Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa
File: 3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: WnvbJYABZJGKRuil33/tr1eNMYE8sMHoReaPO1PRhx0=
Subject key identifier: 6E:C6:8C:71:FB:75:16:B5:04:16:12:68:ED:9C:02:C4:BC:27:F3:C1
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 67ADFAADF14675A5643176DF6EA6177A34CEBA5E
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 08:01:00 +0000
ROA not before: Sat 01 Jun 2024 07:56:00 +0000
ROA not after: Sat 31 May 2025 08:01:00 +0000
asID: 24525
IP address blocks: 114.199.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ad:fa:ad:f1:46:75:a5:64:31:76:df:6e:a6:17:7a:34:ce:ba:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 07:56:00 2024 GMT
Not After : May 31 08:01:00 2025 GMT
Subject: CN=6EC68C71FB7516B504161268ED9C02C4BC27F3C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0c:6e:cc:79:5b:23:97:b3:7e:53:22:dc:b6:
fb:30:9f:9c:3b:a5:2a:4c:a4:8e:1d:dd:01:10:c9:
a8:60:30:9b:8f:4f:e7:59:b5:4c:39:ea:84:29:03:
01:03:c6:e6:e9:fc:de:9f:2b:b0:4f:98:cb:13:18:
b8:e9:bd:c0:a4:e9:7f:c4:0c:98:ba:d6:98:8d:af:
90:99:dc:6c:50:65:e1:e7:e8:13:cf:8f:f0:7b:ab:
23:6e:5f:2c:58:35:81:4f:ef:fd:ae:5e:b7:ae:0d:
87:9f:10:78:5e:f5:18:ab:1d:4f:df:6c:4b:3f:e9:
10:23:dd:00:23:2c:85:d6:c7:80:a5:db:65:38:7a:
e5:06:68:42:2b:52:12:99:51:ff:98:42:cd:82:da:
a8:32:c3:06:79:4d:39:2c:56:af:e0:dc:0f:fe:7f:
45:cf:2d:8f:c3:bd:53:37:97:17:af:2b:75:e0:eb:
43:55:df:96:5b:e3:8e:98:76:55:59:67:bb:ee:08:
f9:4f:e7:fb:00:26:67:92:f0:91:e2:ed:6b:dc:31:
cf:56:b7:b9:e7:68:62:44:ce:cc:85:ed:b5:e3:c1:
a6:4a:96:84:6b:6d:3a:f1:03:0b:bc:cf:18:4e:01:
42:9d:47:ab:6f:fd:df:3c:9d:10:a1:70:4c:51:af:
9d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C6:8C:71:FB:75:16:B5:04:16:12:68:ED:9C:02:C4:BC:27:F3:C1
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130322e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.102.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:54:48:c0:73:79:ec:7f:79:8b:34:b4:dc:4d:dc:28:bf:d8:
83:aa:8d:ec:ec:29:b9:24:4a:66:bf:68:45:2b:b7:1b:c6:41:
0e:67:64:32:43:e8:6d:e7:f3:30:86:6d:ee:ee:0f:5c:d9:a3:
d6:bd:11:07:85:c3:ae:5a:f2:02:6b:f4:db:38:c2:1e:c1:86:
f1:44:d4:91:64:2b:19:94:56:94:e2:51:56:1f:13:67:cb:ba:
54:99:af:f7:b5:d1:14:2e:9a:08:5b:0b:b0:24:aa:f9:d3:04:
9b:ff:7b:f0:5b:9e:64:3e:e4:38:0c:23:ab:d9:9e:c8:61:7a:
c4:05:b0:4c:d7:ac:cc:58:57:de:bd:7c:b3:09:0a:d8:8c:a1:
31:75:34:83:18:b8:05:4c:23:e1:6e:5d:99:06:d0:c0:c7:19:
a8:e2:5b:54:33:94:8e:e5:40:76:56:ec:e0:db:79:5f:5c:19:
44:8d:4c:2f:78:94:62:36:94:87:7e:ba:e1:67:c8:f6:10:31:
d0:d9:49:5b:d7:27:be:03:a2:a4:80:43:f2:19:11:8c:60:0b:
fd:38:98:50:51:51:81:4e:c5:7d:b0:0c:89:7b:29:ac:d2:61:
5b:1d:0c:de:68:56:e7:db:1d:43:86:a4:d9:99:fb:e0:d1:1e:
e5:3c:6d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:48:54 2025 by rpki-client