Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32332d3233203d3e203234353330.roa
File: 3131392e31302e3138302e302f32332d3233203d3e203234353330.roa (raw, json)
Hash identifier: kHw5hH5+IfpLbksfP3QZEjTxkepAiasbWHMw4A7m3b0=
Subject key identifier: 1B:72:F7:45:F5:00:D3:E0:BF:10:DE:B0:92:79:30:7C:BE:CF:08:64
Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Certificate serial: 461A2B3696142909C3FD0ADF6F9C7E8B1996A43C
Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32332d3233203d3e203234353330.roa
Signing time: Tue 03 Sep 2024 13:00:01 +0000
ROA not before: Tue 03 Sep 2024 12:55:01 +0000
ROA not after: Tue 02 Sep 2025 13:00:01 +0000
asID: 24530
IP address blocks: 119.10.180.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:1a:2b:36:96:14:29:09:c3:fd:0a:df:6f:9c:7e:8b:19:96:a4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Validity
Not Before: Sep 3 12:55:01 2024 GMT
Not After : Sep 2 13:00:01 2025 GMT
Subject: CN=1B72F745F500D3E0BF10DEB09279307CBECF0864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f5:d1:5c:a1:93:34:8f:d7:5c:9a:57:36:da:
7f:00:ce:5f:90:07:cf:e0:e8:98:c4:19:14:24:19:
0d:45:69:51:cd:37:5f:48:be:bd:73:48:28:b2:73:
6f:a0:de:4c:61:1d:ec:35:e1:1b:93:08:c1:7a:d9:
83:fd:b9:75:3f:88:71:f9:bd:69:c2:e4:5e:48:10:
0d:e5:74:3a:38:16:8b:9c:cd:e0:92:bd:bc:60:48:
53:75:d4:79:4c:e8:36:2d:87:66:a3:dc:60:b2:32:
d4:c2:09:54:c2:bd:24:9b:1a:24:f6:e2:4b:26:b6:
6f:df:e2:ac:b6:e1:cb:32:87:24:fc:bc:10:83:37:
6d:8c:80:92:ad:e7:f2:c9:8a:14:c1:5a:27:da:5b:
f0:f1:3c:3e:00:e8:82:f5:86:05:c7:93:3a:21:10:
93:7c:27:0c:62:b7:ca:4e:ff:4e:1c:32:0e:d5:2c:
05:21:e2:57:5f:db:df:55:68:c8:a7:a9:95:69:0b:
74:6c:ae:27:86:c7:20:d0:8a:16:d3:40:93:84:56:
62:4e:71:f7:01:6f:19:05:c9:6a:d5:0d:f2:0c:a9:
e0:2a:4d:a9:e8:96:a2:30:63:b6:37:86:79:19:c0:
b2:6d:8b:87:8b:ab:34:0d:89:31:2b:15:78:cb:3c:
8d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:72:F7:45:F5:00:D3:E0:BF:10:DE:B0:92:79:30:7C:BE:CF:08:64
X509v3 Authority Key Identifier:
keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/3131392e31302e3138302e302f32332d3233203d3e203234353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.10.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:c3:3d:8b:69:97:1e:77:7a:36:a2:4a:1b:85:df:cf:5b:56:
ef:ea:4d:36:57:ac:fb:e0:45:05:62:45:c6:3b:6c:80:fc:a0:
70:3a:9f:ec:3a:3e:e7:5e:1a:b4:11:31:1f:80:22:55:11:ff:
b9:bd:54:e4:af:1f:76:2f:9a:14:71:c9:ec:6b:4f:b0:5e:25:
b7:bd:59:68:cc:48:76:c7:13:1a:e6:82:df:90:b9:87:63:4a:
06:ff:87:b6:b1:db:98:70:df:64:b0:a3:fd:b1:d6:dc:28:d6:
0b:c7:6c:ba:f2:d0:4c:55:98:e3:0b:3b:6f:9e:17:84:82:23:
9a:e7:2d:8c:83:6f:79:af:69:8c:91:07:32:bf:d1:c6:21:7b:
77:ca:e3:b3:ad:08:d7:55:97:1e:21:0b:d7:da:b6:97:10:ca:
d3:e6:9f:19:70:4a:84:da:f3:8b:de:df:d7:fe:1e:83:59:8d:
b9:b0:22:83:b5:f3:4e:f7:65:95:8b:7e:4a:35:ed:2d:05:f1:
05:bd:1c:a6:d2:c7:c2:90:05:b1:9f:85:b9:74:bf:2e:98:85:
66:7d:e2:35:39:40:65:b8:f3:25:46:2a:37:7d:e2:45:3e:04:
b4:e5:d5:fa:3a:08:41:1b:e8:cc:aa:8b:42:c6:58:7e:b2:87:
d5:52:0c:93
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIURhorNpYUKQnD/Qrfb5x+ixmWpDwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC
RjcxRkI0MDAeFw0yNDA5MDMxMjU1MDFaFw0yNTA5MDIxMzAwMDFaMDMxMTAvBgNV
BAMTKDFCNzJGNzQ1RjUwMEQzRTBCRjEwREVCMDkyNzkzMDdDQkVDRjA4NjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi9dFcoZM0j9dcmlc22n8Azl+Q
B8/g6JjEGRQkGQ1FaVHNN19Ivr1zSCiyc2+g3kxhHew14RuTCMF62YP9uXU/iHH5
vWnC5F5IEA3ldDo4FouczeCSvbxgSFN11HlM6DYth2aj3GCyMtTCCVTCvSSbGiT2
4ksmtm/f4qy24csyhyT8vBCDN22MgJKt5/LJihTBWifaW/DxPD4A6IL1hgXHkzoh
EJN8Jwxit8pO/04cMg7VLAUh4ldf299VaMinqZVpC3RsrieGxyDQihbTQJOEVmJO
cfcBbxkFyWrVDfIMqeAqTanolqIwY7Y3hnkZwLJti4eLqzQNiTErFXjLPI3dAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUG3L3RfUA0+C/EN6wknkwfL7PCGQwHwYDVR0j
BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5
OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx
RkI0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05
MmQ2LTg5NGRkNTM4Y2FkZi8wLzMxMzEzOTJlMzEzMDJlMzEzODMwMmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzIzNDM1MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXcKtDANBgkqhkiG
9w0BAQsFAAOCAQEAH8M9i2mXHnd6NqJKG4Xfz1tW7+pNNles++BFBWJFxjtsgPyg
cDqf7Do+514atBExH4AiVRH/ub1U5K8fdi+aFHHJ7GtPsF4lt71ZaMxIdscTGuaC
35C5h2NKBv+HtrHbmHDfZLCj/bHW3CjWC8dsuvLQTFWY4ws7b54XhIIjmuctjINv
ea9pjJEHMr/RxiF7d8rjs60I11WXHiEL19q2lxDK0+afGXBKhNrzi97f1/4eg1mN
ubAig7XzTvdllYt+SjXtLQXxBb0cptLHwpAFsZ+FuXS/LpiFZn3iNTlAZbjzJUYq
N33iRT4EtOXV+joIQRvozKqLQsZYfrKH1VIMkw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:43:00 2025 by rpki-client