Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132332e302f32342d3234203d3e203338353135.roa
File: 3131372e37342e3132332e302f32342d3234203d3e203338353135.roa (raw, json)
Hash identifier: DlYUP/F+RIK8nZbMYNKyJFx66/fMZlATHS8Y5cVRmHA=
Subject key identifier: F4:E0:C3:47:27:F0:12:9F:AE:D5:B4:57:A5:0C:86:09:9D:C5:62:F8
Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Certificate serial: 697C224EFBC3D3F5268524D118967EE9840C0CDA
Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132332e302f32342d3234203d3e203338353135.roa
Signing time: Mon 01 Jul 2024 01:03:14 +0000
ROA not before: Mon 01 Jul 2024 00:58:14 +0000
ROA not after: Mon 30 Jun 2025 01:03:14 +0000
asID: 38515
IP address blocks: 117.74.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:7c:22:4e:fb:c3:d3:f5:26:85:24:d1:18:96:7e:e9:84:0c:0c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Validity
Not Before: Jul 1 00:58:14 2024 GMT
Not After : Jun 30 01:03:14 2025 GMT
Subject: CN=F4E0C34727F0129FAED5B457A50C86099DC562F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:63:b3:67:bc:4e:51:ae:40:4d:f6:67:70:9f:
ca:fa:c3:09:03:11:94:5b:04:cb:ae:04:fe:a0:0d:
31:d7:d4:d2:6e:63:90:4d:b3:72:46:8d:3c:56:4a:
01:96:54:cd:0c:de:15:83:05:5a:78:92:3f:cd:ed:
67:00:62:1d:14:1a:0d:4f:26:2a:62:41:89:b6:e7:
05:ff:60:91:d0:8a:bc:f3:46:ee:71:d7:41:69:55:
17:89:bd:23:96:91:1b:e4:c6:54:5b:4f:25:4f:c6:
b2:dd:37:5b:0f:1f:be:8d:05:ee:d8:c2:8b:58:94:
ab:5f:bc:79:11:86:db:e3:a7:44:c6:c2:4a:4a:19:
23:b8:c8:67:aa:77:96:5e:bd:15:70:5c:63:ff:be:
2a:fd:15:02:37:9c:38:2c:fd:68:ce:53:ac:5e:96:
22:dd:a3:65:10:f8:d3:08:07:e8:28:54:a6:5d:1c:
47:5d:f6:52:d5:49:e2:15:2f:9d:3e:09:18:86:ac:
31:a1:7a:cf:5a:87:da:bd:19:9a:d1:e1:fa:ef:3a:
ed:13:ef:04:e0:da:3c:99:89:8b:17:a8:02:bf:8c:
ff:ff:ce:25:41:68:ab:d0:e3:b4:13:80:09:38:ef:
a6:8f:f4:16:d8:6e:68:24:6d:a0:32:ca:e8:e5:51:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E0:C3:47:27:F0:12:9F:AE:D5:B4:57:A5:0C:86:09:9D:C5:62:F8
X509v3 Authority Key Identifier:
keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132332e302f32342d3234203d3e203338353135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.74.123.0/24
Signature Algorithm: sha256WithRSAEncryption
95:56:ec:49:ed:98:b5:53:32:71:7c:00:0f:14:8c:94:0f:dc:
28:a7:82:21:3f:30:7f:ea:2e:5c:77:93:60:6e:d3:c0:6a:67:
cf:81:20:a6:b4:4b:a4:55:85:eb:15:8b:80:2b:cc:dd:2a:a7:
6e:78:d2:06:41:a7:0c:2b:c7:4a:dc:08:85:98:1f:e1:1e:3f:
e2:6a:00:2b:1f:60:2b:ff:fc:35:8c:4a:20:ff:09:08:8d:3d:
0c:a8:66:e0:ad:4e:f5:50:82:dc:f1:55:70:cd:18:2f:74:c5:
d6:19:f9:b7:79:90:cf:9d:a6:a3:d9:9d:3b:f0:07:93:e3:19:
2a:34:71:db:27:b1:be:4c:ce:1c:87:fc:f8:57:f5:b1:72:f7:
a3:57:e6:36:21:c4:ad:62:cd:e8:4a:fd:d1:4d:6a:f7:92:78:
74:45:bf:2c:03:18:cf:d1:41:22:8f:6e:e2:79:81:de:a2:c4:
db:dc:b7:21:ad:8a:4a:ba:30:49:37:9d:62:3f:8b:2b:a7:d0:
b9:c9:08:ce:46:7e:86:33:f8:51:fd:4f:35:16:60:26:50:f1:
c4:be:ff:bd:4b:e0:42:f1:de:94:ec:58:e5:08:ef:f2:93:44:
55:ba:c3:55:74:9b:77:d3:8a:cc:8c:55:c8:3d:6b:2e:6a:59:
37:64:a5:a2
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUaXwiTvvD0/UmhSTRGJZ+6YQMDNowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy
RERGRDhGMzAeFw0yNDA3MDEwMDU4MTRaFw0yNTA2MzAwMTAzMTRaMDMxMTAvBgNV
BAMTKEY0RTBDMzQ3MjdGMDEyOUZBRUQ1QjQ1N0E1MEM4NjA5OURDNTYyRjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyY7NnvE5RrkBN9mdwn8r6wwkD
EZRbBMuuBP6gDTHX1NJuY5BNs3JGjTxWSgGWVM0M3hWDBVp4kj/N7WcAYh0UGg1P
JipiQYm25wX/YJHQirzzRu5x10FpVReJvSOWkRvkxlRbTyVPxrLdN1sPH76NBe7Y
wotYlKtfvHkRhtvjp0TGwkpKGSO4yGeqd5ZevRVwXGP/vir9FQI3nDgs/WjOU6xe
liLdo2UQ+NMIB+goVKZdHEdd9lLVSeIVL50+CRiGrDGhes9ah9q9GZrR4frvOu0T
7wTg2jyZiYsXqAK/jP//ziVBaKvQ47QTgAk476aP9BbYbmgkbaAyyujlUU+XAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU9ODDRyfwEp+u1bRXpQyGCZ3FYvgwHwYDVR0j
BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4
OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG
RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04
NjEzLThlOTgxNjI5ZTRjYS8wLzMxMzEzNzJlMzczNDJlMzEzMjMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKezANBgkqhkiG
9w0BAQsFAAOCAQEAlVbsSe2YtVMycXwADxSMlA/cKKeCIT8wf+ouXHeTYG7TwGpn
z4EgprRLpFWF6xWLgCvM3SqnbnjSBkGnDCvHStwIhZgf4R4/4moAKx9gK//8NYxK
IP8JCI09DKhm4K1O9VCC3PFVcM0YL3TF1hn5t3mQz52mo9mdO/AHk+MZKjRx2yex
vkzOHIf8+Ff1sXL3o1fmNiHErWLN6Er90U1q95J4dEW/LAMYz9FBIo9u4nmB3qLE
29y3Ia2KSrowSTedYj+LK6fQuckIzkZ+hjP4Uf1PNRZgJlDxxL7/vUvgQvHelOxY
5Qjv8pNEVbrDVXSbd9OKzIxVyD1rLmpZN2Slog==
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:53:13 2025 by rpki-client