Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f957fa5d-fa67-4e6b-8920-c4747adb30bb/0/3230332e3137352e3130322e302f32332d3234203d3e20313532303134.roa
File: 3230332e3137352e3130322e302f32332d3234203d3e20313532303134.roa (raw, json)
Hash identifier: Jwv0gA8fk3yoBN8wNHBZ8Dx27fR4hWBf2um8D+vcr6o=
Subject key identifier: 0A:10:56:A4:30:02:29:63:8B:6D:1E:BB:61:FA:03:39:28:EA:FB:29
Certificate issuer: /CN=1911AE41845DEE2EB88490C5767E3C1A6E30E808
Certificate serial: 5BC55FCEFF68559DCBD4EEBDD10AAF2792B9C2F9
Authority key identifier: 19:11:AE:41:84:5D:EE:2E:B8:84:90:C5:76:7E:3C:1A:6E:30:E8:08
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1911AE41845DEE2EB88490C5767E3C1A6E30E808.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f957fa5d-fa67-4e6b-8920-c4747adb30bb/0/3230332e3137352e3130322e302f32332d3234203d3e20313532303134.roa
Signing time: Wed 26 Feb 2025 10:00:01 +0000
ROA not before: Wed 26 Feb 2025 09:55:01 +0000
ROA not after: Wed 25 Feb 2026 10:00:01 +0000
asID: 152014
IP address blocks: 203.175.102.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:c5:5f:ce:ff:68:55:9d:cb:d4:ee:bd:d1:0a:af:27:92:b9:c2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1911AE41845DEE2EB88490C5767E3C1A6E30E808
Validity
Not Before: Feb 26 09:55:01 2025 GMT
Not After : Feb 25 10:00:01 2026 GMT
Subject: CN=0A1056A4300229638B6D1EBB61FA033928EAFB29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d0:9e:27:25:68:b9:7b:49:36:51:4a:22:10:
72:f7:81:a7:fd:57:7f:d2:80:9c:46:41:0a:8c:27:
03:be:45:98:01:f6:01:fd:6a:0b:d0:f1:d5:f6:94:
28:21:56:23:4d:65:4b:2e:f5:51:66:8c:be:49:bf:
f7:d8:23:75:e7:fa:5d:d5:66:0a:73:c0:b4:e2:58:
21:69:b1:9d:9a:91:21:2f:cb:30:13:bc:89:49:f6:
ca:4e:7d:98:4f:cc:9e:8a:4f:42:6b:94:55:c2:97:
2d:ee:b9:04:7c:79:9a:2a:d0:7b:88:3d:27:1c:5b:
e1:c5:76:3c:75:e3:8f:db:72:49:10:34:7c:93:ba:
f8:aa:78:5d:5e:b5:bf:86:53:06:a0:40:f5:9d:f3:
ce:e4:f7:20:ae:49:14:fb:9e:a0:39:1f:32:d6:d0:
f1:5c:47:ee:8a:de:f7:e5:24:20:ab:aa:de:d4:22:
c4:c7:62:3f:6e:ce:ae:95:c8:f8:ad:94:88:ba:82:
bd:ff:47:87:d2:78:5a:6d:43:b6:c4:52:18:35:e4:
5e:96:44:69:49:ab:3d:71:ba:91:19:ce:86:1b:96:
29:4e:d7:eb:80:84:80:d8:57:bf:df:7f:29:62:76:
91:55:9d:c6:e4:c7:60:76:2e:f9:98:6a:1d:19:24:
3a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:10:56:A4:30:02:29:63:8B:6D:1E:BB:61:FA:03:39:28:EA:FB:29
X509v3 Authority Key Identifier:
keyid:19:11:AE:41:84:5D:EE:2E:B8:84:90:C5:76:7E:3C:1A:6E:30:E8:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f957fa5d-fa67-4e6b-8920-c4747adb30bb/0/1911AE41845DEE2EB88490C5767E3C1A6E30E808.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1911AE41845DEE2EB88490C5767E3C1A6E30E808.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f957fa5d-fa67-4e6b-8920-c4747adb30bb/0/3230332e3137352e3130322e302f32332d3234203d3e20313532303134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.175.102.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:92:01:d3:5c:29:b7:0f:6e:e6:fe:f9:16:1b:ed:3f:a8:c1:
