Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa
File: 3131392e31302e3137362e302f32342d3234203d3e203234353330.roa (raw, json)
Hash identifier: kLmEQPQ/od1FdskOnhWMMgPU8rf3JMAMKcmeKR1b8o8=
Subject key identifier: 72:8B:3E:04:EE:C5:A2:79:4E:36:55:F1:4A:E9:8B:6A:D2:23:72:D6
Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Certificate serial: 31633A7CFAE3E568164AA77CA72779612DCAF7DB
Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa
Signing time: Tue 03 Sep 2024 12:00:02 +0000
ROA not before: Tue 03 Sep 2024 11:55:02 +0000
ROA not after: Tue 02 Sep 2025 12:00:02 +0000
asID: 24530
IP address blocks: 119.10.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:63:3a:7c:fa:e3:e5:68:16:4a:a7:7c:a7:27:79:61:2d:ca:f7:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Validity
Not Before: Sep 3 11:55:02 2024 GMT
Not After : Sep 2 12:00:02 2025 GMT
Subject: CN=728B3E04EEC5A2794E3655F14AE98B6AD22372D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:77:50:36:89:67:aa:05:91:8c:3d:78:7a:c1:
28:cd:d8:46:20:f6:41:7a:3f:48:4f:1b:02:82:60:
d8:fe:9c:93:ed:85:b8:b6:95:b4:e3:a8:46:55:9d:
f3:eb:b1:ad:34:46:c0:a3:b5:19:d8:77:e9:a9:40:
56:d4:ed:bd:44:5c:1b:15:bf:e3:91:dd:32:4b:d3:
a6:55:2e:8b:e4:a3:03:3c:12:ec:7b:90:61:8d:46:
26:8e:1d:08:0e:fd:0b:01:3a:2b:fa:97:83:f0:c6:
37:9b:82:91:0f:4b:12:ad:c1:b4:52:51:c1:e2:0f:
e4:9d:6c:a4:10:c1:e3:79:7b:ff:8f:b5:01:0f:89:
6f:94:04:f9:02:65:79:da:7a:72:76:11:75:5b:d0:
97:60:51:1a:5a:18:b5:5a:88:15:00:e0:6d:d8:e8:
50:50:2b:02:28:60:45:44:8b:db:83:1e:8c:b1:6f:
e7:a8:0e:9c:fc:3c:d2:0d:03:c3:ec:e2:ba:b2:ed:
17:52:d4:da:c1:50:56:79:4f:28:dc:65:50:8e:43:
76:11:b3:c1:a2:82:6b:5b:13:a6:0c:91:56:9a:f9:
55:02:85:b7:71:30:68:1a:0b:93:e2:18:f6:09:d4:
73:ef:00:73:e9:74:4c:ad:bc:cc:db:da:10:84:6f:
f4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8B:3E:04:EE:C5:A2:79:4E:36:55:F1:4A:E9:8B:6A:D2:23:72:D6
X509v3 Authority Key Identifier:
keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3137362e302f32342d3234203d3e203234353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.10.176.0/24
Signature Algorithm: sha256WithRSAEncryption
42:3b:60:30:29:26:38:fe:2c:ba:be:cd:f4:fc:ed:40:3a:da:
8f:8e:41:77:5d:67:b4:52:b2:c4:d6:fc:3b:7f:75:c9:d5:43:
e3:36:b8:da:43:b2:4d:06:c9:ac:dc:9e:60:d7:67:de:b4:11:
20:47:6d:16:f2:e2:10:17:d3:58:74:f9:57:33:42:2a:b9:e3:
eb:e0:38:bf:d5:e5:b6:6d:92:83:9d:6e:f1:d5:70:d9:e7:6a:
af:9f:bd:8c:3f:ce:0a:32:d4:fc:f9:f6:d4:25:a3:ae:a8:7b:
b0:56:8a:a0:86:3f:1d:87:b4:06:d0:c9:e2:49:01:7e:c6:36:
42:ef:ff:d2:2e:c1:30:53:df:dd:7c:33:89:63:a3:67:93:fc:
97:86:a7:c8:e5:5c:36:9c:03:c3:d3:e3:b0:14:c1:63:b3:56:
8c:b5:6f:f8:2c:a8:75:d6:6e:48:73:5a:f2:f1:5c:3d:aa:78:
a2:09:7f:a8:91:7c:fe:f3:d7:8d:ef:34:7d:f5:fc:27:4f:4f:
d9:c4:93:58:f3:5e:71:85:90:db:cd:98:20:38:93:0f:a9:e2:
71:62:63:7a:b5:7e:db:84:3b:ad:dd:18:b3:b3:09:01:41:3a:
d2:b9:b1:b2:67:53:e2:ef:8a:3d:79:f8:62:d1:03:ad:78:28:
b3:5a:10:ad
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUMWM6fPrj5WgWSqd8pyd5YS3K99swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC
RjcxRkI0MDAeFw0yNDA5MDMxMTU1MDJaFw0yNTA5MDIxMjAwMDJaMDMxMTAvBgNV
BAMTKDcyOEIzRTA0RUVDNUEyNzk0RTM2NTVGMTRBRTk4QjZBRDIyMzcyRDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxd1A2iWeqBZGMPXh6wSjN2EYg
9kF6P0hPGwKCYNj+nJPthbi2lbTjqEZVnfPrsa00RsCjtRnYd+mpQFbU7b1EXBsV
v+OR3TJL06ZVLovkowM8Eux7kGGNRiaOHQgO/QsBOiv6l4PwxjebgpEPSxKtwbRS
UcHiD+SdbKQQweN5e/+PtQEPiW+UBPkCZXnaenJ2EXVb0JdgURpaGLVaiBUA4G3Y
6FBQKwIoYEVEi9uDHoyxb+eoDpz8PNINA8Ps4rqy7RdS1NrBUFZ5TyjcZVCOQ3YR
s8GigmtbE6YMkVaa+VUChbdxMGgaC5PiGPYJ1HPvAHPpdEytvMzb2hCEb/TZAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUcos+BO7FonlONlXxSumLatIjctYwHwYDVR0j
BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5
OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx
RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05
MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzNzM2MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcKsDANBgkqhkiG
9w0BAQsFAAOCAQEAQjtgMCkmOP4sur7N9PztQDraj45Bd11ntFKyxNb8O391ydVD
4za42kOyTQbJrNyeYNdn3rQRIEdtFvLiEBfTWHT5VzNCKrnj6+A4v9Xltm2Sg51u
8dVw2edqr5+9jD/OCjLU/Pn21CWjrqh7sFaKoIY/HYe0BtDJ4kkBfsY2Qu//0i7B
MFPf3XwziWOjZ5P8l4anyOVcNpwDw9PjsBTBY7NWjLVv+CyoddZuSHNa8vFcPap4
ogl/qJF8/vPXje80ffX8J09P2cSTWPNecYWQ282YIDiTD6nicWJjerV+24Q7rd0Y
s7MJAUE60rmxsmdT4u+KPXn4YtEDrXgos1oQrQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:48:20 2025 by rpki-client