Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38322e302f32342d3234203d3e203137373237.roa
File: 3131302e33352e38322e302f32342d3234203d3e203137373237.roa (raw, json)
Hash identifier: ygQNzJEPiX7GfXK5BV3zFL4zTNRZ+KbqO4t0AhdZrBE=
Subject key identifier: 5E:73:63:F9:20:29:48:FA:81:1F:B8:7A:23:7E:93:95:04:A0:85:62
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 2C86CF070C9FD870A4FB25EFF60D2B77F744E09D
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38322e302f32342d3234203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 09:00:01 +0000
ROA not before: Sun 29 Sep 2024 08:55:01 +0000
ROA not after: Sun 28 Sep 2025 09:00:01 +0000
asID: 17727
IP address blocks: 110.35.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:86:cf:07:0c:9f:d8:70:a4:fb:25:ef:f6:0d:2b:77:f7:44:e0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 08:55:01 2024 GMT
Not After : Sep 28 09:00:01 2025 GMT
Subject: CN=5E7363F9202948FA811FB87A237E939504A08562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:dd:a5:c0:b2:ef:7e:cf:a3:fe:a1:2f:67:ae:
1d:ff:87:12:9c:52:60:e5:81:51:6a:f4:f1:96:fe:
27:45:68:4e:86:cf:99:4b:ae:c6:a8:e7:98:77:1d:
88:c0:cd:63:b3:96:d5:c9:7e:a3:c9:e6:6a:49:d0:
b8:c5:11:59:2d:1e:82:20:04:8d:56:52:44:15:51:
d2:98:43:43:cf:37:b5:bd:f0:73:68:48:fe:96:1b:
0b:63:88:ee:cb:9c:b9:49:36:92:5f:cc:b2:c5:13:
6e:9e:9a:8b:08:41:04:de:8e:62:43:a1:2d:05:03:
65:3d:49:aa:ca:26:70:80:94:7e:cb:5b:8d:7c:1a:
91:76:1e:df:b7:13:2d:98:f3:66:e1:19:af:d9:9a:
57:5a:a5:58:a8:67:a0:d3:e9:a4:f1:d4:dd:c8:22:
f1:e2:ec:6d:dd:b0:5a:9b:b4:5f:d5:85:d0:07:ce:
d1:60:40:9a:26:38:45:e8:3e:f9:30:17:be:82:8b:
61:96:3a:d5:46:d2:0c:78:fd:db:7c:34:61:28:66:
4b:84:b5:e1:dc:12:a5:fa:5b:e3:1a:f7:0d:f1:3e:
45:be:95:39:df:2c:ba:0c:cd:42:22:e7:01:a8:df:
3b:4d:bf:01:24:8b:90:7c:93:84:cd:11:24:86:35:
11:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:73:63:F9:20:29:48:FA:81:1F:B8:7A:23:7E:93:95:04:A0:85:62
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131302e33352e38322e302f32342d3234203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.35.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:86:e9:9a:4f:3c:59:ed:fc:6a:7c:75:a2:44:58:a7:2b:f0:
36:78:49:6f:45:68:92:c5:ba:5e:40:71:73:4e:63:2f:a1:0e:
dc:ba:46:6e:5b:d7:99:6f:ad:45:8c:76:3e:26:e4:2a:c5:cb:
d0:b2:c3:b8:ba:9a:79:58:7e:99:53:0b:86:6a:6f:d5:8f:00:
c0:89:22:5d:a3:58:71:2c:b0:77:a3:30:40:9f:5c:74:d3:3c:
3a:09:78:b3:f9:c9:38:a8:71:64:51:ff:e7:07:cb:87:80:50:
1c:e4:81:1d:f4:06:d5:b6:bc:ef:b5:7a:21:e4:8a:2d:9c:13:
ed:d5:d1:0c:71:27:25:69:f7:03:d8:4f:f3:46:8c:f6:92:2a:
43:4a:52:e4:bf:50:8e:52:e5:1d:f0:f4:38:75:e9:26:d9:02:
87:5f:33:d0:d2:2d:9c:b6:4f:38:77:af:60:a1:1f:9c:ec:01:
ec:cb:6f:29:64:20:2f:76:98:91:f3:dd:e9:bb:16:8f:6a:48:
3c:c1:47:68:7f:4a:89:6d:e3:79:85:e3:28:d0:c3:dd:25:50:
3b:58:d9:db:ed:dc:41:50:8c:77:6e:2e:b6:b2:5a:4f:f3:38:
0d:c9:24:4d:a3:49:cb:cb:42:02:64:e1:76:a7:97:18:12:39:
17:7f:70:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:33 2025 by rpki-client