Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32342d3234203d3e20313432333130.roa
File: 3130332e3136382e34362e302f32342d3234203d3e20313432333130.roa (raw, json)
Hash identifier: LxlhGvniVX1DZYQ1W62yOkB/KkKuWv10+O7NsPderxM=
Subject key identifier: 41:E3:36:AE:31:50:5E:49:96:EA:EA:C0:8B:6F:B0:A9:46:22:AA:75
Certificate issuer: /CN=F2CC4B38295BA8B211B55A53DA0ACB76DA636E70
Certificate serial: 3C599877D3DEEB46E787907DBDEB8B11C7F309DF
Authority key identifier: F2:CC:4B:38:29:5B:A8:B2:11:B5:5A:53:DA:0A:CB:76:DA:63:6E:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2CC4B38295BA8B211B55A53DA0ACB76DA636E70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32342d3234203d3e20313432333130.roa
Signing time: Fri 14 Mar 2025 11:00:04 +0000
ROA not before: Fri 14 Mar 2025 10:55:04 +0000
ROA not after: Fri 13 Mar 2026 11:00:04 +0000
asID: 142310
IP address blocks: 103.168.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:59:98:77:d3:de:eb:46:e7:87:90:7d:bd:eb:8b:11:c7:f3:09:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2CC4B38295BA8B211B55A53DA0ACB76DA636E70
Validity
Not Before: Mar 14 10:55:04 2025 GMT
Not After : Mar 13 11:00:04 2026 GMT
Subject: CN=41E336AE31505E4996EAEAC08B6FB0A94622AA75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:09:7a:db:49:77:b6:47:78:fb:0a:d2:23:73:
a4:db:17:be:73:0d:4a:fa:e8:4d:5e:35:e4:09:19:
12:c5:e4:b1:10:b8:b2:d8:4b:36:6b:b9:13:eb:0c:
1a:ce:4d:cf:1f:66:39:20:ed:86:f6:c3:5a:9d:f1:
d3:77:cf:fa:1d:76:ea:0d:55:7e:88:82:5d:79:b3:
9d:8a:3a:b7:31:ac:90:0a:21:17:a7:5a:5f:d1:76:
b0:21:3c:81:ae:54:97:96:3c:10:90:36:27:49:9d:
18:ff:9a:76:3a:a8:b0:42:a2:b4:64:95:b2:e2:e2:
2d:92:ed:09:63:6f:d5:4f:dc:c9:28:df:45:3c:ca:
f5:4d:94:0d:34:8b:8d:84:c2:5a:0a:a5:76:3d:b6:
83:0e:7f:a0:97:4d:3d:4b:83:62:9d:c4:12:b1:5b:
92:9e:a1:ad:27:bd:08:f8:63:a6:ac:ca:45:7d:89:
3d:5f:71:38:f4:f9:90:d7:15:7f:e7:dd:5b:d5:4f:
1b:99:5a:4b:81:0b:57:f1:ca:df:83:bb:46:56:e6:
b4:c8:be:9e:d8:e3:0c:38:00:c1:37:c3:ce:b4:69:
4b:ce:78:7f:0f:67:b3:63:a6:80:cd:28:74:4b:f8:
b5:bc:67:e4:84:2a:68:6e:bb:fe:64:cb:30:c4:aa:
e3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E3:36:AE:31:50:5E:49:96:EA:EA:C0:8B:6F:B0:A9:46:22:AA:75
X509v3 Authority Key Identifier:
keyid:F2:CC:4B:38:29:5B:A8:B2:11:B5:5A:53:DA:0A:CB:76:DA:63:6E:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/F2CC4B38295BA8B211B55A53DA0ACB76DA636E70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2CC4B38295BA8B211B55A53DA0ACB76DA636E70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f4293c64-ea00-413f-9090-2b190b1a45af/0/3130332e3136382e34362e302f32342d3234203d3e20313432333130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.46.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ee:ae:01:42:03:49:58:ea:07:e3:59:8a:2a:44:4a:df:b7:
63:ed:b9:c0:64:fb:b6:9b:39:ab:1a:06:6e:71:4b:fc:22:ac:
85:58:29:16:29:0a:61:56:53:c2:e3:64:b3:86:53:81:19:c1:
b4:d5:1f:af:5e:e8:59:a8:35:c7:91:47:dd:8b:f2:48:1b:35:
73:34:07:9d:2e:38:fc:a5:79:38:ef:d6:b7:57:63:96:30:71:
f9:3e:c7:ba:85:69:91:ff:da:26:1d:dc:cd:fa:1d:bf:fd:5a:
4e:5d:9d:0d:13:1d:8c:d5:99:9e:c9:49:f5:f9:61:56:1d:81:
fb:13:17:f6:81:8c:71:2f:f2:1e:b0:90:a4:e8:ee:ab:61:4c:
95:4c:03:13:9d:5b:14:07:53:4a:31:47:4a:49:ef:58:c8:de:
95:6b:37:36:05:ac:ea:0b:b6:56:02:14:fa:59:de:43:e3:53:
12:95:0f:1c:54:9a:3f:fa:e7:89:97:fe:ee:1b:26:ad:f4:c9:
0d:92:9e:bb:a7:a3:74:cc:8d:97:84:8a:c4:97:6c:ea:f5:0b:
6c:72:c5:47:91:c3:a6:8c:12:b7:27:b9:ee:5e:5a:c9:34:12:
f5:2c:e8:24:a4:b1:7b:f5:76:53:77:18:53:01:36:3e:f9:15:
1c:28:39:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:18:32 2025 by rpki-client