Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa
File: 3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa (raw, json)
Hash identifier: gaI/JdpXPRXBwcDz0bkctFk00CZUGRuTUJabp2mMb/I=
Subject key identifier: 67:66:58:07:35:13:DA:EA:26:1D:DB:9A:7C:81:46:63:A1:F3:73:DC
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 2DB13C65FDD9E851135E641266BCE5EDAF25CCD0
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa
Signing time: Tue 21 May 2024 08:02:40 +0000
ROA not before: Tue 21 May 2024 07:57:40 +0000
ROA not after: Tue 20 May 2025 08:02:40 +0000
asID: 24525
IP address blocks: 114.199.104.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:b1:3c:65:fd:d9:e8:51:13:5e:64:12:66:bc:e5:ed:af:25:cc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: May 21 07:57:40 2024 GMT
Not After : May 20 08:02:40 2025 GMT
Subject: CN=676658073513DAEA261DDB9A7C814663A1F373DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:00:05:8b:34:cc:30:9e:37:cb:87:bf:3e:94:
24:d9:b9:69:5e:28:69:2e:7f:c9:13:53:68:4a:5b:
ca:b8:65:23:92:1c:0d:b0:47:17:9e:21:8c:ac:4d:
cf:53:91:fa:0f:ed:25:10:9e:d3:92:c6:6a:e8:6b:
82:66:94:b8:b1:74:0e:11:0e:bc:e6:b7:a5:c0:fb:
f9:7a:a0:7a:4d:9d:55:ae:8a:78:f6:b4:a8:6f:de:
0b:a6:9d:11:df:5e:ec:91:a2:a6:0e:46:e0:7d:5c:
37:79:f3:d3:ab:fb:06:be:ae:f3:0e:87:a9:21:32:
27:84:93:74:5e:30:83:85:cc:a8:70:ab:56:60:02:
cd:1e:30:3b:d3:53:8c:da:be:b5:41:01:9b:58:de:
8d:72:18:2f:d1:a0:88:5f:a2:e0:f3:4a:51:0e:3f:
45:e7:80:f2:22:30:e4:47:6a:58:b0:21:9a:ac:21:
b9:66:fc:fb:e0:2b:5c:26:db:35:bf:d6:ed:32:b5:
3c:58:1d:5a:6e:98:c8:1a:4a:c4:e9:88:fe:87:18:
5c:50:3f:97:54:66:b7:d5:ee:d7:7b:e9:65:a0:d0:
9b:5f:93:59:c7:2b:11:5c:d4:54:0c:25:f9:af:36:
dd:56:41:6e:b0:88:4d:fd:c0:ea:b8:87:58:48:a7:
31:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:66:58:07:35:13:DA:EA:26:1D:DB:9A:7C:81:46:63:A1:F3:73:DC
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32332d3233203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.104.0/23
Signature Algorithm: sha256WithRSAEncryption
38:97:cd:c8:13:0f:8d:a8:93:75:67:3a:e2:b3:74:5a:12:7c:
85:e2:6c:80:00:6a:21:6f:2d:f6:7c:11:8b:60:44:1a:b2:f4:
61:65:c2:6d:1d:ab:41:ad:32:af:82:cd:8b:0c:76:d9:9d:6c:
3b:96:f9:e2:38:cd:73:70:29:da:d8:88:71:1f:76:34:4e:d1:
9a:cf:17:7d:5b:d4:a9:48:ef:91:08:2b:63:36:8e:23:bb:7d:
bd:e4:cd:b0:34:ce:85:2b:67:23:95:d1:c2:8d:e6:d1:cc:b2:
d9:49:b4:6b:a3:7f:c9:39:0a:82:27:2e:50:7b:58:da:f6:da:
9e:23:75:74:2b:6f:de:0d:d7:19:f5:8e:de:8b:69:dd:65:74:
9e:6f:e6:af:76:ed:10:0c:16:9c:d5:93:d3:1e:f0:cc:6b:07:
ce:db:60:b6:eb:22:7b:af:35:e5:32:07:f6:58:e9:c6:61:c2:
35:51:01:02:d9:b3:2b:92:3c:1a:94:7a:b2:2c:d3:5c:16:43:
fe:b1:cb:a1:c7:84:20:5c:25:36:64:a5:08:75:de:15:d8:c2:
bb:c3:93:5b:1e:67:0b:48:99:67:91:62:ec:db:b3:6c:15:22:
e9:da:cd:07:c9:4d:9b:a8:d6:4c:45:d3:dd:3c:76:e8:d5:26:
41:a0:80:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:30 2025 by rpki-client