Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa
File: 3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa (raw, json)
Hash identifier: znZGLIjUzURgum/jx4W0HoiMuO981vr9z87dACOch+4=
Subject key identifier: FC:A4:14:C8:DD:95:19:C5:67:01:17:C2:EB:93:72:25:BC:F1:2A:23
Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302
Certificate serial: 777621EBBF50E63850A0A145A4B75DA099AE7076
Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa
Signing time: Tue 25 Mar 2025 09:00:00 +0000
ROA not before: Tue 25 Mar 2025 08:55:00 +0000
ROA not after: Tue 24 Mar 2026 09:00:00 +0000
asID: 150186
IP address blocks: 103.146.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:76:21:eb:bf:50:e6:38:50:a0:a1:45:a4:b7:5d:a0:99:ae:70:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302
Validity
Not Before: Mar 25 08:55:00 2025 GMT
Not After : Mar 24 09:00:00 2026 GMT
Subject: CN=FCA414C8DD9519C5670117C2EB937225BCF12A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:57:03:43:80:9a:ad:04:b1:67:d3:a6:ff:b7:
d2:36:30:ca:f4:6d:e7:84:5a:36:9b:ef:df:0b:b8:
43:68:7d:d9:ea:9c:80:d7:07:e3:ec:d7:f0:1f:84:
c9:fd:8c:b4:11:8b:d2:01:6a:df:0e:8b:bd:31:d2:
89:0a:51:3b:ca:71:eb:b5:67:3d:07:20:6e:2b:11:
ae:26:6e:f0:ad:f6:53:d3:b9:e5:3b:9f:3c:1e:fb:
64:28:9e:3e:d9:9d:33:20:83:ad:2e:8a:09:2e:95:
34:b9:1a:49:17:88:99:28:7e:2d:0a:a3:8a:9d:78:
f5:cd:07:60:4f:95:0e:e0:55:c0:34:d6:85:c0:d1:
41:bc:53:51:f1:90:d3:86:39:ea:11:90:65:b4:e2:
88:fb:b1:7c:d1:91:09:ea:4b:33:51:9c:1b:ed:23:
3f:70:b2:ac:0d:f8:c3:a7:74:2e:1c:23:f0:57:6e:
e7:21:11:d1:06:46:9a:53:33:d6:ba:3a:21:e1:61:
79:1e:3c:3d:c8:2b:07:68:df:3d:a4:19:3d:2d:a4:
91:2f:0e:21:77:42:8b:4d:0a:70:1a:4d:d6:b4:23:
c1:a1:16:9d:73:9f:8d:70:a4:57:78:68:a5:4d:5f:
89:b8:9e:85:d2:62:e1:88:b1:17:0b:13:ce:b3:48:
62:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A4:14:C8:DD:95:19:C5:67:01:17:C2:EB:93:72:25:BC:F1:2A:23
X509v3 Authority Key Identifier:
keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.146.144.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3b:ca:3b:3a:b9:b9:98:0e:b8:2e:cd:cc:e6:b3:f1:c9:92:
26:77:95:ca:0a:ff:3f:94:14:e3:e9:00:90:c6:40:e9:68:3f:
c8:81:29:ad:25:cf:97:cb:c7:53:3b:11:c9:03:f4:8c:3d:69:
a5:74:20:ca:ed:f3:cb:34:b0:11:ad:27:56:c4:d9:b4:ba:91:
54:7a:3f:a0:1e:b1:fa:9d:1c:f0:27:39:53:db:e5:15:f1:ad:
50:43:ce:a3:56:23:5d:b3:82:12:2f:44:1c:3a:9c:28:ba:22:
bd:47:80:9d:9f:98:52:0a:7a:0f:74:41:8f:65:d1:93:0d:45:
a0:e2:15:f8:d3:05:e1:c5:67:4e:bf:ab:2f:ae:34:b4:73:1a:
65:a1:e4:53:14:97:72:f1:18:36:cb:3c:36:bd:5c:8c:6b:6e:
93:46:9b:42:f3:27:29:4c:7a:14:ac:d4:41:d2:84:37:59:9c:
38:f6:58:3e:8b:96:80:68:d7:f2:b4:51:44:15:ed:60:e5:10:
8d:81:4e:22:0a:65:bd:c4:a4:4c:83:aa:ce:87:ef:92:9e:ad:
47:14:63:19:a9:d8:5f:30:99:ec:d2:98:c2:29:7e:09:4d:74:
cb:7f:a8:ec:a0:15:97:4b:52:39:88:5c:a2:27:17:ff:c5:db:
d6:14:ca:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:36:38 2025 by rpki-client