Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa
File: 3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa (raw, json)
Hash identifier: 5RcODNVnvG4anfuIn4JOjNA5C+A14hw8JlvtsFRIbQM=
Subject key identifier: CB:15:31:40:88:E9:61:F1:0E:D8:35:EB:19:D4:43:22:DE:25:A3:1E
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 30C527C4C8B1FA4E93B1315F94EECFB8A1953355
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa
Signing time: Tue 21 May 2024 06:00:01 +0000
ROA not before: Tue 21 May 2024 05:55:01 +0000
ROA not after: Tue 20 May 2025 06:00:01 +0000
asID: 24525
IP address blocks: 114.199.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:c5:27:c4:c8:b1:fa:4e:93:b1:31:5f:94:ee:cf:b8:a1:95:33:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: May 21 05:55:01 2024 GMT
Not After : May 20 06:00:01 2025 GMT
Subject: CN=CB15314088E961F10ED835EB19D44322DE25A31E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:92:dc:0e:6f:d0:0e:51:40:81:ef:f0:c8:
0d:d1:aa:86:88:25:f7:1c:1b:83:bc:3c:6d:b1:72:
c9:4f:1f:f9:16:d3:8b:28:f7:c4:bf:e8:ee:2e:38:
fe:fa:67:8f:a5:6e:c4:09:48:f6:fc:99:d8:b2:9d:
67:f8:60:77:bd:50:8b:39:17:6c:5b:c0:71:e2:4b:
17:6e:e3:e2:f6:45:5b:68:24:f5:a7:22:c1:eb:b0:
5a:a7:64:8e:4b:f4:99:cc:eb:4e:f7:ef:8e:34:00:
26:28:bc:25:7c:cc:97:9c:13:c6:53:06:1c:4f:78:
81:06:8a:07:78:2f:2b:7d:17:ff:d1:05:58:95:df:
52:df:a0:3b:ce:16:fb:73:c6:a0:90:a3:6c:61:7b:
b6:5c:25:4f:e4:c5:c1:e8:b0:1a:d9:37:dd:d3:49:
5c:96:c9:b9:4d:c6:69:7b:a9:48:60:d2:06:43:f5:
b7:9d:1f:d1:4e:35:b2:aa:2d:aa:c1:7d:25:35:c7:
ab:8a:34:ad:b7:3d:d6:74:4f:f3:a1:29:04:12:fe:
60:f3:1d:83:47:ea:b4:ce:eb:69:b1:47:3c:ba:61:
87:ce:fc:b1:7c:92:b0:7b:3a:29:a5:6c:a1:ba:33:
8f:27:1f:ac:47:04:0e:9c:b0:1c:cc:ae:76:52:6e:
bb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:15:31:40:88:E9:61:F1:0E:D8:35:EB:19:D4:43:22:DE:25:A3:1E
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32322d3232203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.104.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:dc:95:3c:27:d3:e6:4b:99:cd:84:76:86:d7:5d:73:fb:8e:
9c:d4:ff:18:e1:b3:50:fb:d5:aa:c8:e5:b9:c9:eb:d7:67:0d:
fe:8a:91:4f:7a:d7:75:78:da:6e:4e:cf:3d:67:9c:f9:a7:88:
d1:09:84:24:c6:83:ba:55:26:35:e7:c0:07:33:e3:88:bb:e8:
f2:b4:f6:5b:23:8d:cb:1d:9c:57:41:14:ad:38:8b:02:28:9d:
f7:c8:55:d3:d0:66:a1:0c:9c:88:aa:9e:0d:6c:b7:d8:62:e0:
68:0f:c2:59:ac:6a:ad:49:d2:34:a5:1d:73:1e:71:a3:7b:c7:
fb:b6:c3:3b:67:d3:b8:f1:38:91:5e:5a:13:3b:5c:01:4f:ee:
0d:9c:7b:09:f9:ea:cf:d7:42:0b:3b:a4:7a:6f:30:b2:64:20:
bf:ee:8e:7a:7d:af:94:20:19:bd:6b:78:d2:7c:37:00:8b:f2:
05:90:35:eb:b5:08:f0:09:47:41:4f:01:2b:6e:61:48:a4:22:
c0:0d:b1:ca:6d:04:56:fc:b9:88:fe:97:ff:cc:64:55:0f:5c:
87:5c:3b:c4:10:b4:4a:6b:09:38:8e:0e:6a:48:9e:4f:cf:c1:
98:a1:75:86:23:52:81:3b:8f:cb:51:14:89:00:c9:3c:7b:98:
7e:ca:a7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 19:35:48 2025 by rpki-client