Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa
File: 3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: 5xErghAAkTHzEeFzRZzY3vdUqVIPoGve9fD14jZrZEo=
Subject key identifier: 83:29:04:54:8C:C3:40:D5:F2:CF:A9:4E:74:12:D4:40:CA:73:46:F1
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 066C74F86EABBDAB6E67DC2DB4BCFB7E2731BD2F
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 07:00:01 +0000
ROA not before: Sat 01 Jun 2024 06:55:01 +0000
ROA not after: Sat 31 May 2025 07:00:01 +0000
asID: 24525
IP address blocks: 114.199.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:6c:74:f8:6e:ab:bd:ab:6e:67:dc:2d:b4:bc:fb:7e:27:31:bd:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 06:55:01 2024 GMT
Not After : May 31 07:00:01 2025 GMT
Subject: CN=832904548CC340D5F2CFA94E7412D440CA7346F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:00:a6:b8:fe:e6:2c:2f:21:28:dd:b6:b2:4c:
56:ec:ea:b2:f5:62:56:48:46:16:bf:4f:7a:15:5c:
38:0d:f1:97:2a:85:ab:30:b7:62:c8:0a:fe:81:ef:
47:94:dd:37:5f:cb:8e:67:76:60:19:c6:7a:5c:74:
e3:3b:99:3a:eb:53:d6:65:89:7e:5d:14:73:b1:3f:
44:91:c4:19:88:ac:d9:53:4e:fe:33:63:d9:a8:7c:
b4:b3:48:75:ac:ae:c8:11:e6:2a:7b:1c:a2:a0:ff:
f4:26:5e:a8:a3:15:1e:88:81:9a:d9:66:7e:dd:58:
17:fc:da:cb:9a:d6:26:bf:74:84:a5:da:86:a2:38:
59:a3:5d:5e:23:36:34:ef:aa:b1:d2:b5:b3:41:31:
12:d9:2b:88:24:e8:a4:5a:5b:b3:d4:92:ce:84:29:
0c:a0:a3:15:0d:8b:8a:08:9b:85:0a:ee:ce:29:ea:
93:64:4d:0b:cc:f8:dc:9f:42:06:1b:79:7d:54:1b:
a6:61:ec:d2:ac:e8:67:0d:8f:e2:6c:86:e5:19:60:
d1:b0:2b:e4:66:7d:22:f1:e3:63:fa:b7:28:ad:54:
ad:68:c0:77:63:de:91:d3:71:86:2b:ed:17:fc:d8:
18:a7:22:07:3e:3e:71:7f:50:d2:49:ab:61:a9:99:
93:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:29:04:54:8C:C3:40:D5:F2:CF:A9:4E:74:12:D4:40:CA:73:46:F1
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130342e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.104.0/24
Signature Algorithm: sha256WithRSAEncryption
12:5f:80:f3:2d:41:9e:29:86:d8:8d:c7:86:69:68:d6:f2:b2:
da:09:94:a3:0a:ce:ea:70:b6:be:9b:0c:9c:37:b1:8e:b3:4e:
f7:90:e1:e8:ad:2a:99:e5:66:e0:b8:01:62:f5:3b:18:88:84:
af:d1:f3:3b:df:e6:55:e8:1d:85:d7:f9:9e:08:0f:8f:a0:f6:
ac:cd:96:d3:92:6d:8a:3b:d4:a0:87:cc:ff:7f:b6:83:2d:39:
cb:08:57:7e:ff:db:49:41:f2:e6:9c:06:d2:86:9c:3d:60:43:
3b:a4:74:de:7c:0b:e3:3d:0d:cf:f7:e9:f9:f6:c8:d3:96:3d:
a5:cf:57:c3:bd:09:a7:f1:37:d9:bb:e4:5c:44:ce:bb:15:53:
11:01:5c:fc:24:31:37:4c:e3:6b:a3:58:4e:0b:31:25:f9:0d:
0e:91:7d:b6:b7:78:7b:fe:eb:85:2f:6d:07:f9:52:1d:86:a4:
c8:6a:74:d4:a7:ad:63:e5:7b:44:12:94:10:68:8f:4b:54:de:
2f:8c:36:2d:3e:2e:a3:27:56:f2:62:40:02:a1:61:9e:69:43:
ab:4e:bd:5e:80:81:43:5f:ff:59:cb:6a:0e:0f:51:8d:8d:1f:
a9:d3:eb:9d:8c:5a:ea:62:fc:e5:39:72:0e:7c:d7:cf:ef:80:
c5:ed:2a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:40 2025 by rpki-client