Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa
File: 3131392e322e34302e302f32342d3234203d3e203338353234.roa (raw, json)
Hash identifier: HeWk8LUNSfhvUFQFBPfUffD67xAq3a4ukWOsrqE6Z3E=
Subject key identifier: 6C:A6:98:55:EF:35:16:4F:FE:B2:62:77:65:C0:4B:B3:A2:D3:CB:CD
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 53366761E92842BEEEC6C605AAEDB9A8320D2085
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa
Signing time: Mon 01 Jul 2024 01:03:45 +0000
ROA not before: Mon 01 Jul 2024 00:58:45 +0000
ROA not after: Mon 30 Jun 2025 01:03:45 +0000
asID: 38524
IP address blocks: 119.2.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:36:67:61:e9:28:42:be:ee:c6:c6:05:aa:ed:b9:a8:32:0d:20:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 1 00:58:45 2024 GMT
Not After : Jun 30 01:03:45 2025 GMT
Subject: CN=6CA69855EF35164FFEB2627765C04BB3A2D3CBCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e5:60:d0:ad:5a:ce:dc:52:e6:96:70:b4:12:
f6:6d:58:fd:f4:05:a2:18:9b:da:cf:e6:54:cf:a8:
76:a3:89:d1:8c:4b:2f:a9:95:e8:fd:45:b3:de:f6:
86:f2:30:41:ce:ad:ab:9f:7f:fb:64:7a:a6:83:fe:
75:30:20:b7:d1:65:be:03:e2:62:48:a3:34:c3:72:
b9:d0:e0:ef:7a:1c:96:34:7a:bd:96:15:69:d0:ab:
fd:70:86:6c:0e:4d:15:b5:67:bb:96:84:55:99:04:
80:fe:3a:43:5c:69:e0:9b:2a:16:21:76:bd:4c:63:
76:3f:23:b5:43:40:9e:3c:02:ca:01:1b:29:1c:e8:
46:be:4d:84:b2:a8:d6:45:e7:b2:44:4a:4e:51:bd:
3c:1e:d4:5b:68:1b:f5:28:8b:96:3f:24:1e:50:3b:
18:2c:63:08:07:76:53:15:0a:17:dd:1a:8f:b9:1b:
11:9c:92:f2:69:a5:0a:33:b4:22:3c:0c:c5:9d:bf:
37:a6:33:6d:89:38:7a:69:a2:44:d3:8c:49:58:cc:
70:44:b8:d9:0f:6f:ce:04:0a:3b:cd:93:50:a5:69:
44:11:b7:49:03:47:a5:bf:44:07:36:33:ca:8f:54:
ed:84:11:a3:67:24:1b:4b:41:43:3c:bb:a8:89:18:
63:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A6:98:55:EF:35:16:4F:FE:B2:62:77:65:C0:4B:B3:A2:D3:CB:CD
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32342d3234203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.2.40.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f6:83:04:4f:d7:81:76:c2:4b:d6:97:d7:22:d2:ea:f0:c7:
f5:aa:bd:dd:ee:a3:7d:d6:60:44:83:3b:ca:9a:b0:49:e6:d3:
13:17:d8:1b:02:a6:a6:3b:a2:3c:5a:a6:0f:10:9f:1a:0b:ee:
c3:79:26:b1:92:50:c3:29:2a:16:ef:63:af:7c:88:44:b8:4f:
eb:a2:07:54:3d:00:06:a2:a2:74:4d:98:2d:82:a0:0a:70:34:
7f:14:a4:22:2b:bb:4b:df:fb:90:cd:fd:24:c4:b2:d9:d2:5b:
d9:a7:01:2e:26:43:05:e8:e4:b8:d0:94:e6:c8:6a:26:5d:73:
02:39:12:90:3f:51:60:f2:14:0d:26:60:f0:56:f3:c7:a2:4a:
5c:e7:93:d1:5b:6b:4c:d8:dc:4d:1e:ab:77:80:3f:5d:62:3a:
d0:59:ce:6b:4f:56:41:75:bf:c1:4c:fb:55:d6:5d:ca:b1:d9:
06:52:66:50:da:0e:2e:e2:74:d0:04:c8:3b:2d:83:1f:7e:d9:
84:a8:6b:76:2c:c3:6a:52:16:ad:0d:8e:34:7b:62:85:fb:f5:
3c:e8:f9:65:d9:6d:4c:ee:4b:2a:04:e8:b5:6b:ca:01:dc:47:
5e:59:ce:15:08:6e:bf:11:90:be:48:7c:19:e7:e9:06:18:c4:
9d:ab:74:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:47 2025 by rpki-client