Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234312e302f32342d3234203d3e203338343936.roa
File: 3131342e33312e3234312e302f32342d3234203d3e203338343936.roa (raw, json)
Hash identifier: CRcQ2ZM69ZHD/S0iR9J5fnJ8F0eaiGzYqWa6qjC4cWE=
Subject key identifier: 8B:69:AD:D0:64:62:48:C6:94:EA:94:A8:F3:1F:6A:8A:09:6E:D9:34
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 2334081E90CE39E4EC5211AD70ED78C5ED43ED95
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234312e302f32342d3234203d3e203338343936.roa
Signing time: Tue 04 Mar 2025 06:02:25 +0000
ROA not before: Tue 04 Mar 2025 05:57:25 +0000
ROA not after: Tue 03 Mar 2026 06:02:25 +0000
asID: 38496
IP address blocks: 114.31.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:34:08:1e:90:ce:39:e4:ec:52:11:ad:70:ed:78:c5:ed:43:ed:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Mar 4 05:57:25 2025 GMT
Not After : Mar 3 06:02:25 2026 GMT
Subject: CN=8B69ADD0646248C694EA94A8F31F6A8A096ED934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fb:0b:c0:fc:eb:0c:18:87:23:55:ee:ee:2e:
d9:4a:84:28:10:46:69:91:5b:45:d0:75:ce:e5:06:
41:ca:e7:67:3d:af:a6:8c:7e:b4:cc:d7:a8:2f:c1:
47:b3:0e:d6:35:6c:61:a4:a4:7d:00:cb:4a:9b:48:
af:c7:2d:4a:e6:3e:0f:83:26:ed:53:81:95:6c:95:
ee:3b:3e:f6:19:d6:d3:af:8a:4f:1a:f2:7a:ce:69:
aa:13:e3:64:67:36:d3:c7:23:09:1a:a5:6e:d5:94:
e0:e6:9d:e5:62:d6:b3:25:12:db:18:30:78:de:fe:
93:1b:0a:31:af:23:4b:81:38:3f:1e:f2:c1:6e:a6:
f9:bc:b4:d5:f4:90:ce:f9:5a:97:49:9c:f5:0e:04:
bf:ac:8c:8e:ff:df:bb:3d:a7:ce:b9:f3:85:df:72:
54:b8:6f:ba:90:3e:82:4e:8b:88:c8:98:72:68:0a:
da:c0:ce:df:6e:dc:33:64:b4:da:00:6e:70:04:54:
02:42:5e:90:64:cd:08:52:59:ed:51:2d:6c:d6:e6:
6c:38:c4:4d:e9:26:49:da:78:e6:b2:ee:20:27:78:
ab:7d:20:59:ff:c9:c8:43:b6:3b:35:97:6b:79:bc:
31:47:d7:c4:73:04:cb:22:81:6b:f0:e2:be:e6:84:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:69:AD:D0:64:62:48:C6:94:EA:94:A8:F3:1F:6A:8A:09:6E:D9:34
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234312e302f32342d3234203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.31.241.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ce:f1:58:b0:ba:8a:7d:73:da:8c:8a:d6:f4:a9:1a:c0:dd:
c9:1d:e6:07:d4:6a:e0:9a:fa:4c:aa:9b:9e:11:78:46:cb:9f:
1d:15:93:ee:9f:d6:93:10:f6:84:85:84:b6:fc:7c:8c:c9:b8:
1a:b5:71:10:90:d5:50:1a:1a:71:d1:45:c4:f0:51:24:70:63:
35:99:d9:d1:6b:d3:0c:f6:76:73:ff:cc:ad:1f:f4:a4:58:a8:
a7:82:c0:48:46:84:da:ff:a8:9e:d5:77:3f:4e:eb:a9:32:d4:
3a:3d:58:2f:87:15:2e:e8:fb:9c:3d:bc:fa:02:cd:13:34:b5:
ea:db:66:22:7f:e9:1c:07:c4:8c:24:92:5d:78:43:3b:9c:0d:
fc:5b:d1:fe:c3:67:5a:cd:60:09:65:99:72:22:ee:10:a9:34:
d8:ff:c3:c1:e1:4e:08:bc:a4:f2:52:61:92:8e:2c:e5:de:ba:
95:d7:aa:7b:3d:91:4f:52:96:9b:5d:f5:84:ce:dc:45:08:34:
42:ae:75:c0:b7:d6:4c:b8:b8:f2:df:e7:d7:e8:20:75:84:30:
fb:1c:7a:e3:2e:5e:7f:2c:d8:8b:e5:91:c6:33:c4:bd:dd:e3:
14:27:94:e4:3e:97:f2:8a:19:97:1e:34:97:5d:02:c1:5c:bd:
72:1b:9e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:58 2025 by rpki-client