Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa
File: 3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa (raw, json)
Hash identifier: OsXuery+dqrXtWPBKclCMRfHJTDgT5E1V7vyLlK5GAQ=
Subject key identifier: C2:D3:CF:92:BB:DA:00:37:F6:EC:01:8E:A0:4C:D3:DF:6F:CD:BC:1F
Certificate issuer: /CN=C005531488F38475CA53CB4A7ABCEC0C32F75962
Certificate serial: 5633C0381E522E2A54DA4543071A493EAED14B
Authority key identifier: C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa
Signing time: Tue 18 Feb 2025 09:00:01 +0000
ROA not before: Tue 18 Feb 2025 08:55:01 +0000
ROA not after: Tue 17 Feb 2026 09:00:01 +0000
asID: 58495
IP address blocks: 103.146.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:33:c0:38:1e:52:2e:2a:54:da:45:43:07:1a:49:3e:ae:d1:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C005531488F38475CA53CB4A7ABCEC0C32F75962
Validity
Not Before: Feb 18 08:55:01 2025 GMT
Not After : Feb 17 09:00:01 2026 GMT
Subject: CN=C2D3CF92BBDA0037F6EC018EA04CD3DF6FCDBC1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cf:5e:8b:14:7e:88:31:d7:69:0b:f5:a3:86:
0d:16:da:90:61:52:f8:46:21:26:09:51:5d:52:85:
a0:4f:60:f2:f0:5c:60:59:5c:79:3c:e1:f4:7b:b0:
3b:dd:fa:37:bc:0f:29:65:3c:78:79:7c:bf:c6:0a:
1a:bf:95:66:23:a9:bf:10:32:8d:a3:2c:5e:d6:b7:
f6:64:b3:68:65:dc:16:5f:21:ce:62:c9:ed:f5:69:
cd:24:cf:5b:f1:a1:0e:7a:cd:df:3e:70:d4:83:8b:
86:c5:f2:eb:c9:18:5b:11:f2:a2:43:a7:16:59:a9:
69:eb:01:da:65:8c:d9:e5:a7:e4:fb:44:31:1d:03:
8d:55:9f:84:90:f1:fc:84:c9:94:66:1c:70:b2:93:
8c:48:e4:c5:bb:27:61:0c:75:bc:e0:85:86:ba:26:
ea:2d:40:ad:f3:a8:6b:15:6c:0b:ae:68:5b:e1:25:
98:90:6b:72:00:35:8a:10:4b:68:6d:37:91:c1:18:
16:4a:b2:bc:e5:ee:ac:b5:2b:a7:a8:11:41:d5:24:
7a:0d:64:06:a0:a1:17:3f:dc:c9:74:94:6e:c2:17:
d1:bf:60:c3:09:5c:33:f2:e3:f3:b9:f7:b5:f6:30:
d7:56:ad:a5:49:a4:36:29:78:4a:14:95:a1:2d:a8:
14:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D3:CF:92:BB:DA:00:37:F6:EC:01:8E:A0:4C:D3:DF:6F:CD:BC:1F
X509v3 Authority Key Identifier:
keyid:C0:05:53:14:88:F3:84:75:CA:53:CB:4A:7A:BC:EC:0C:32:F7:59:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/C005531488F38475CA53CB4A7ABCEC0C32F75962.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C005531488F38475CA53CB4A7ABCEC0C32F75962.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1464cbee-c513-46c6-a1d0-3ec01d7a6626/0/3130332e3134362e3138392e302f32342d3234203d3e203538343935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.146.189.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:d6:40:33:a5:ba:e4:66:db:c3:23:93:a2:53:68:9d:fb:05:
1b:95:be:e0:ce:55:41:95:e8:50:92:b7:d7:b1:b7:95:1b:d5:
