Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa
File: 3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa (raw, json)
Hash identifier: V61h/ARdlfsjMwhqIVGjx9HzHnH8mratQMJ2AbWnSMk=
Subject key identifier: 3F:F5:26:A7:52:DF:9B:FC:EA:1E:28:E6:38:D9:8D:98:2A:E8:9F:3B
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 6021D7596646AE34F487B3FC61D95AC01FCA803F
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa
Signing time: Tue 21 May 2024 08:02:40 +0000
ROA not before: Tue 21 May 2024 07:57:40 +0000
ROA not after: Tue 20 May 2025 08:02:40 +0000
asID: 24525
IP address blocks: 114.199.124.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:21:d7:59:66:46:ae:34:f4:87:b3:fc:61:d9:5a:c0:1f:ca:80:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: May 21 07:57:40 2024 GMT
Not After : May 20 08:02:40 2025 GMT
Subject: CN=3FF526A752DF9BFCEA1E28E638D98D982AE89F3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:06:0d:85:2f:bc:b3:f3:4b:62:ad:74:90:
4e:4f:7a:f1:4a:40:e6:60:06:a3:7a:96:03:65:fa:
45:87:d0:71:dd:91:e0:6f:26:7d:55:80:80:47:9d:
6f:e4:83:67:4c:ae:68:13:e4:08:61:c9:f0:43:5a:
2a:4d:4d:4f:03:b3:52:38:78:53:54:7d:dc:6a:92:
a1:87:7a:76:4a:6d:82:36:89:db:3d:aa:e8:66:6c:
ec:1c:16:ed:de:1f:a6:01:7d:d9:cd:02:07:3f:67:
d7:3d:4f:8f:3e:25:b7:b6:6f:88:b5:9b:2a:ca:c8:
41:db:68:58:2c:b6:4f:af:40:25:7d:f1:cf:38:73:
be:8c:af:9d:98:73:92:fd:b4:ed:13:0b:fa:cb:e2:
f8:40:5f:68:ad:0f:8d:79:a3:d1:a9:60:09:f0:35:
85:d3:16:a3:53:2c:86:10:61:07:4e:33:e1:18:61:
d8:69:6b:df:40:bf:1a:eb:6d:1c:d0:c8:69:68:08:
f4:0f:3a:4f:98:68:dd:c6:1d:a3:89:40:04:be:0e:
16:12:11:55:3a:01:1f:11:fe:2d:20:cf:34:43:a4:
e8:3b:03:4b:3d:0e:8c:b2:3b:b5:d1:e6:32:7a:b6:
c8:84:31:22:c2:3f:fc:b1:8a:6d:03:46:02:94:b9:
46:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F5:26:A7:52:DF:9B:FC:EA:1E:28:E6:38:D9:8D:98:2A:E8:9F:3B
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3132342e302f32332d3233203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.199.124.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:1e:26:75:43:02:9e:c5:c9:27:12:0c:d0:b8:39:95:60:63:
4f:b7:96:eb:13:29:ae:72:5e:da:54:0d:80:61:2b:d9:08:d9:
69:30:c4:31:1a:37:c1:dc:0d:78:95:24:38:47:43:1f:ef:63:
06:2c:37:9b:c5:00:e3:df:31:01:89:57:de:42:4e:c8:ad:6e:
eb:6f:b8:eb:67:30:ee:b1:89:d7:d3:9d:68:90:56:2d:47:44:
1e:1c:b1:c4:19:01:6d:74:e9:fc:28:a0:3b:5a:6a:e2:40:7f:
d0:d6:be:78:38:71:2b:38:c5:9e:dd:d5:34:e8:4c:95:a7:e3:
91:73:c5:0f:16:17:46:51:15:7c:4e:8a:81:7d:19:a9:5a:a1:
16:53:93:d1:20:c6:ae:ba:fc:82:1b:82:99:05:30:4f:5d:b4:
03:19:fa:4a:44:30:a8:ed:f1:4d:4d:f1:8a:be:5e:e4:ad:0d:
48:07:ab:fa:53:79:d9:e1:f7:36:05:15:51:06:e7:44:24:92:
e3:42:4e:87:98:2e:52:38:b9:27:c0:bc:84:25:0f:c4:6b:4e:
b4:ca:22:22:4e:c0:8b:62:58:7c:91:6a:2c:90:be:9e:e9:48:
5a:31:04:fd:82:b3:89:0e:f4:03:fd:02:63:e3:35:ba:6c:32:
5d:c2:e2:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:23 2025 by rpki-client