Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa
File: 3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa (raw, json)
Hash identifier: eS4FjrViWLyiilxg1RkpEK5h3em7xO1B2/rM7GMa+rk=
Subject key identifier: 0E:9C:18:FB:76:CD:20:33:2D:A4:1C:5E:11:31:11:95:66:94:A5:41
Certificate issuer: /CN=064A8F9FBD487AB04370A31B7D603B27E6674937
Certificate serial: 58778BB3C2B746CD40A490D655443531E0411F86
Authority key identifier: 06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa
Signing time: Fri 21 Mar 2025 08:00:00 +0000
ROA not before: Fri 21 Mar 2025 07:55:00 +0000
ROA not after: Fri 20 Mar 2026 08:00:00 +0000
asID: 139423
IP address blocks: 103.144.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:77:8b:b3:c2:b7:46:cd:40:a4:90:d6:55:44:35:31:e0:41:1f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064A8F9FBD487AB04370A31B7D603B27E6674937
Validity
Not Before: Mar 21 07:55:00 2025 GMT
Not After : Mar 20 08:00:00 2026 GMT
Subject: CN=0E9C18FB76CD20332DA41C5E113111956694A541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c4:af:6e:6c:3c:11:3f:5b:54:cc:c1:4d:31:
56:06:f1:be:6c:84:54:b1:cb:d3:21:29:a6:62:79:
52:63:e8:2a:a1:06:e9:7b:50:66:7f:62:3b:5b:07:
d9:73:be:4b:92:bb:63:65:dd:28:3e:49:23:af:17:
61:0d:33:a1:47:69:1b:15:38:d9:22:20:c1:b5:18:
39:c9:46:15:5f:9a:bb:76:09:f9:f4:be:70:9f:e5:
44:72:7e:55:4d:c0:55:13:67:2f:3e:7a:62:3b:99:
b7:3a:65:17:69:fc:6b:0d:dc:56:f4:85:25:3f:0c:
e2:ae:e4:93:9b:0b:13:44:b8:93:75:22:ed:47:48:
55:83:54:c0:f4:16:c1:31:bf:e2:a0:16:7d:4a:b6:
1b:9a:cd:1a:41:0a:b8:2b:a9:59:64:00:87:21:43:
8e:e4:b6:09:a7:37:d0:2e:ee:ff:4d:64:d6:72:4a:
63:ec:d3:1a:41:55:54:18:d1:0a:16:53:55:7c:82:
29:b4:ee:75:9d:5c:cf:de:7a:c9:0f:d7:63:eb:66:
06:34:f0:93:a9:38:0b:37:5d:8c:7e:62:da:ed:8c:
98:bb:90:77:69:20:5b:c9:b3:35:12:b7:3a:8e:a0:
f3:be:3a:5c:dc:5d:72:33:63:20:62:1b:1d:e0:43:
fc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9C:18:FB:76:CD:20:33:2D:A4:1C:5E:11:31:11:95:66:94:A5:41
X509v3 Authority Key Identifier:
keyid:06:4A:8F:9F:BD:48:7A:B0:43:70:A3:1B:7D:60:3B:27:E6:67:49:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/064A8F9FBD487AB04370A31B7D603B27E6674937.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/064A8F9FBD487AB04370A31B7D603B27E6674937.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/341ff3e2-76b6-4833-86b5-82f3fa4ebcb7/0/3130332e3134342e32302e302f32332d3234203d3e20313339343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.20.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:6e:b4:ae:cf:9b:88:5c:83:ad:80:77:36:f6:77:82:e8:47:
0c:b3:a8:c9:90:d3:05:af:06:d8:3e:1d:4f:33:65:51:0d:38:
6d:89:64:4c:f5:97:c8:a6:26:f8:84:0e:5a:d1:53:9b:01:d3:
5c:44:20:e4:8f:26:71:90:22:e8:e5:ab:a7:e9:ec:29:99:cb:
24:d7:f0:8f:b0:4c:0b:4b:6e:3f:66:e6:bf:7b:52:b7:09:57:
a4:82:28:08:b8:37:14:05:67:be:a0:32:5e:66:2b:bb:a7:a5:
b7:b4:b6:07:d7:1e:88:4e:95:9d:0d:31:f2:11:42:9f:40:b1:
bf:ed:62:e3:dd:9a:d7:34:04:af:20:8e:6d:35:07:34:a1:9b:
8d:fe:0e:3a:29:4b:b5:3a:37:39:91:c7:eb:8b:9c:f6:af:7f:
b9:40:38:78:ff:ec:79:e3:62:ae:47:45:fd:bc:a1:a2:75:29:
52:80:51:55:8e:34:d8:e7:c3:a8:40:48:a4:58:fb:63:dc:e5:
34:37:7d:b5:4f:9e:0c:b7:10:eb:2e:a2:e1:c9:2c:67:6b:77:
54:0f:eb:1f:91:07:26:1b:b4:fc:0e:c0:ef:4e:d7:ce:69:c5:
9a:1c:dc:7e:f1:a9:60:6e:29:57:d3:58:1e:80:69:f6:64:30:
22:84:98:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:38 2025 by rpki-client