Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa
File: 3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa (raw, json)
Hash identifier: TCU3+1VcJq6H5TzUUUllT50ScPoTTck5AtO5iXlicyk=
Subject key identifier: 4E:B8:80:6D:9C:B0:15:2B:F4:0E:DB:44:18:30:A9:CA:C6:A0:27:BA
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 2280C57A2DD5DD77450C4C0A63D852CE33A5E99B
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa
Signing time: Tue 21 May 2024 08:02:40 +0000
ROA not before: Tue 21 May 2024 07:57:40 +0000
ROA not after: Tue 20 May 2025 08:02:40 +0000
asID: 24525
IP address blocks: 114.199.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:80:c5:7a:2d:d5:dd:77:45:0c:4c:0a:63:d8:52:ce:33:a5:e9:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: May 21 07:57:40 2024 GMT
Not After : May 20 08:02:40 2025 GMT
Subject: CN=4EB8806D9CB0152BF40EDB441830A9CAC6A027BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:32:e2:e7:7c:69:9b:e3:67:77:44:d0:22:61:
50:47:c3:62:ae:6a:cb:aa:e7:76:5f:da:2b:91:35:
d6:a7:35:16:14:60:45:39:3f:64:c6:af:70:70:28:
0a:ac:f5:3f:9f:2d:42:5b:77:04:b6:c4:6b:80:9d:
18:66:48:44:93:1c:ed:26:53:b7:1f:c8:7d:b2:fe:
aa:b0:79:e6:f0:f5:90:63:1c:09:e9:3d:4e:42:6d:
1d:19:3a:90:75:12:f6:ca:d4:4f:64:7a:9d:c3:27:
61:3f:b0:82:58:8a:96:8f:b2:14:23:df:80:e9:2e:
27:35:fa:60:ef:08:fa:85:e6:28:f9:3c:c6:71:8a:
b1:46:7e:04:a4:fb:40:e8:e5:e4:5b:c3:a0:c6:e7:
3f:da:47:d5:13:61:ef:3c:bf:dc:c3:48:ff:f8:8c:
1d:03:76:3d:f1:46:f5:16:5e:71:fc:68:81:77:e2:
cd:a3:06:c9:96:78:5b:29:2a:86:e7:6e:12:1c:d2:
e3:84:15:b9:bf:93:2e:4e:6d:87:b7:f7:50:0e:2c:
cc:a8:d0:aa:12:00:c1:c1:9d:cd:e8:6b:01:58:a1:
3b:1d:7f:e1:09:15:86:ee:b4:c7:22:67:61:34:34:
6c:89:0f:5e:57:9c:ce:08:f9:3a:8e:0b:6f:3e:5c:
22:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B8:80:6D:9C:B0:15:2B:F4:0E:DB:44:18:30:A9:CA:C6:A0:27:BA
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32322d3232203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.120.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:c5:e8:92:b0:85:18:53:7f:01:8c:42:9f:96:db:d8:ce:03:
cc:f1:ea:97:e4:6a:78:6b:fa:9e:26:62:2d:cb:98:ad:cc:e4:
77:d8:67:42:1c:31:ae:5d:d5:71:1d:3a:d0:63:b4:e4:1a:88:
dd:d2:d2:13:68:10:25:2f:9b:6a:72:32:42:95:d9:c5:d1:41:
1f:b0:3d:63:75:2b:75:74:58:e4:20:c2:20:e1:38:53:3c:d1:
a1:68:43:80:bf:e9:1f:9c:a4:ec:8e:b6:9d:50:6d:30:af:26:
6a:ed:16:8e:99:12:40:ab:9b:60:b2:f8:d5:f3:2e:b1:41:c1:
ea:e5:f3:f6:1c:1c:0a:54:12:d8:d1:d1:38:e8:5f:ed:19:7d:
6a:73:4c:65:ff:63:8f:21:ed:62:71:87:e7:23:f4:b4:7a:33:
14:26:f1:b9:27:0e:05:b5:d3:2e:46:05:c8:05:a0:78:53:34:
c3:d3:54:b4:c7:6e:af:97:9b:c2:b3:bc:74:f3:a3:01:bb:e6:
05:3c:d1:97:e5:97:81:fc:3c:97:f9:ab:b3:ad:b1:9b:86:ae:
df:7f:55:8d:bc:6a:d2:c6:92:6f:ea:cf:ec:de:a5:b7:fa:cc:
0d:53:c2:91:83:e1:5b:74:e8:a9:ca:57:6d:7a:fc:4c:bf:5a:
bb:a9:1a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:29 2025 by rpki-client