Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa
File: 3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: X8nP5p9yrxv63UAiUEUj8/CMvaTkFF3V4PYfp4WCtiw=
Subject key identifier: 15:48:DF:A5:45:C7:7F:39:85:6C:D3:0D:77:59:54:EE:2D:74:BD:CC
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 438C008D1E246BA6D81E36DA4056441B4CAF84AA
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 08:00:59 +0000
ROA not before: Sat 01 Jun 2024 07:55:59 +0000
ROA not after: Sat 31 May 2025 08:00:59 +0000
asID: 24525
IP address blocks: 114.199.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:8c:00:8d:1e:24:6b:a6:d8:1e:36:da:40:56:44:1b:4c:af:84:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 07:55:59 2024 GMT
Not After : May 31 08:00:59 2025 GMT
Subject: CN=1548DFA545C77F39856CD30D775954EE2D74BDCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0d:f1:05:79:f1:00:e9:18:fa:ae:14:96:1c:
7a:71:ed:c8:a4:3d:db:e2:6f:b5:c8:8d:ee:ad:42:
08:2b:98:b7:ad:d0:5e:ca:25:30:4a:03:f1:83:fc:
cf:bc:b5:9c:2f:1b:a4:83:1f:7f:6c:65:f9:88:78:
b6:44:b3:bb:f1:35:d1:c0:18:e1:ba:3f:91:51:b7:
b8:ff:c5:d5:58:b1:f1:b8:6a:7a:91:3e:8e:11:6d:
64:90:fa:18:f3:df:98:36:3f:e3:bd:ea:fd:74:d1:
3c:da:b7:2c:86:c9:ed:48:c6:18:fd:14:bd:fa:9f:
53:21:16:22:35:64:35:a4:7b:ba:01:b3:af:32:19:
6e:77:b4:b1:26:45:8a:dc:ca:ba:08:d2:42:db:70:
65:a8:96:cb:8b:7a:e5:09:5c:c2:0e:ed:74:96:f8:
81:ad:55:b4:26:59:cc:dd:b9:4f:06:2b:08:b5:29:
b1:2a:e2:2c:7d:fb:88:99:b2:86:00:a0:95:5f:86:
67:00:41:ec:48:5d:72:c0:13:10:c8:f0:ea:fc:c7:
e5:9c:10:59:a1:8d:c0:4b:e4:f5:b9:d5:ca:aa:c2:
e4:55:20:c9:a8:68:b0:08:d6:f8:ee:f6:c4:b1:20:
63:72:ef:fe:d4:29:55:bd:d9:88:cb:d1:2a:1c:c5:
04:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:48:DF:A5:45:C7:7F:39:85:6C:D3:0D:77:59:54:EE:2D:74:BD:CC
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131342e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.114.0/24
Signature Algorithm: sha256WithRSAEncryption
79:0a:ca:ee:75:82:bd:86:54:76:32:2c:f6:3e:06:72:de:94:
50:fe:cd:57:61:55:43:6c:d4:45:b5:32:9a:3c:49:06:0f:ad:
76:79:4c:d8:4a:25:f2:a0:12:c7:bb:d8:51:d2:08:4c:8e:6c:
93:d2:6a:45:7f:c9:b4:95:03:75:22:2e:78:f3:85:55:1c:8b:
62:00:5b:67:c3:71:50:7f:64:7e:48:21:65:d5:ce:ba:84:d9:
9e:b4:b1:3c:c3:b8:9a:24:1c:fe:a7:55:d3:50:cf:29:64:14:
16:26:84:fc:5b:d0:47:0e:c3:f3:9d:ea:a7:12:5b:42:56:82:
d2:7c:64:01:1f:51:98:04:35:d9:5d:7e:0b:b0:63:3f:ab:30:
84:d5:e4:89:43:59:73:41:f6:c6:56:44:7e:b6:34:bb:5b:76:
94:5b:a2:0b:d0:f9:99:25:f3:00:76:1d:0e:d5:e4:41:81:ed:
7f:f4:de:f1:5d:a0:13:ba:27:69:60:ad:c4:ea:06:2f:eb:5e:
59:c1:a7:dd:ae:25:4c:bd:0d:b2:5d:5c:67:cf:e3:9c:56:ea:
aa:29:96:a7:3c:b1:42:ef:87:c6:13:0d:55:5a:fb:61:3a:c9:
5c:62:74:13:17:88:84:65:ee:45:2e:67:b1:f9:6f:09:cf:97:
68:34:19:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:57:04 2025 by rpki-client