Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa
File: 3131342e33312e3234322e302f32342d3234203d3e203338343936.roa (raw, json)
Hash identifier: OIOES5O+RX5Z1KQtQm4Iya0N7oOxUwVxmejlVmUv+to=
Subject key identifier: D2:CC:7D:1D:3E:B0:7D:96:57:DC:78:DA:7C:18:56:ED:D9:09:09:FD
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 40FBE7FB2147940EA3EE7F1598123E4B25446953
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa
Signing time: Tue 04 Mar 2025 06:02:25 +0000
ROA not before: Tue 04 Mar 2025 05:57:25 +0000
ROA not after: Tue 03 Mar 2026 06:02:25 +0000
asID: 38496
IP address blocks: 114.31.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fb:e7:fb:21:47:94:0e:a3:ee:7f:15:98:12:3e:4b:25:44:69:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Mar 4 05:57:25 2025 GMT
Not After : Mar 3 06:02:25 2026 GMT
Subject: CN=D2CC7D1D3EB07D9657DC78DA7C1856EDD90909FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7c:70:47:64:98:fd:79:8f:10:5a:42:34:88:
10:11:f2:a7:e9:88:3b:b5:89:16:29:db:53:49:c3:
5d:5d:e9:24:5e:c9:b7:61:a0:da:10:0c:a5:35:b4:
8a:41:db:1e:ec:8c:14:37:46:ec:b9:4f:94:81:cb:
37:f8:5d:f1:c1:b5:a8:89:66:4d:f9:f9:ce:53:88:
51:f4:f5:b6:1e:7f:17:a8:7e:7f:8d:ab:12:df:c2:
37:ad:34:6a:4e:05:7e:e9:b6:3b:ba:46:fa:1a:49:
1e:3f:9c:a4:51:2c:84:67:a1:17:ba:3b:b8:38:73:
a9:93:de:e8:9f:43:43:48:e2:62:b3:d8:42:c1:75:
b0:b4:c3:7c:1c:9b:2c:a2:eb:a1:1d:d7:92:bb:4b:
37:8b:cf:cd:f5:a6:4f:c7:23:ef:50:14:fd:60:88:
1f:fd:ad:2f:17:cc:ea:92:27:b8:e6:de:e3:c1:e9:
f4:24:f9:42:d1:52:9b:bb:99:48:e2:3f:88:dd:66:
37:bb:c2:45:44:13:b1:54:79:50:49:d5:ed:52:d8:
39:7c:af:ee:a9:10:4e:88:14:4c:e5:a4:1c:78:ee:
50:89:b2:cd:6d:00:b5:db:08:75:12:c4:e9:93:9e:
8d:f9:db:f2:50:18:99:46:30:cb:75:02:a6:d7:0c:
9c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CC:7D:1D:3E:B0:7D:96:57:DC:78:DA:7C:18:56:ED:D9:09:09:FD
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131342e33312e3234322e302f32342d3234203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.31.242.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:87:47:86:77:5e:fb:4e:70:5a:40:af:45:f2:d6:8d:9b:1e:
aa:c6:6b:a6:5a:88:92:50:cb:d5:19:6f:cc:ae:5a:44:6d:7b:
2c:94:26:23:c8:2a:8d:85:b8:cf:3a:02:74:0a:70:2e:ce:a4:
66:00:cc:89:f9:b2:59:35:d5:6e:b8:03:b0:72:46:d1:6d:9a:
fd:73:d5:01:cd:24:4b:ae:ca:e3:21:82:57:23:0a:1e:9f:46:
27:03:86:a4:63:0c:c5:66:51:42:64:e8:57:c9:e4:c9:f3:f4:
2d:84:56:79:eb:af:fb:82:9f:a2:8e:76:2b:a0:95:bc:63:1d:
89:61:ff:85:90:b4:1e:5d:fb:02:61:37:28:2a:02:86:ea:48:
b2:7d:1f:f7:bb:b9:ad:95:a0:c3:66:73:7d:23:57:75:b1:36:
6a:95:0a:06:e5:3c:f5:85:7f:4e:2f:c7:57:9a:83:94:f2:03:
ad:e1:24:4e:d0:0e:59:c3:45:e1:2b:ff:45:2f:62:d7:0a:fa:
2a:f3:f0:af:7c:19:5b:4c:25:23:18:82:6a:00:46:17:18:96:
c1:e2:48:74:c0:fc:20:d0:ac:06:1f:14:a9:42:b2:19:b0:e3:
fb:10:6c:3d:20:37:44:fd:4a:d7:8b:00:b0:2c:64:49:dc:f7:
ff:7e:4a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:46 2025 by rpki-client