Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa
File: 3131392e3131302e38342e302f32342d3234203d3e203338373533.roa (raw, json)
Hash identifier: TpMIcEV2r6CI4sSBkgOzVc4GCtsWoFWd5Os3JxgUNCo=
Subject key identifier: 08:AF:7D:0A:50:C9:BF:27:EE:4C:F6:02:D2:AB:C7:FF:C4:EE:E5:7E
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 7FC71D4BFD0413B112E77093195043E972C7242C
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa
Signing time: Tue 03 Sep 2024 04:00:01 +0000
ROA not before: Tue 03 Sep 2024 03:55:01 +0000
ROA not after: Tue 02 Sep 2025 04:00:01 +0000
asID: 38753
IP address blocks: 119.110.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:c7:1d:4b:fd:04:13:b1:12:e7:70:93:19:50:43:e9:72:c7:24:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Sep 3 03:55:01 2024 GMT
Not After : Sep 2 04:00:01 2025 GMT
Subject: CN=08AF7D0A50C9BF27EE4CF602D2ABC7FFC4EEE57E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9d:f0:87:b9:53:2f:c2:6c:8f:95:d4:a9:7b:
66:aa:36:d1:47:bf:00:8f:3b:2a:70:b8:f1:cb:ab:
30:b2:67:01:20:f8:15:35:e3:a5:30:3c:b1:c9:7e:
57:26:3a:e5:9c:f9:0b:51:d0:4d:8a:ce:1a:21:fc:
87:d5:ea:eb:cb:f4:f4:9a:fc:7b:51:52:db:41:ec:
ef:8e:19:f4:55:93:cb:81:a6:9b:43:a9:0f:06:4c:
9f:e8:0f:00:1d:10:19:57:c1:08:aa:ea:76:e9:94:
af:18:56:e7:54:a2:33:9c:6c:76:2c:5c:cb:88:26:
e7:1d:4f:b3:70:bc:e8:77:42:a7:5e:5a:64:21:3f:
d0:a6:f4:64:d6:14:e7:c0:4f:3e:3a:61:c7:ea:74:
c4:f2:11:fc:b3:15:9d:f5:e9:f2:71:2b:2c:7f:58:
16:ab:ae:09:f7:5a:fa:48:48:89:31:57:0c:ef:80:
02:1a:1d:a8:7c:3a:d2:ad:44:79:ad:ab:5a:2a:02:
bd:39:38:65:2c:44:0e:46:1b:58:6d:73:c2:5a:be:
7c:ca:7e:b7:c7:3c:98:5a:ed:35:d9:19:ef:67:51:
67:a1:d9:7a:69:a4:b1:e4:ac:b9:17:40:9d:2e:05:
09:f2:db:44:6d:e4:ad:00:52:c9:3d:0f:a9:65:91:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AF:7D:0A:50:C9:BF:27:EE:4C:F6:02:D2:AB:C7:FF:C4:EE:E5:7E
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38342e302f32342d3234203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.110.84.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b9:af:50:22:84:11:38:17:fb:37:bd:c7:32:18:e9:f9:64:
32:d7:ee:c4:ea:89:07:27:c2:55:6d:d7:06:b8:34:bd:f2:cb:
7d:90:a3:ca:e3:f8:c5:35:ad:7a:b4:78:29:ef:ff:0e:10:15:
ca:83:80:81:d7:54:95:93:4e:02:7d:a5:51:23:d9:6d:00:77:
07:aa:39:67:63:6f:7d:fd:86:c6:9a:91:f7:a2:da:77:4e:50:
ac:3c:0b:58:19:34:87:b6:54:e4:08:2d:c5:73:8f:f6:ad:74:
e7:97:91:b8:a2:6f:df:e3:96:e1:62:f5:f0:1d:69:00:e0:35:
e9:9c:2c:59:bb:b6:fe:97:f0:e4:6c:9b:10:f3:f5:c2:5d:e5:
7b:14:3e:ac:d0:0c:dd:6a:3d:b2:a9:e5:2b:25:a6:b1:f8:66:
f9:40:cf:91:8f:58:84:12:5f:ce:f6:f8:b9:36:a8:5e:08:04:
7b:bc:9d:c5:7b:c6:04:a8:7e:61:e9:98:82:cc:b3:28:63:cc:
07:9b:e2:3c:29:ab:20:12:24:c1:97:50:fa:22:1e:6f:16:34:
94:0c:b0:81:34:5e:95:29:d9:b9:96:32:c5:db:44:d2:84:1d:
6b:4c:f6:45:f8:f2:a5:17:7b:1d:e6:38:f3:54:f4:0e:14:4a:
b0:be:ab:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:32 2025 by rpki-client