Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa
File: 3131392e3131302e38362e302f32342d3234203d3e203338373533.roa (raw, json)
Hash identifier: M9kpxFc3jLO14xKv2/FFseEFzkBm0dPMLP9oR4/lj8g=
Subject key identifier: B7:48:F3:76:30:7B:8D:32:0A:9F:96:E6:B2:E2:23:35:55:FA:68:08
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 59CF1CB7D9C733CDE16F35F0C073ECAE1DB8930A
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa
Signing time: Tue 03 Sep 2024 03:00:01 +0000
ROA not before: Tue 03 Sep 2024 02:55:01 +0000
ROA not after: Tue 02 Sep 2025 03:00:01 +0000
asID: 38753
IP address blocks: 119.110.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:cf:1c:b7:d9:c7:33:cd:e1:6f:35:f0:c0:73:ec:ae:1d:b8:93:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Sep 3 02:55:01 2024 GMT
Not After : Sep 2 03:00:01 2025 GMT
Subject: CN=B748F376307B8D320A9F96E6B2E2233555FA6808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b5:c0:f9:d6:e9:68:7e:7c:e7:52:07:ea:97:
d2:d0:e1:ca:ff:07:98:0d:c6:45:18:c4:6f:a3:96:
66:54:8d:31:9d:a7:3a:6f:e1:0b:8c:81:e3:d6:d9:
85:25:a9:b5:57:ea:dd:6d:75:3b:8b:2b:33:37:d8:
97:43:3d:90:78:c8:4e:88:6a:42:9c:4e:64:e7:65:
e7:94:cf:b4:22:ae:58:80:54:85:85:0a:ce:fc:d6:
28:42:fb:41:51:7c:1b:a4:ea:6e:42:9b:2f:bf:44:
d3:51:b5:2b:bf:6e:75:a9:51:6d:e4:3d:e9:5a:08:
a0:d4:c1:eb:71:01:7d:5c:bc:e2:d2:a7:2e:72:79:
42:7c:b4:07:51:cf:17:2f:c5:1f:1b:28:e8:15:0f:
a8:1c:d6:96:7d:e6:c8:50:6e:58:e1:bb:fc:fb:da:
65:55:c4:47:7b:40:ec:30:9c:4b:17:d5:71:dd:e3:
9a:3c:b6:1e:e1:26:f5:01:6d:e1:02:28:68:b5:c0:
7c:c7:dd:e2:6a:46:d5:fb:12:70:2f:2b:08:64:b3:
ed:e8:64:58:9d:05:73:9f:8f:93:24:aa:d7:0f:1f:
90:c4:28:c5:64:24:76:d3:8b:a5:24:15:fb:cd:a1:
8f:61:91:c6:a0:d2:b1:8c:14:5d:a0:d8:46:0a:07:
f9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:48:F3:76:30:7B:8D:32:0A:9F:96:E6:B2:E2:23:35:55:FA:68:08
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3131392e3131302e38362e302f32342d3234203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.110.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6f:66:39:5e:b8:99:fa:54:d5:ce:f2:31:76:e0:ad:5d:d4:
d0:2d:f7:e9:ea:64:05:88:c6:1e:3d:3b:32:4e:5e:22:6a:ea:
be:9d:0e:84:b2:10:c5:fb:57:e8:82:d8:e3:72:cf:9b:3c:08:
99:ef:75:76:18:0c:29:bf:67:d0:1b:96:fa:9f:88:f0:7d:72:
f7:d6:09:b2:bf:bc:88:55:74:75:e1:7c:11:70:28:fe:a1:bc:
aa:5f:f5:46:7f:39:32:a4:54:da:67:23:b5:b1:d1:21:6c:c7:
89:8d:7b:2d:e6:0e:67:67:6c:55:38:2e:4c:eb:14:b5:07:72:
e8:95:52:47:19:b3:c9:cd:fa:87:79:7d:89:7a:03:f3:a7:62:
47:94:be:9e:b8:a0:bd:6c:8a:05:e8:f4:7c:f5:34:57:bf:f5:
a6:81:e5:43:d9:b1:79:17:42:91:6a:41:53:68:c2:49:29:02:
f0:d3:50:ad:06:23:a8:e3:f4:c5:a8:91:02:a4:b9:79:f0:27:
9e:e0:ca:a2:a8:97:99:2f:32:d3:e7:7e:a4:63:ba:8f:bc:e7:
61:5e:7a:0e:5c:e1:74:11:82:f7:b5:76:ba:9f:9a:3f:71:0d:
f7:e7:42:ac:3c:2b:4e:dc:01:80:49:52:0b:56:50:1b:ce:8c:
a5:e9:11:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:20 2025 by rpki-client