:24:50:72:b5:
cd:f6:d7:61
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUX1e/z1XKkb/CD3hBimaSBAMAwOEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5
NzlEMTA1MzAeFw0yNTAxMjcwMjU1MDFaFw0yNjAxMjYwMzAwMDFaMDMxMTAvBgNV
BAMTKDQ1RjE4MDhDNTNBNTVBQ0Y3QTVGMzcxMkM3NTM0RkU2NTExQjUzM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4BMYDMdux8PbX9b3j14OGp8Hm
Bfb6tjBE42NtFDLPT1wLU0WG1QBqY34PFFiSg6Ye996F92X3qxO4geQQ7HQxG1sz
Cbb8PvU+7IcOiNfe7VPtItgYzBfkhBXbcb5OVC3Ld4KoEjOace1CeaFdfjiQ5WKD
dvEdGcZiwAMxmZpsKjTHsV/zSLbZQeRgjiMJYplXfgZ9njiM974ILBVdJVOuK+nK
4PpfdDTSbcrzZNeeCoJc9nUzkGEFYKPdYLvD1QNsnOzTdT4t9VUX6KfIXXHrEOYV
YR7aioi0X18P9pPElpokPiYuuK3ds8WciLj/xEWl3GT0FyE3qYnjL/La+znpAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQURfGAjFOlWs96XzcSx1NP5lEbUzswHwYDVR0j
BBgwFoAU8sIkFL8I/Aiwrr9E+vhahZedEFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
NzQ0OGMxMS1mOGQzLTQ1N2QtOGUyMi04NDg4N2FiMjJhMzAvMC9GMkMyMjQxNEJG
MDhGQzA4QjBBRUJGNDRGQUY4NUE4NTk3OUQxMDUzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjJDMjI0MTRCRjA4RkMwOEIwQUVCRjQ0RkFGODVBODU5NzlE
MTA1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04
ZTIyLTg0ODg3YWIyMmEzMC8wLzMxMzAzMzJlMzIzNDM3MmUzMTM2MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzMzODMxMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf3EDANBgkqhkiG
9w0BAQsFAAOCAQEARIqVreDTJ3Md0zHUsMQRg3d1PYoOjHhepklWM0rsNrsynXtC
5aBk9giKeDtvZ+1s+BXtXYCjZp/0MI0Ik0QJprgRX/ZXTd1JYSGRDMLe++4SuUxr
6zTkQWW+JRpulieHV9PXfZKGk0b4qm7ueQAn4Wlf+n9ni+L0inQKLUN+RS/zAnaE
tRJUgGFYv1zCwfLC/GDQiezrydM4Ru2bniKe3oosjiH29R7njddv4D8InlRmuFQp
v8XTqHvQGtnDDG7B7GJgL4Pgx4AoKp5XtfSG8h0IJ8Ve7s1p7Lda8xydSvhGVnpp
Xs/yFspPnvNLpKH2OeXmyi+92mAkUHK1zfbXYQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:28 2025 by rpki-client