Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32322d3232203d3e203234353330.roa
File: 3131392e31302e3137362e302f32322d3232203d3e203234353330.roa (raw, json)
Hash identifier: Jsc0sEwnIvfzafDdx5P/GKzvW0lqzmukEooIoZhkd4I=
Subject key identifier: 30:2C:48:11:1D:AD:32:61:13:70:14:0C:C3:D2:69:18:10:AD:FA:2F
Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Certificate serial: 74C926AEEBDE8955CEE820263BF3276D865E9F44
Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32322d3232203d3e203234353330.roa
Signing time: Tue 03 Sep 2024 11:00:01 +0000
ROA not before: Tue 03 Sep 2024 10:55:01 +0000
ROA not after: Tue 02 Sep 2025 11:00:01 +0000
asID: 24530
IP address blocks: 119.10.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:c9:26:ae:eb:de:89:55:ce:e8:20:26:3b:f3:27:6d:86:5e:9f:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Validity
Not Before: Sep 3 10:55:01 2024 GMT
Not After : Sep 2 11:00:01 2025 GMT
Subject: CN=302C48111DAD32611370140CC3D2691810ADFA2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:d2:62:02:2e:f4:76:fd:09:a5:b5:1f:c1:
f1:62:26:44:fa:a8:37:69:fc:5a:c5:0c:af:0d:45:
91:a3:c2:25:c4:a3:8d:7c:15:89:8c:60:10:50:88:
2d:f5:ec:f4:25:ef:5a:ac:fc:12:a4:53:57:d2:cd:
78:b0:bf:d0:be:94:f4:c0:b4:3d:9a:30:ba:23:16:
53:40:30:79:ec:33:98:8b:41:2a:fb:9b:6d:26:5e:
37:3a:a8:38:21:36:24:ac:38:c3:19:48:70:ea:e0:
33:cb:48:6e:00:c2:de:4c:47:c4:3e:ad:3a:9d:fe:
fe:21:5e:c5:8f:08:36:54:67:3b:85:02:79:05:76:
3d:2c:c9:4a:60:5c:8f:6b:a3:ca:28:5c:fa:be:ef:
5a:8d:32:f5:65:76:0f:d3:4b:d8:5e:de:de:2c:1e:
56:35:86:c7:6f:51:ce:c3:ca:e5:77:0e:47:1c:0f:
13:41:6e:cc:14:98:96:30:be:68:60:d9:6a:dc:e7:
8d:25:7d:c1:92:1d:74:57:44:75:4a:3f:25:ff:9b:
e2:c1:40:a9:59:2a:1a:22:a9:dd:89:a7:0f:4e:d5:
3c:f0:07:88:fd:6d:9d:5b:73:a9:33:0a:a9:62:cf:
e2:d8:7d:35:1a:09:3a:d0:e7:02:82:d1:56:03:30:
75:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2C:48:11:1D:AD:32:61:13:70:14:0C:C3:D2:69:18:10:AD:FA:2F
X509v3 Authority Key Identifier:
keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32322d3232203d3e203234353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.10.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:13:4c:41:7c:d3:eb:79:95:c5:36:36:c2:8c:16:31:99:1d:
a6:6d:de:da:57:4d:a1:46:aa:a5:cf:8d:b3:c4:e7:75:5e:55:
47:3e:df:fb:1d:b9:0d:8f:01:cc:5c:b2:92:0a:1f:36:c7:7d:
fa:61:e5:3b:3c:30:ff:7d:66:b7:ca:6a:b4:c3:5c:a8:f3:c3:
4c:99:db:cc:f0:81:27:85:7f:90:ff:ea:5d:59:be:bf:97:1e:
1a:e5:7c:f5:be:a6:2e:17:77:59:d2:77:fc:f9:d3:6b:63:27:
f4:97:d4:fe:ef:5d:d1:ba:1b:58:fa:1c:85:40:9d:0d:81:4f:
0b:61:da:38:b2:1e:74:ae:44:71:46:d9:7a:29:93:3b:fb:ce:
7b:ce:53:04:44:59:fa:93:fa:34:34:bc:eb:c6:cf:59:13:4d:
72:e9:94:38:55:e2:44:bd:aa:a9:59:a2:9f:44:7e:db:6a:57:
4c:c5:6a:28:8b:f4:7c:7e:a3:32:9b:f6:68:35:c9:c6:dc:a4:
3e:38:a5:b6:a0:8d:24:81:d5:53:1d:93:57:23:39:30:98:58:
1b:30:f8:22:21:95:4d:08:1f:03:79:fa:53:99:8e:2b:15:02:
df:66:36:22:a5:fa:81:04:e2:b3:64:44:25:90:ba:3a:02:52:
8e:f6:8a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:12:14 2025 by rpki-client