Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa
File: 3131342e33302e39302e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: NhcByjKsYCdm1MTjXo1gqwLlw2SFilHbUEgLIMwS/4w=
Subject key identifier: EF:9F:17:20:23:98:09:EA:6F:FA:2F:AF:60:EC:71:D6:2E:C6:5D:BA
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 7E2FCF834BC20353B1EF9F9F3E7DC620B42C3003
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:02 +0000
ROA not before: Mon 27 Jan 2025 01:55:02 +0000
ROA not after: Mon 26 Jan 2026 02:00:02 +0000
asID: 38165
IP address blocks: 114.30.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:2f:cf:83:4b:c2:03:53:b1:ef:9f:9f:3e:7d:c6:20:b4:2c:30:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:02 2025 GMT
Not After : Jan 26 02:00:02 2026 GMT
Subject: CN=EF9F1720239809EA6FFA2FAF60EC71D62EC65DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:7b:c8:78:8f:c6:ee:df:45:58:8c:fa:19:
f5:32:e0:05:1d:8b:8c:15:89:4c:71:96:35:4c:3c:
8f:dd:a9:f3:8f:88:75:fa:15:3e:f7:f0:4e:52:b4:
f5:9d:de:cd:df:a3:da:3a:de:16:af:8e:72:5b:7f:
4c:84:f4:f0:74:26:a4:2b:ff:34:9c:4e:b3:f7:4d:
71:42:a1:23:ba:c5:ec:3b:ea:33:d7:ab:ac:5f:5b:
df:88:ba:3b:f4:25:94:c6:f1:15:ad:3c:45:59:dd:
58:5a:fc:e6:46:86:14:fc:8e:60:f1:dc:c7:28:74:
e6:0d:5e:21:bb:a3:ed:3b:aa:3e:8d:db:40:29:b5:
7d:41:38:83:6d:c6:6b:db:41:fb:cf:e0:db:43:45:
eb:8d:c3:be:aa:eb:55:9f:4a:92:0b:43:ab:48:83:
d0:79:2d:89:d1:2d:1b:46:bf:32:42:80:32:a2:ef:
6d:e4:9c:db:d8:b1:81:e1:5d:21:49:8c:0f:96:41:
7f:21:5e:33:14:1a:f4:39:87:ab:17:b5:29:47:18:
1c:ed:dd:f1:fd:dd:e9:43:12:a6:03:8b:e6:25:82:
36:4a:e9:4a:54:cc:5e:9d:92:f3:8a:bd:5c:f1:8f:
59:51:77:af:26:bd:5f:0a:cd:2c:49:e4:c7:65:ff:
f0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9F:17:20:23:98:09:EA:6F:FA:2F:AF:60:EC:71:D6:2E:C6:5D:BA
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39302e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.30.90.0/24
Signature Algorithm: sha256WithRSAEncryption
69:75:c4:27:db:d3:10:b4:3b:42:75:9b:dc:93:4e:2b:3f:3a:
b0:41:ac:39:71:12:53:13:a0:3e:6a:cb:cd:6f:8f:47:79:dc:
9a:f1:14:9c:7d:81:99:a9:f1:29:58:fd:c5:2d:8c:b8:00:43:
c7:de:2e:2d:94:9d:c1:30:8e:06:bb:f8:fd:fb:6f:5a:ff:52:
d0:f8:ea:33:6d:09:85:cd:bc:74:f3:9c:57:b5:1d:5d:e0:85:
7d:98:a9:88:09:d0:c7:9a:46:23:80:f5:36:7d:ec:99:6a:37:
b2:6f:d1:b9:99:33:fe:d5:06:da:a5:a2:b2:4a:ac:46:93:53:
35:46:9f:12:0d:a9:f7:68:73:9b:40:46:c5:ee:4f:18:ee:29:
e1:b3:39:59:29:e2:3f:9e:5c:79:95:92:4e:a6:2a:98:c0:e6:
9f:00:14:0f:b7:30:9f:4b:a7:02:bf:b2:63:76:a5:5f:72:ee:
f1:ca:ee:c9:e7:76:8c:07:cf:9a:aa:dc:34:56:58:75:09:73:
3b:cf:4c:e4:67:db:7e:8f:b7:83:b2:99:e7:dd:79:d9:8d:22:
82:62:2f:10:d4:e4:9d:2b:0d:91:ff:2c:5f:f4:61:39:af:c6:
12:b9:c3:34:0d:57:1d:d0:f7:1c:c9:d8:bb:5d:93:50:a4:48:
43:a1:96:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:20 2025 by rpki-client