Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa
File: 3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa (raw, json)
Hash identifier: ZRfsCQv1mcZoiRSwy7LI1d6CoRcsZN8L2GBIckM4y/U=
Subject key identifier: 1F:0C:A8:1F:E3:5B:BC:A8:D0:44:1B:C2:2C:01:E9:DB:D3:0D:CC:DF
Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6
Certificate serial: 304F60F29349AC3517E6376ABD2ABDE2466626EB
Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa
Signing time: Wed 19 Feb 2025 16:00:01 +0000
ROA not before: Wed 19 Feb 2025 15:55:01 +0000
ROA not after: Wed 18 Feb 2026 16:00:01 +0000
asID: 140472
IP address blocks: 103.144.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:4f:60:f2:93:49:ac:35:17:e6:37:6a:bd:2a:bd:e2:46:66:26:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6
Validity
Not Before: Feb 19 15:55:01 2025 GMT
Not After : Feb 18 16:00:01 2026 GMT
Subject: CN=1F0CA81FE35BBCA8D0441BC22C01E9DBD30DCCDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:78:00:8e:de:3f:8b:38:94:1c:cb:e3:7b:67:
e0:d3:95:12:c9:6e:87:fe:6b:d0:d0:83:ad:44:36:
10:58:bc:f6:b2:98:5c:92:18:4a:d3:b7:79:cb:24:
d5:39:4f:c7:8e:9b:aa:46:ff:2b:57:e1:ac:b4:cf:
e2:88:8c:30:d5:89:ae:0b:cf:4a:cc:1d:db:ff:b3:
b2:54:02:1d:e9:47:8f:82:13:98:70:b8:39:9a:58:
86:98:1e:b0:bc:d8:70:7c:21:78:f9:51:da:56:66:
44:41:73:53:ca:ef:72:b0:1e:5b:61:fc:68:14:17:
22:b5:ad:aa:88:53:93:86:f4:b7:35:e4:66:54:b3:
75:51:03:92:04:09:d2:ab:f8:30:4d:a1:aa:df:df:
09:f1:8f:94:19:47:7d:14:88:75:5f:0e:a7:ad:69:
e8:23:42:f2:51:cc:c9:cf:49:84:ed:93:a1:99:22:
ec:6b:9a:c0:98:62:d9:01:25:0c:bc:db:c8:16:7a:
1c:3f:3b:26:2e:64:23:46:37:80:e7:5b:18:d4:0f:
d9:5c:b7:5a:45:46:90:09:22:7c:0c:c1:da:c7:b0:
f9:a5:5d:56:66:69:80:4d:55:0a:1e:e4:65:79:f3:
49:c4:f1:40:0a:d1:ea:71:cf:26:4e:f6:84:de:ba:
75:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0C:A8:1F:E3:5B:BC:A8:D0:44:1B:C2:2C:01:E9:DB:D3:0D:CC:DF
X509v3 Authority Key Identifier:
keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.46.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:40:cb:e4:21:3a:5d:0e:d0:e8:28:f7:2e:fe:1c:95:04:47:
53:c6:82:74:58:e9:dd:ac:b0:18:6e:a9:d5:2e:56:ee:85:7a:
ab:28:9d:83:16:a4:38:c7:73:ec:b3:07:6d:0d:27:06:ad:1f:
3f:f5:ce:60:a8:6c:50:cb:7f:28:03:ad:0b:42:34:34:55:73:
ca:f7:46:0f:91:5e:73:93:12:7b:a1:89:6b:6f:88:25:96:ba:
ff:a4:a5:fb:30:8c:a1:05:68:75:cb:b0:b5:1c:9c:b9:77:b3:
6e:86:66:e2:09:84:09:9c:08:b3:3a:18:62:23:55:be:45:38:
e0:a2:c1:dd:64:d8:9d:96:d3:d3:c0:f9:63:f8:6c:ad:68:2c:
49:c3:e0:f9:62:67:e7:e9:9b:d4:90:3b:e7:40:cc:78:4b:03:
b3:e2:c7:a0:22:c5:d3:30:1a:6c:54:22:b1:95:ba:e3:fd:de:
1c:cb:32:02:5a:bd:e3:c8:0c:d6:14:f4:c1:a6:f5:b3:d1:a6:
bb:80:f5:f6:c4:85:08:ac:d5:fe:2b:ad:19:6e:02:04:61:ae:
51:81:bd:e8:74:0a:1f:d4:22:d0:2d:6f:23:db:54:12:4f:92:
04:bc:51:4d:93:b6:b5:e2:72:e1:26:60:83:6d:76:8a:64:e6:
ae:88:74:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:26:05 2025 by rpki-client