Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa
File: 3131392e3131302e38312e302f32342d3234203d3e203338373533.roa (raw, json)
Hash identifier: Xe2BBaQ83UhzG0DizViRC4mjUDylAsjSrXnBR7z6AsA=
Subject key identifier: 29:A1:A9:5B:EB:95:FE:67:87:80:FB:B6:9C:26:DF:F5:A2:01:89:D8
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 5070F66E73AFA0B0BF861C6A6EB9BDC74A23E768
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa
Signing time: Tue 03 Sep 2024 03:00:01 +0000
ROA not before: Tue 03 Sep 2024 02:55:01 +0000
ROA not after: Tue 02 Sep 2025 03:00:01 +0000
asID: 38753
IP address blocks: 119.110.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:70:f6:6e:73:af:a0:b0:bf:86:1c:6a:6e:b9:bd:c7:4a:23:e7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Sep 3 02:55:01 2024 GMT
Not After : Sep 2 03:00:01 2025 GMT
Subject: CN=29A1A95BEB95FE678780FBB69C26DFF5A20189D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ec:c4:bd:d3:0a:13:b2:4e:67:da:7c:e0:1d:
55:bd:fe:3e:45:cd:c3:24:95:37:f1:07:1b:e5:74:
e8:6a:ee:09:a2:0a:1f:e5:3d:af:6d:9c:05:1a:be:
61:17:ba:bd:bf:23:c1:cb:6a:5d:21:25:37:cf:03:
f9:cb:3a:01:f5:d6:f3:4e:7a:e4:f0:a2:34:fe:ca:
3d:6f:3a:86:96:da:e3:a1:91:2e:e6:c8:0b:80:32:
66:3c:a1:83:eb:3a:91:38:b9:e2:f4:39:fe:22:68:
82:aa:c5:a1:5b:cd:bc:46:08:1c:04:79:83:36:d3:
b3:1e:40:17:4a:25:5a:59:73:b7:0d:55:ce:d7:cc:
20:ab:a2:7a:a5:52:21:fd:3a:3e:46:e3:00:8d:ef:
bf:96:d7:24:e2:8b:12:92:af:71:e1:34:5e:9a:14:
ae:a3:d3:c3:2c:df:78:16:28:cb:d4:f7:9f:88:d8:
f9:86:78:e8:13:1d:13:ff:ec:bb:8a:65:ac:b5:9d:
7d:e6:a9:d1:5a:c6:a1:81:9c:3b:c6:33:42:64:cd:
1d:09:74:8e:8d:dd:0e:dd:69:54:af:2b:e9:91:08:
36:34:15:94:18:d6:2d:10:26:29:18:ee:87:dc:a8:
c2:18:f5:0a:fc:1e:fa:d8:ff:fd:2b:0f:89:bb:6f:
1d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A1:A9:5B:EB:95:FE:67:87:80:FB:B6:9C:26:DF:F5:A2:01:89:D8
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38312e302f32342d3234203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.110.81.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:14:8f:46:c6:9c:e3:1d:29:c9:b0:c9:12:b5:22:a3:ef:4e:
e6:d3:48:5f:e8:87:8c:29:9a:db:e5:80:bc:99:58:ba:fb:9d:
6a:9e:0e:9a:bd:62:00:f5:1d:5e:bc:9a:44:2c:08:ef:d2:43:
a3:b1:68:06:bf:d4:51:97:aa:09:83:d4:b5:b9:8c:01:f1:29:
de:7d:8f:d1:c2:cd:4b:62:d8:8b:d4:50:bf:22:1a:a3:a3:da:
dd:b0:6d:af:f4:63:40:b7:d7:97:5e:2e:4a:1f:7f:67:fb:37:
3d:cb:96:75:f8:4b:ba:5a:f1:d1:2a:70:67:f5:88:2c:0f:00:
c8:ab:ac:b7:18:33:23:25:d7:ba:ad:50:0d:43:6f:91:b4:7c:
c1:e5:68:fa:84:bd:f9:95:43:1f:45:e3:e7:65:90:b7:81:76:
02:66:40:59:0b:36:82:7b:5c:4c:ea:a7:e7:79:62:1c:98:ea:
27:80:30:0c:74:e8:a3:57:a8:91:f2:c6:05:ba:bb:c4:94:77:
77:ab:a7:d1:8f:8d:fb:78:a9:7f:a9:d4:79:64:b9:ae:32:94:
23:70:57:35:c7:27:28:4e:07:f4:6d:7f:fa:3f:a4:e9:06:1e:
8b:9e:41:08:77:aa:fe:6c:c6:98:b4:f6:37:91:57:e3:81:1f:
bc:bb:7f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:15 2025 by rpki-client