Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa
File: 3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: MLtX3gSKv2ZDFPpAgDBOaYUnoB1SSx6jcrjeDbDc1bg=
Subject key identifier: 88:0B:E5:F0:CD:75:FE:DF:C7:07:43:DB:80:2E:D8:5C:F6:9F:89:C5
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 66943A245E00263FC596A2B66E5F2C92C41D4559
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 08:01:01 +0000
ROA not before: Sat 01 Jun 2024 07:56:01 +0000
ROA not after: Sat 31 May 2025 08:01:01 +0000
asID: 24525
IP address blocks: 114.199.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:94:3a:24:5e:00:26:3f:c5:96:a2:b6:6e:5f:2c:92:c4:1d:45:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 07:56:01 2024 GMT
Not After : May 31 08:01:01 2025 GMT
Subject: CN=880BE5F0CD75FEDFC70743DB802ED85CF69F89C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:bc:8b:fb:7d:6d:50:8f:34:33:6a:ad:0a:
44:91:16:d4:4c:fb:82:90:03:7f:0c:ea:81:db:97:
52:cd:f6:fc:de:16:cc:3c:66:74:d8:5e:63:e5:bf:
98:b2:6b:cf:d1:89:d2:d1:09:f4:46:5f:13:a6:b7:
c6:75:a7:5e:49:30:2f:65:ce:2a:00:4c:9d:95:43:
24:4e:32:2d:21:1e:61:b0:d0:48:f9:b1:ce:51:99:
c7:21:c8:d0:40:49:45:e3:2a:f9:7c:83:98:68:cd:
03:c5:8e:81:e1:99:bc:03:34:e1:3c:b9:75:d6:2d:
1e:c4:34:60:e3:af:89:d9:8b:c9:e9:82:34:11:e7:
7a:71:74:ab:cd:e2:d9:7e:85:50:4a:a5:bf:ee:30:
ff:40:f9:97:b0:03:10:e1:0c:4c:2f:c7:75:09:31:
a5:8b:6c:5f:18:c2:71:64:9f:c6:9d:af:b2:ad:05:
69:4b:1b:3a:a5:c7:39:9b:e5:5d:a5:d9:1f:ea:95:
a1:76:70:25:84:0d:0f:db:14:92:64:d7:af:99:70:
28:0b:13:7e:e0:77:43:b2:71:56:ed:7b:e3:f6:bd:
37:78:e9:db:70:8a:e6:81:7e:e6:95:0b:61:19:f2:
35:42:89:a3:ba:32:b7:e9:56:eb:26:cf:42:9e:93:
a5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0B:E5:F0:CD:75:FE:DF:C7:07:43:DB:80:2E:D8:5C:F6:9F:89:C5
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3131372e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.117.0/24
Signature Algorithm: sha256WithRSAEncryption
23:81:91:8d:b8:39:53:76:d3:1b:f9:cf:fa:bd:fd:c5:c0:87:
1f:4a:bc:ea:c5:ce:18:fb:c9:6f:35:d4:a1:10:a0:84:73:42:
a8:c5:b9:13:79:74:43:2a:87:97:f8:5a:a4:4f:67:50:26:48:
1a:de:35:d9:5e:fb:28:99:3a:9b:6c:b0:60:dd:31:27:ef:64:
92:bd:22:aa:12:90:06:16:65:b3:99:60:ae:ba:dc:83:89:9e:
e4:95:9b:f2:b4:4a:33:3c:be:99:28:84:0a:50:9a:fa:f2:f5:
be:f5:33:25:a8:2c:f3:e6:53:7a:f1:0e:dc:8d:3b:41:c5:a6:
81:68:e8:d7:21:b0:fa:f0:41:db:4d:04:96:08:f1:ec:93:7b:
6e:5e:36:1a:3e:30:ef:93:4f:8a:3b:bf:08:d4:1b:de:c1:63:
0f:9d:4f:ce:2e:be:e1:44:61:57:d9:9c:a3:46:1c:26:15:a1:
31:9d:12:9a:51:95:50:95:3a:c9:3f:46:9c:aa:33:1b:1e:7b:
38:75:77:b9:c5:42:c1:18:96:5c:6a:69:13:0c:dd:b9:41:36:
14:c0:86:ed:88:1e:e0:4f:6b:ef:30:59:6d:d1:70:42:34:86:
d6:28:09:fc:95:4a:db:be:8a:a9:e9:09:99:b0:05:75:e7:2e:
2f:04:25:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:28:52 2025 by rpki-client