20:87:74:df:ce:dd:96:a6:f3:15:50:cf:43:98:60:30:d2:a6:
b9:de:a9:f1:c5:87:c0:9a:66:9c:cc:c3:86:f9:52:92:26:0c:
a1:40:3e:33:06:69:26:80:3c:b4:c7:52:41:5a:c4:f2:5d:93:
06:db:ad:ce:3d:a4:f6:02:af:db:83:28:64:83:6e:41:4b:c2:
65:e6:67:8c:57:7c:c0:58:9f:10:2a:5a:62:76:ac:40:15:71:
11:f9:b3:21:64:57:fe:03:f6:60:d2:23:e8:75:20:c2:b8:6b:
44:8c:01:cc:e8:69:57:01:08:f7:84:47:0c:2d:38:a7:5f:e6:
82:70:7e:e1:0d:f9:7a:a1:75:f9:13:4f:0b:f3:13:a7:ac:8c:
fa:89:8c:af:ee:90:db:3a:cb:ba:d9:63:a4:88:f4:86:7f:aa:
b2:ab:c1:1d:17:1c:75:bd:d2:43:33:70:a4:ec:01:ce:db:30:
14:5b:ef:5c:21:f2:66:95:fa:de:4a:81:69:dd:9b:23:d9:27:
0e:1b:24:0e:5f:9f:54:ea:ab:1f:27:dd:53:22:46:84:71:74:
c7:40:08:7b:d2:ae:34:51:6e:51:7f:da:9a:70:be:6a:f9:de:
56:a0:3a:c7
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUW8Vfzv9oVZ3L1O690QqvJ5K5wvkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTkxMUFFNDE4NDVERUUyRUI4ODQ5MEM1NzY3RTNDMUE2
RTMwRTgwODAeFw0yNTAyMjYwOTU1MDFaFw0yNjAyMjUxMDAwMDFaMDMxMTAvBgNV
BAMTKDBBMTA1NkE0MzAwMjI5NjM4QjZEMUVCQjYxRkEwMzM5MjhFQUZCMjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh0J4nJWi5e0k2UUoiEHL3gaf9
V3/SgJxGQQqMJwO+RZgB9gH9agvQ8dX2lCghViNNZUsu9VFmjL5Jv/fYI3Xn+l3V
ZgpzwLTiWCFpsZ2akSEvyzATvIlJ9spOfZhPzJ6KT0JrlFXCly3uuQR8eZoq0HuI
PSccW+HFdjx144/bckkQNHyTuviqeF1etb+GUwagQPWd887k9yCuSRT7nqA5HzLW
0PFcR+6K3vflJCCrqt7UIsTHYj9uzq6VyPitlIi6gr3/R4fSeFptQ7bEUhg15F6W
RGlJqz1xupEZzoYblilO1+uAhIDYV7/ffylidpFVncbkx2B2LvmYah0ZJDqDAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUChBWpDACKWOLbR67YfoDOSjq+ykwHwYDVR0j
BBgwFoAUGRGuQYRd7i64hJDFdn48Gm4w6AgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
OTU3ZmE1ZC1mYTY3LTRlNmItODkyMC1jNDc0N2FkYjMwYmIvMC8xOTExQUU0MTg0
NURFRTJFQjg4NDkwQzU3NjdFM0MxQTZFMzBFODA4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTkxMUFFNDE4NDVERUUyRUI4ODQ5MEM1NzY3RTNDMUE2RTMw
RTgwOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NTdmYTVkLWZhNjctNGU2Yi04
OTIwLWM0NzQ3YWRiMzBiYi8wLzMyMzAzMzJlMzEzNzM1MmUzMTMwMzIyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMDMxMzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLr2YwDQYJ
KoZIhvcNAQELBQADggEBAC6SAdNcKbcPbub++RYb7T+owSCHdN/O3Zam8xVQz0OY
YDDSprneqfHFh8CaZpzMw4b5UpImDKFAPjMGaSaAPLTHUkFaxPJdkwbbrc49pPYC
r9uDKGSDbkFLwmXmZ4xXfMBYnxAqWmJ2rEAVcRH5syFkV/4D9mDSI+h1IMK4a0SM
AczoaVcBCPeERwwtOKdf5oJwfuEN+XqhdfkTTwvzE6esjPqJjK/ukNs6y7rZY6SI
9IZ/qrKrwR0XHHW90kMzcKTsAc7bMBRb71wh8maV+t5KgWndmyPZJw4bJA5fn1Tq
qx8n3VMiRoRxdMdACHvSrjRRblF/2ppwvmr53lagOsc=
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:48:15 2025 by rpki-client