Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32342d3234203d3e203338313635.roa
File: 3131342e33302e38382e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: dh4VW4jk9voFHt0wnuB6vibMn57pL2FW19fAF0LOBJY=
Subject key identifier: 59:20:8A:02:1D:C5:C4:63:13:EC:32:81:46:AF:08:82:E5:80:CF:F7
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 2F57480E30C4B9BA65ABEEC35F46966A5D22D082
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:03 +0000
ROA not before: Mon 27 Jan 2025 01:55:03 +0000
ROA not after: Mon 26 Jan 2026 02:00:03 +0000
asID: 38165
IP address blocks: 114.30.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:57:48:0e:30:c4:b9:ba:65:ab:ee:c3:5f:46:96:6a:5d:22:d0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:03 2025 GMT
Not After : Jan 26 02:00:03 2026 GMT
Subject: CN=59208A021DC5C46313EC328146AF0882E580CFF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c7:66:87:19:35:e4:27:48:e0:7b:a8:f1:ee:
3a:4d:c5:3e:02:8d:cf:31:dd:5d:9a:bd:64:d9:ba:
da:1d:fd:99:c1:01:e8:e9:cc:6a:d6:50:70:d3:7d:
cd:2d:3d:e5:fe:7c:a1:8c:8d:e4:3a:ed:9d:a4:d2:
25:ce:01:ad:0a:bd:28:01:c3:3a:08:f8:55:83:ef:
75:6b:24:e2:08:b2:e2:09:30:da:5f:b0:ab:57:e6:
db:e1:2d:e6:c2:2a:50:60:67:da:51:00:88:38:92:
ca:de:6d:88:83:03:5e:41:8a:93:9c:fa:ed:08:0d:
a5:e7:c5:e9:03:59:67:04:a8:6b:9d:be:e4:6e:7b:
3c:7c:d5:c8:0a:ff:53:c7:54:10:da:17:40:08:c1:
58:5f:9b:37:50:8b:80:2f:c9:51:06:02:01:7d:c7:
50:d1:6d:a5:b1:18:db:b0:51:d9:3c:da:ba:a2:6b:
a1:c1:26:f0:1e:cd:48:bd:2e:d0:f6:b6:62:d9:7c:
aa:67:16:18:cd:da:06:83:07:8e:2c:87:d4:5a:e8:
0e:3e:ed:bc:5f:47:4e:84:f2:c4:1f:a5:ec:71:8c:
f9:f9:8e:a5:f4:2a:4b:4e:5d:01:8b:e8:aa:23:b6:
44:a9:72:0d:0a:66:65:31:69:e6:ae:35:69:26:9c:
35:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:20:8A:02:1D:C5:C4:63:13:EC:32:81:46:AF:08:82:E5:80:CF:F7
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e38382e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.30.88.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:9b:53:2d:aa:ea:a1:83:76:82:ca:aa:bd:5e:f5:c4:ca:8d:
2b:bf:e7:ca:5a:dd:51:56:82:87:9b:72:41:62:b9:48:1d:3f:
34:10:bc:3e:74:4e:53:bd:e0:0c:3e:55:dd:73:8b:86:11:43:
13:26:6e:88:dd:c0:8a:3e:26:b1:ec:e9:0c:76:43:99:9a:f3:
e0:cf:4f:03:e9:02:a8:4f:b4:14:99:d2:09:6c:2a:9b:78:32:
3f:5c:e3:43:df:6b:7c:95:56:7d:20:b6:88:81:27:d2:ee:68:
90:54:52:d3:2a:5e:d6:9d:47:a1:fc:8a:0c:57:6c:8c:3b:83:
98:1a:ee:bc:1b:81:b5:04:2d:69:35:1d:45:57:c1:ad:22:4a:
ae:c7:2d:57:c7:a9:d8:91:58:cf:8e:4d:85:a8:bb:67:36:a0:
c4:63:09:52:e4:6f:8c:83:39:cf:55:3a:50:69:f7:fe:41:51:
fb:91:cf:cb:15:32:b1:80:99:0e:f1:c0:9c:a7:02:73:e0:89:
56:0f:d4:e7:76:2c:d0:1a:da:ab:08:22:ff:41:e9:80:52:a5:
48:2e:9f:07:bc:c4:5f:03:e8:9c:c2:5e:78:c4:e4:c6:74:b0:
1e:79:ed:ff:c7:2c:dd:2d:df:64:c4:93:36:0d:12:c1:b0:f7:
2b:23:86:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:58:43 2025 by rpki-client