Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa
File: 3131392e34372e39302e302f32342d3234203d3e20313338303839.roa (raw, json)
Hash identifier: 5aw/2xBP6tqiurEQdQQvhEuzVTQaLC2QP/uo4lVPxYg=
Subject key identifier: 92:F5:C8:0F:8E:D2:D5:29:B1:9E:DC:13:30:02:9D:C5:44:F7:E4:A8
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 03F52134B03B623291188724AAAD87BAE394C57F
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa
Signing time: Sat 27 Jul 2024 04:00:02 +0000
ROA not before: Sat 27 Jul 2024 03:55:02 +0000
ROA not after: Sat 26 Jul 2025 04:00:02 +0000
asID: 138089
IP address blocks: 119.47.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:f5:21:34:b0:3b:62:32:91:18:87:24:aa:ad:87:ba:e3:94:c5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Jul 27 03:55:02 2024 GMT
Not After : Jul 26 04:00:02 2025 GMT
Subject: CN=92F5C80F8ED2D529B19EDC1330029DC544F7E4A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:60:59:65:59:e7:f9:72:e9:d4:2d:20:f0:
86:2b:7e:9b:d2:42:4e:2d:09:8d:db:a1:35:49:8e:
9d:8a:5e:92:7e:a4:7a:0f:ff:ce:f7:a5:21:77:93:
f1:e6:20:9b:92:c7:8a:f5:cb:50:f5:bb:01:50:7b:
49:3a:b0:fb:e8:bc:dc:c5:9e:c7:07:77:09:e2:10:
4f:92:0c:d8:08:fd:7e:08:17:76:ca:ec:0b:5d:3a:
d5:06:0d:3d:b8:75:99:de:1c:3e:00:11:d7:50:61:
0f:17:39:3b:84:c4:79:94:87:92:2f:78:ca:c0:45:
ce:b6:5c:d3:ca:b3:6b:d3:85:03:28:ce:4a:3e:5c:
1c:56:ac:e0:f2:53:44:17:ca:c0:5e:d8:b9:d0:9d:
09:9e:c2:aa:5e:99:c3:4e:af:00:11:41:ad:d3:8a:
b7:e6:13:42:28:93:1e:0f:9e:34:40:a4:88:34:50:
ac:da:0a:d8:1a:91:2b:fb:30:6d:ef:1c:ad:21:fa:
7d:a0:e1:29:15:c6:2c:87:94:72:13:f7:74:ca:a9:
49:93:43:b7:ca:97:13:16:13:98:7e:c2:d4:e0:b2:
e7:6b:6c:f7:8a:60:da:fd:db:ef:73:99:2a:20:ca:
f5:3f:04:55:fa:68:27:42:e0:66:91:8e:89:87:50:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F5:C8:0F:8E:D2:D5:29:B1:9E:DC:13:30:02:9D:C5:44:F7:E4:A8
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.47.90.0/24
Signature Algorithm: sha256WithRSAEncryption
74:5d:4d:cf:aa:46:77:73:3f:8d:cf:9b:d3:5d:59:10:ee:28:
37:a7:ed:2b:dd:0a:62:9b:30:9d:47:be:0a:f7:6a:80:52:11:
c6:35:45:20:71:b8:22:1f:dd:3e:aa:d7:c9:45:ab:98:9e:6f:
0f:9c:2a:57:b5:4a:c1:6b:0b:af:8f:e3:2b:5b:d1:73:d2:ff:
ee:18:ba:21:3e:a7:c5:8c:62:ec:46:95:5f:e3:c2:23:bb:25:
bd:dd:f7:ae:cb:0b:98:ef:60:c1:63:ae:98:0a:6d:4a:c3:0b:
79:49:47:ba:38:54:02:05:02:f6:68:96:d0:61:22:3b:7d:3f:
81:f1:ab:16:40:e4:ad:d6:cb:75:39:a8:41:3b:0c:1e:31:8f:
28:7a:58:8c:63:c3:9c:cd:69:bd:27:7d:7a:be:b3:a6:94:00:
b8:87:74:70:a7:ac:68:8d:e8:44:e1:2f:04:ef:f9:af:db:3a:
ed:02:dc:6b:07:23:03:36:61:04:4d:af:53:f6:ae:aa:c3:4b:
8a:92:f6:0b:b1:9c:df:f3:aa:00:38:47:bb:a3:47:97:cd:c2:
d5:0b:5b:b4:19:63:4b:60:bd:21:a0:48:22:40:ba:d1:8d:0c:
4a:20:35:0e:80:a2:65:3e:57:86:25:d3:e2:13:37:e3:47:2e:
e0:0a:0c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:32:15 2025 by rpki-client