2e:29:2e:35:d8:ea:7f:03:4f:17:a8:a0:d5:5c:5c:f3:d1:3a:
49:2f:7b:2d:26:56:c4:ce:90:03:51:3a:5a:e5:5e:5b:6b:6e:
ac:95:c1:9d:e9:9f:b4:fe:e5:b3:df:ec:80:eb:54:42:25:a8:
44:30:9b:82:23:b1:79:58:82:89:d6:87:71:df:f1:40:df:eb:
6a:e4:10:2b:6f:fe:c1:f1:ab:0d:83:e6:a5:97:1c:a8:d7:b3:
cd:a0:67:34:48:15:7e:45:da:5e:86:5c:a5:96:3a:63:c4:19:
81:72:61:5f:41:6c:3f:64:aa:3b:b2:5c:fa:63:f4:8f:4d:39:
0c:37:bf:df:2c:dc:ce:ad:75:78:f1:67:87:3c:36:07:46:92:
dc:6c:66:60:50:2f:f6:3d:ba:4b:b3:8f:ab:5d:08:7a:c6:33:
87:dd:04:f3:d6:f7:ba:cd:2d:28:9f:b9:93:77:38:99:a8:22:
d3:9d:29:74:91:94:d3:25:67:75:1b:c9:8f:24:b1:25:20:59:
78:f7:10:b9:a9:2f:4f:f9:74:0f:e9:31:b8:67:9e:0f:b6:72:
fd:3a:4a:26
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgITVjPAOB5SLipU2kVDBxpJPq7RSzANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyhDMDA1NTMxNDg4RjM4NDc1Q0E1M0NCNEE3QUJDRUMwQzMy
Rjc1OTYyMB4XDTI1MDIxODA4NTUwMVoXDTI2MDIxNzA5MDAwMVowMzExMC8GA1UE
AxMoQzJEM0NGOTJCQkRBMDAzN0Y2RUMwMThFQTA0Q0QzREY2RkNEQkMxRjCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL3PXosUfogx12kL9aOGDRbakGFS
+EYhJglRXVKFoE9g8vBcYFlceTzh9HuwO936N7wPKWU8eHl8v8YKGr+VZiOpvxAy
jaMsXta39mSzaGXcFl8hzmLJ7fVpzSTPW/GhDnrN3z5w1IOLhsXy68kYWxHyokOn
FlmpaesB2mWM2eWn5PtEMR0DjVWfhJDx/ITJlGYccLKTjEjkxbsnYQx1vOCFhrom
6i1ArfOoaxVsC65oW+ElmJBrcgA1ihBLaG03kcEYFkqyvOXurLUrp6gRQdUkeg1k
BqChFz/cyXSUbsIX0b9gwwlcM/Lj87n3tfYw11atpUmkNil4ShSVoS2oFIECAwEA
AaOCAjQwggIwMB0GA1UdDgQWBBTC08+Su9oAN/bsAY6gTNPfb828HzAfBgNVHSME
GDAWgBTABVMUiPOEdcpTy0p6vOwMMvdZYjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud
HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0
NjRjYmVlLWM1MTMtNDZjNi1hMWQwLTNlYzAxZDdhNjYyNi8wL0MwMDU1MzE0ODhG
Mzg0NzVDQTUzQ0I0QTdBQkNFQzBDMzJGNzU5NjIuY3JsMHQGCCsGAQUFBwEBBGgw
ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v
SUROSUMtSUQvMi9DMDA1NTMxNDg4RjM4NDc1Q0E1M0NCNEE3QUJDRUMwQzMyRjc1
OTYyLmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQ2NGNiZWUtYzUxMy00NmM2LWEx
ZDAtM2VjMDFkN2E2NjI2LzAvMzEzMDMzMmUzMTM0MzYyZTMxMzgzOTJlMzAyZjMy
MzQyZDMyMzQyMDNkM2UyMDM1MzgzNDM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI
KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkr0wDQYJKoZI
hvcNAQELBQADggEBANbWQDOluuRm28Mjk6JTaJ37BRuVvuDOVUGV6FCSt9ext5Ub
1S4pLjXY6n8DTxeooNVcXPPROkkvey0mVsTOkANROlrlXltrbqyVwZ3pn7T+5bPf
7IDrVEIlqEQwm4IjsXlYgonWh3Hf8UDf62rkECtv/sHxqw2D5qWXHKjXs82gZzRI
FX5F2l6GXKWWOmPEGYFyYV9BbD9kqjuyXPpj9I9NOQw3v98s3M6tdXjxZ4c8NgdG
ktxsZmBQL/Y9ukuzj6tdCHrGM4fdBPPW97rNLSifuZN3OJmoItOdKXSRlNMlZ3Ub
yY8ksSUgWXj3ELmpL0/5dA/pMbhnng+2cv06SiY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:44 2025 by rpki-client