Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa
File: 3131372e37342e3132302e302f32312d3231203d3e203338353135.roa (raw, json)
Hash identifier: gW10ROgt09o0IM/FgnaUDfTJF5ydZooB3pXvlmYpehM=
Subject key identifier: 71:5C:4F:11:E5:9D:54:79:5C:CD:F5:05:83:82:61:86:F5:77:D0:06
Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Certificate serial: 213C078B193D218C9C21AA5C4BC053196FEB5B2E
Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa
Signing time: Wed 06 Nov 2024 10:00:00 +0000
ROA not before: Wed 06 Nov 2024 09:55:00 +0000
ROA not after: Wed 05 Nov 2025 10:00:00 +0000
asID: 38515
IP address blocks: 117.74.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:3c:07:8b:19:3d:21:8c:9c:21:aa:5c:4b:c0:53:19:6f:eb:5b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Validity
Not Before: Nov 6 09:55:00 2024 GMT
Not After : Nov 5 10:00:00 2025 GMT
Subject: CN=715C4F11E59D54795CCDF50583826186F577D006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4b:b9:b7:fb:cb:4c:a4:92:a4:03:99:f5:09:
5c:b1:c9:79:df:62:23:4c:79:ac:13:b2:c6:a2:f7:
0c:20:6d:03:a6:b8:62:df:e3:f0:8f:f0:ec:f0:03:
04:3b:2c:18:58:26:bc:40:47:6b:3c:d4:75:0b:0e:
e9:c5:18:27:5c:ce:ba:62:9a:de:50:0d:b0:2b:bf:
3c:59:1e:e7:d9:ae:05:00:ed:ff:5c:31:43:58:5c:
aa:a7:87:63:bf:dc:1e:36:75:a2:70:cb:34:d6:03:
5c:6e:50:73:80:41:93:8c:7d:51:5a:3b:0c:d7:77:
95:fe:74:ac:0e:e8:cd:d7:9c:11:ad:ca:fb:3e:d2:
eb:84:62:03:e9:fd:bf:5b:9e:fa:ff:c1:9b:72:6c:
25:16:6a:72:05:72:94:99:6f:68:1a:8f:bb:a5:32:
e4:19:be:61:cd:90:d9:f0:f2:e2:56:09:cb:e3:40:
b2:c7:51:80:f5:3a:5f:7b:d2:c3:4b:cc:e2:80:d6:
05:e5:51:0a:10:d1:f2:97:73:97:92:06:bd:0f:4a:
84:eb:74:72:fc:21:09:4d:df:3a:b5:e3:1d:09:b2:
a0:9d:ac:46:4f:6f:a8:f3:b3:76:1f:01:a7:90:0f:
93:2c:6d:5c:60:40:20:3a:82:56:b2:2d:c2:42:bb:
35:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5C:4F:11:E5:9D:54:79:5C:CD:F5:05:83:82:61:86:F5:77:D0:06
X509v3 Authority Key Identifier:
keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.74.120.0/21
Signature Algorithm: sha256WithRSAEncryption
95:15:79:59:2b:8d:82:6d:ee:6d:7f:55:29:3a:a1:8d:c6:d1:
bf:be:5c:eb:bb:e9:f8:d9:fa:63:b4:8e:a8:87:79:68:49:13:
38:24:4f:d4:24:9f:c9:de:22:bf:41:29:9f:0a:87:70:11:cd:
5d:8f:2c:3c:67:5e:02:7e:4c:d0:25:e6:f8:5e:94:0f:c2:15:
da:98:19:b6:e6:ae:5e:61:ec:dc:22:7d:9e:fd:7f:38:e9:b4:
94:ad:bf:cc:45:ee:45:3d:5f:77:3c:c7:2a:89:6a:ef:52:21:
35:af:f4:91:88:ec:c0:4a:1e:36:d4:b6:b0:11:11:2d:27:2e:
e5:d4:76:82:84:5a:18:b2:1c:c2:91:ab:8b:db:f4:1c:09:36:
a6:d9:93:b4:6b:86:f0:cd:7e:24:a5:1f:a3:4c:e6:f3:b0:83:
79:bf:81:45:c5:c8:44:74:d4:03:ee:88:33:d7:75:cc:b0:3b:
a2:b7:ed:06:ee:55:05:e4:01:76:78:34:19:25:77:0b:35:cb:
5b:f8:b3:5d:43:e8:a9:8a:c4:9d:88:bc:4b:fc:7e:7e:d7:61:
35:81:87:14:11:5c:a6:d2:03:0d:7b:2e:04:e6:ec:8e:2b:fc:
1a:2d:5e:fd:f7:1f:a5:99:fb:52:5d:7e:ff:99:f8:8c:a1:d3:
3a:3f:29:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:24:18 2025 by rpki-client