Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa
File: 3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa (raw, json)
Hash identifier: bzITOlv3bYwqxh9tljf2IvoU/GUbUqADuIuQMyU6gGE=
Subject key identifier: 99:9E:F1:20:2B:B5:2B:AD:73:DC:07:0D:8C:D1:7D:8B:CB:C8:97:04
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 0B840387B773FE092159C1A269DE488517EAC51B
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa
Signing time: Sun 29 Sep 2024 07:00:01 +0000
ROA not before: Sun 29 Sep 2024 06:55:01 +0000
ROA not after: Sun 28 Sep 2025 07:00:01 +0000
asID: 45147
IP address blocks: 119.110.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:84:03:87:b7:73:fe:09:21:59:c1:a2:69:de:48:85:17:ea:c5:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 06:55:01 2024 GMT
Not After : Sep 28 07:00:01 2025 GMT
Subject: CN=999EF1202BB52BAD73DC070D8CD17D8BCBC89704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0b:2f:a0:91:83:c4:33:cb:46:33:86:d9:65:
26:b0:5f:24:8b:20:05:79:35:be:66:70:a2:5c:be:
60:eb:c2:b1:a9:60:2f:4c:c8:be:6f:5b:13:07:6b:
3b:37:a6:39:64:88:aa:75:18:f3:0c:59:ba:b1:a4:
ff:e0:1e:79:5b:7d:6d:20:c0:96:5a:c6:5b:f5:1b:
bc:b8:fd:77:d0:e6:3e:fb:77:4c:7d:63:46:61:a2:
15:e0:60:e3:7a:a6:e4:ad:59:c9:cc:76:c2:47:5c:
ea:b9:49:2c:2b:3a:2f:14:3f:be:25:bf:29:d5:7c:
f6:53:92:83:24:3e:b1:98:e7:e8:ed:a8:b3:e2:85:
28:d0:9d:f9:d0:4b:bc:8a:7e:11:ce:93:54:66:83:
52:52:3c:b2:30:25:88:e3:49:4f:a8:bf:94:33:56:
0b:79:f1:0f:77:18:4f:8f:22:23:e3:f1:ef:03:b7:
9f:e0:97:04:cd:c3:b6:c0:28:a0:f5:1c:0b:2d:eb:
57:2e:7a:19:e7:54:08:1a:c5:66:57:5f:fb:d0:a6:
97:a7:f5:af:80:8f:3d:eb:66:2d:71:e7:cc:a3:71:
7b:16:35:06:35:5d:b9:f8:a1:64:4b:18:d4:de:7e:
7a:d0:03:45:c0:83:c0:ad:1f:8a:78:68:9c:1b:58:
7f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9E:F1:20:2B:B5:2B:AD:73:DC:07:0D:8C:D1:7D:8B:CB:C8:97:04
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3131392e3131302e3132312e302f32342d3234203d3e203435313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.110.121.0/24
Signature Algorithm: sha256WithRSAEncryption
85:18:00:ea:11:9e:06:e1:e5:fe:7f:dd:2a:a3:ea:78:7c:5f:
1b:a3:97:6b:53:1f:4e:5c:12:8a:14:05:69:e2:4d:95:c4:72:
45:b4:11:00:47:9b:4e:e1:ed:bd:68:3e:e6:6e:2e:28:4b:b4:
16:4e:88:46:aa:70:bf:14:92:6c:d6:31:8e:65:fb:64:42:a7:
03:5e:ee:bf:0a:e9:5d:b6:5c:6d:96:cd:54:9f:21:f4:d0:38:
94:2d:2a:d8:c4:de:f4:05:c3:53:f0:7e:a7:ae:0d:c3:5b:5c:
1b:47:7a:9a:81:71:41:fe:d8:a0:a2:80:ca:24:8a:8f:83:42:
9e:d4:96:85:e7:38:90:a2:39:a9:1b:c0:37:bd:21:1c:67:46:
f1:79:f9:e6:36:7f:ca:d4:92:d0:1a:72:dd:41:08:24:6b:49:
16:21:e7:8d:99:e0:73:d0:7d:a1:f7:a0:8e:47:0a:16:e1:a5:
87:4b:16:d4:74:bd:76:22:76:ad:e8:10:e9:8a:50:97:67:c9:
3e:cb:d8:5e:c4:24:99:7a:ef:44:6b:73:0e:75:08:b9:a9:e6:
6b:4b:f1:32:17:01:81:e6:03:ed:14:e4:6c:35:7d:eb:59:36:
8f:df:e3:eb:34:09:2c:3a:a7:90:9c:a4:3e:73:b3:57:f4:ac:
66:2c:fd:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:20 2025 by rpki-client