Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa
File: 3131342e3132392e31362e302f32312d3234203d3e203338373538.roa (raw, json)
Hash identifier: EK6IOQrf2rr4CozcXpyHn0lnKDzMTXzhLY1ojyQBefA=
Subject key identifier: 2F:78:6A:13:BC:8D:6F:21:05:2A:00:27:A4:44:B0:6E:F1:02:C2:9D
Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Certificate serial: 0D6ACDA371BD26DE836F72F51F1375349A9FD797
Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa
Signing time: Mon 01 Jul 2024 00:02:12 +0000
ROA not before: Sun 30 Jun 2024 23:57:12 +0000
ROA not after: Mon 30 Jun 2025 00:02:12 +0000
asID: 38758
IP address blocks: 114.129.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:6a:cd:a3:71:bd:26:de:83:6f:72:f5:1f:13:75:34:9a:9f:d7:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Validity
Not Before: Jun 30 23:57:12 2024 GMT
Not After : Jun 30 00:02:12 2025 GMT
Subject: CN=2F786A13BC8D6F21052A0027A444B06EF102C29D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a1:da:df:a4:65:64:2c:84:29:e6:43:96:5f:
bf:d1:ac:c2:09:59:34:84:be:3b:f6:03:30:3d:37:
33:9a:16:b2:01:fa:cb:60:37:58:87:82:a8:d8:61:
67:1d:9a:38:5b:4a:b4:a3:1d:14:e7:c7:89:52:cd:
9c:38:33:9e:56:bf:ad:db:a1:24:51:30:d7:67:82:
9e:ea:de:cc:3b:23:04:20:11:a1:9f:75:f4:22:59:
e6:38:b1:24:28:97:b1:b8:e8:a3:bb:2e:4e:b2:37:
3d:a9:c4:ba:77:c2:d4:42:04:4f:73:f6:ce:94:3a:
d5:1b:35:3f:a6:01:ec:5f:19:34:08:ee:76:99:20:
d2:11:1b:3a:89:c6:5e:fb:36:94:30:f9:2b:7e:df:
cd:53:dd:ad:78:5c:4f:97:dc:b6:71:9f:65:6d:7d:
73:24:b2:a1:b7:c6:f5:0b:05:d3:6a:df:51:08:50:
88:d2:1f:9f:ca:92:cf:d7:36:87:be:8d:06:0d:d4:
27:5b:d3:d7:39:1e:97:0a:37:fe:38:b4:e7:0a:6f:
77:6d:e5:c6:24:87:59:a6:de:58:73:9d:a7:02:38:
9a:56:b9:2c:ac:97:77:c0:ef:01:c9:74:d5:24:70:
90:26:81:5c:67:6b:40:03:f6:a8:a3:68:21:11:fd:
9b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:78:6A:13:BC:8D:6F:21:05:2A:00:27:A4:44:B0:6E:F1:02:C2:9D
X509v3 Authority Key Identifier:
keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3131342e3132392e31362e302f32312d3234203d3e203338373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.129.16.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:d8:8b:49:ce:a8:fe:0a:71:95:c9:6b:8c:08:aa:71:c3:ef:
90:49:81:22:24:f5:16:04:ba:07:9c:2b:fc:c6:f6:8f:ab:da:
13:22:82:eb:7a:03:3c:e9:d1:7b:6d:0a:f7:91:3a:36:73:05:
d5:f8:0f:10:b0:91:fe:a4:ec:5d:df:dc:cc:0a:91:7f:d0:40:
bc:6d:b8:af:bf:19:0b:97:16:bc:0e:04:df:c3:2a:01:f9:fc:
ac:62:1c:02:2a:05:b7:49:18:f4:52:b9:a1:3b:af:1b:3c:cb:
26:67:f8:69:5f:51:79:69:25:1d:09:08:4d:29:a7:ed:e7:1f:
1b:02:a2:22:60:ee:6f:da:35:c8:9f:81:3f:03:5c:11:9e:c4:
de:43:ae:f0:de:38:f1:f0:db:49:c3:7f:d0:90:7c:ec:20:b2:
74:06:38:fb:1f:9e:f2:5f:a8:a5:42:9b:6f:a1:fa:15:78:22:
43:5d:65:9c:d1:e5:ca:55:2a:cd:fe:72:4a:5c:8e:85:73:6c:
f3:f4:6a:6d:5f:99:8c:7e:37:0f:b8:35:7a:ae:cf:8c:a5:c2:
c0:22:af:95:e6:cf:61:4b:9f:fb:ed:cc:ae:d1:6f:da:5c:c5:
66:b9:1a:31:99:e3:35:d3:e9:f1:e5:9b:50:c7:28:24:c5:45:
2e:f0:c2:e6
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUDWrNo3G9Jt6Db3L1HxN1NJqf15cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1
NTQ5ODZGNDAeFw0yNDA2MzAyMzU3MTJaFw0yNTA2MzAwMDAyMTJaMDMxMTAvBgNV
BAMTKDJGNzg2QTEzQkM4RDZGMjEwNTJBMDAyN0E0NDRCMDZFRjEwMkMyOUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnodrfpGVkLIQp5kOWX7/RrMIJ
WTSEvjv2AzA9NzOaFrIB+stgN1iHgqjYYWcdmjhbSrSjHRTnx4lSzZw4M55Wv63b
oSRRMNdngp7q3sw7IwQgEaGfdfQiWeY4sSQol7G46KO7Lk6yNz2pxLp3wtRCBE9z
9s6UOtUbNT+mAexfGTQI7naZINIRGzqJxl77NpQw+St+381T3a14XE+X3LZxn2Vt
fXMksqG3xvULBdNq31EIUIjSH5/Kks/XNoe+jQYN1Cdb09c5HpcKN/44tOcKb3dt
5cYkh1mm3lhznacCOJpWuSysl3fA7wHJdNUkcJAmgVxna0AD9qijaCER/ZuTAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUL3hqE7yNbyEFKgAnpESwbvECwp0wHwYDVR0j
BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD
RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5
ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05
M2U1LTUyMmVlNTQwMThkNi8wLzMxMzEzNDJlMzEzMjM5MmUzMTM2MmUzMDJmMzIz
MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3KBEDANBgkqhkiG
9w0BAQsFAAOCAQEATdiLSc6o/gpxlclrjAiqccPvkEmBIiT1FgS6B5wr/Mb2j6va
EyKC63oDPOnRe20K95E6NnMF1fgPELCR/qTsXd/czAqRf9BAvG24r78ZC5cWvA4E
38MqAfn8rGIcAioFt0kY9FK5oTuvGzzLJmf4aV9ReWklHQkITSmn7ecfGwKiImDu
b9o1yJ+BPwNcEZ7E3kOu8N448fDbScN/0JB87CCydAY4+x+e8l+opUKbb6H6FXgi
Q11lnNHlylUqzf5ySlyOhXNs8/RqbV+ZjH43D7g1eq7PjKXCwCKvlebPYUuf++3M
rtFv2lzFZrkaMZnjNdPp8eWbUMcoJMVFLvDC5g==
-----END CERTIFICATE-----
Generated at Wed Apr 9 21:59:37 2025 by rpki-client