Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa
File: 3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: ghdvpCnM0MCB9g4fWJEecsPeY257cMi7wMyQsFI9Hsk=
Subject key identifier: 5C:41:5D:65:F8:CD:9D:3F:12:85:B2:CE:B6:90:33:37:AF:28:AC:41
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 5156D44FD962E36D94A2A5ABD0E518A6DF4C777D
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 08:01:00 +0000
ROA not before: Sat 01 Jun 2024 07:56:00 +0000
ROA not after: Sat 31 May 2025 08:01:00 +0000
asID: 24525
IP address blocks: 114.199.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:56:d4:4f:d9:62:e3:6d:94:a2:a5:ab:d0:e5:18:a6:df:4c:77:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 07:56:00 2024 GMT
Not After : May 31 08:01:00 2025 GMT
Subject: CN=5C415D65F8CD9D3F1285B2CEB6903337AF28AC41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f9:d8:53:7b:b8:85:b2:c7:16:d7:6f:06:c9:
fe:1b:5b:a3:f6:e6:3c:bd:0f:1f:dc:06:20:b0:d4:
c3:71:da:7a:16:c6:c7:1b:78:60:a2:e6:e0:a2:c5:
da:73:12:ae:31:83:4c:b2:a3:0c:f5:1b:1f:63:86:
26:64:71:47:19:7b:27:00:90:9d:d2:9c:0c:31:58:
64:91:9d:22:55:d0:38:cb:f3:94:8a:e9:11:6d:8a:
5d:c9:a9:49:54:31:ae:23:f6:60:8f:8a:b2:4a:08:
20:3c:26:12:ed:43:37:1b:41:cd:1f:59:13:66:c1:
d0:4a:93:80:7d:75:28:15:e6:73:61:26:bf:79:8f:
77:1c:15:08:f3:54:f2:96:c9:d0:03:62:3c:d8:b1:
c5:48:32:46:5a:20:bc:28:9c:35:68:48:be:d0:2d:
19:bf:bb:e2:94:56:53:96:82:09:78:17:aa:21:da:
79:8d:10:6b:cd:5e:00:b1:68:bc:6a:be:5e:7e:30:
2a:4c:c1:c0:59:43:ab:0c:52:e9:1b:58:75:e5:79:
f2:27:95:b6:b1:00:85:71:c9:7c:a0:fe:85:43:ba:
b5:ae:dc:63:f3:d3:b9:6d:09:67:c6:98:a6:67:09:
76:8f:f3:8c:f0:ab:d0:1e:07:7a:a7:ee:b7:5f:5b:
f6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:41:5D:65:F8:CD:9D:3F:12:85:B2:CE:B6:90:33:37:AF:28:AC:41
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132302e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:36:10:5f:63:ce:19:3c:3d:cb:47:b6:83:13:75:ac:f9:5d:
ed:0c:2a:8e:72:5a:b8:33:94:38:a6:d2:5b:e8:53:6c:9a:c8:
ec:65:17:46:93:ff:1b:b6:5a:15:f6:82:37:ad:53:85:17:08:
68:3c:cb:2e:d5:f7:b0:ae:43:00:4e:6f:ae:00:c8:9f:6e:39:
aa:62:b9:38:5f:a3:16:4a:a9:52:2c:2a:94:3f:90:20:59:e6:
b4:00:1a:9c:d4:d0:55:f8:55:ab:8e:29:ed:20:3d:c8:fa:18:
63:39:78:a2:8e:7c:5a:a8:6a:dc:7f:91:c0:d8:f4:a0:a1:cd:
e5:f0:f0:e9:1c:c1:e5:2a:e4:0a:61:d5:f6:4b:98:51:d6:98:
92:52:99:b9:56:51:fb:cf:9e:59:2a:8a:d1:30:34:a8:a5:20:
75:4a:83:ad:5e:5e:90:10:89:45:52:7f:b7:d0:a9:72:a5:de:
99:fd:4a:a0:08:f1:3a:73:0f:31:94:c0:51:b7:67:45:2a:b5:
41:20:fb:20:c6:cd:62:63:10:b0:11:b0:2f:8d:f8:56:8f:0c:
90:b4:c7:4f:67:db:8f:f5:82:c9:ba:23:81:b5:d3:3c:2b:28:
69:65:fd:ce:9e:12:6b:4a:cb:ef:a3:ae:83:b4:0f:3a:a5:93:
d8:50:53:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:33 2025 by rpki-client