Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa
File: 3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa (raw, json)
Hash identifier: tjB3Dv6AHUAd8v8+QrAXmF7g7VfUKmK118fnnScrHns=
Subject key identifier: 32:77:A5:74:65:6F:56:DE:9F:48:93:B5:69:76:7F:E1:C4:57:0F:84
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 5DA728BA0FF79B9F2BFB9ED3FC7038B81A0965FF
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa
Signing time: Sun 29 Sep 2024 07:00:02 +0000
ROA not before: Sun 29 Sep 2024 06:55:02 +0000
ROA not after: Sun 28 Sep 2025 07:00:02 +0000
asID: 55818
IP address blocks: 119.110.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:a7:28:ba:0f:f7:9b:9f:2b:fb:9e:d3:fc:70:38:b8:1a:09:65:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 06:55:02 2024 GMT
Not After : Sep 28 07:00:02 2025 GMT
Subject: CN=3277A574656F56DE9F4893B569767FE1C4570F84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:1a:38:6e:51:9c:10:ab:24:95:b4:e1:07:1b:
13:35:55:ad:8b:1e:9f:a1:50:a3:84:f4:d3:62:60:
9b:4c:f6:d9:7f:de:bd:f5:2d:01:9f:c2:6d:2b:c0:
25:b2:c0:c9:8f:35:ee:a4:00:55:95:e8:c9:b8:f0:
b0:5a:bf:20:13:9c:b7:66:84:61:1c:ef:92:1b:ce:
1b:b4:3f:fe:49:6b:07:46:d9:cf:1a:e9:a4:ee:3e:
3b:7a:47:c9:5d:1f:db:d2:6d:b6:23:72:c5:e6:72:
cf:97:53:bf:90:78:da:b2:a9:a8:8e:68:41:43:d7:
bf:4d:02:aa:3e:93:51:79:56:3b:2f:6d:58:fc:de:
64:6a:78:b1:f7:8e:04:68:6b:21:99:9b:c2:b9:36:
b2:2e:d5:b5:da:bd:55:54:80:2c:98:bf:e1:98:14:
b8:b5:58:c7:e4:9b:52:b0:08:dd:fd:10:31:94:9e:
3d:6f:65:44:97:0f:5c:a7:95:56:05:f6:9e:80:6e:
f9:10:ab:5b:eb:02:09:3a:d9:d5:22:2c:b3:97:5a:
9c:89:84:f9:c6:22:51:0c:86:79:e6:bf:af:b0:ab:
8b:73:b4:fd:9d:17:3e:39:b8:f2:97:c1:60:87:78:
a2:be:f0:6b:44:26:df:00:8c:92:14:b2:55:36:14:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:77:A5:74:65:6F:56:DE:9F:48:93:B5:69:76:7F:E1:C4:57:0F:84
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3131362e302f32342d3234203d3e203535383138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.110.116.0/24
Signature Algorithm: sha256WithRSAEncryption
26:6d:42:bc:86:4d:2c:83:e0:df:2c:c9:75:d2:e2:a2:6f:93:
2b:53:62:48:26:77:1f:3b:7d:ca:19:c1:e8:a3:27:27:12:6b:
75:21:9f:09:ee:92:86:6e:41:3e:10:54:1f:0f:24:1d:f4:37:
5c:2e:b7:7c:40:a6:be:0d:53:41:9b:8f:d5:6e:a7:f8:6f:93:
98:af:e1:81:c2:fb:7d:b9:93:7a:a6:11:3d:20:4f:bb:87:fb:
4e:1e:5e:ff:1f:6e:de:db:9a:40:ce:19:9d:58:31:6c:b3:11:
fc:43:8e:d6:c0:0d:53:c1:5c:eb:5d:32:ae:17:56:90:95:41:
a7:08:15:b4:b1:7a:0d:71:5a:2b:65:41:50:fa:8e:ff:0e:e6:
b2:d3:05:bb:f5:9e:ba:6e:65:a0:b0:be:be:a4:e1:0c:2f:9e:
b0:cd:d7:89:09:a7:7f:b6:bc:17:91:23:32:c3:3a:30:e1:8d:
d7:be:c1:09:21:e8:f0:55:63:6c:9a:37:8f:af:1c:44:18:7d:
cb:74:85:41:83:be:f6:19:53:0a:8d:d4:a7:3d:db:7b:a9:f8:
9d:42:8b:4c:56:91:82:63:7b:fc:97:8c:61:34:dc:a2:88:6e:
82:3b:f5:46:1e:d4:5c:90:08:ce:7a:79:2d:b0:8d:85:e2:06:
75:a9:9d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:07 2025 by rpki-client