Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa
File: 3131342e33302e39312e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: jedqOlnfmt2x9cstPu+vdnlLOiOIpPcSVX7LRwkIMxo=
Subject key identifier: C4:4B:D5:0B:04:3F:DE:31:28:2F:50:B7:B5:11:57:0A:A4:D8:B9:C9
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 464993C3AE5F6584B038D0305E0E24ED1C7DB5EF
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:02 +0000
ROA not before: Mon 27 Jan 2025 01:55:02 +0000
ROA not after: Mon 26 Jan 2026 02:00:02 +0000
asID: 38165
IP address blocks: 114.30.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:49:93:c3:ae:5f:65:84:b0:38:d0:30:5e:0e:24:ed:1c:7d:b5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:02 2025 GMT
Not After : Jan 26 02:00:02 2026 GMT
Subject: CN=C44BD50B043FDE31282F50B7B511570AA4D8B9C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:78:a5:98:63:87:20:3e:d0:28:c2:7a:44:
6b:00:4c:8b:91:e2:8e:57:70:ab:b7:61:3f:53:de:
9e:45:2e:b8:63:9c:71:0c:db:27:d8:c2:43:f6:e0:
98:fd:54:1e:56:29:00:df:c3:04:b5:32:b7:2e:87:
5f:bb:62:35:c4:7c:54:85:05:02:7d:85:0e:ae:1e:
54:f8:cc:b3:68:71:eb:5b:81:1a:f6:9e:52:bb:87:
76:45:d5:4d:70:b5:8a:09:ea:b8:5d:17:7a:bc:9c:
c3:33:7a:fe:48:33:1d:f5:37:f2:52:fc:d9:da:ff:
45:4b:4a:17:a8:e8:7b:ee:3a:c9:7b:7b:5a:46:93:
28:8e:93:26:32:9f:75:24:40:29:bb:a0:24:62:0d:
67:2f:54:b3:f0:68:25:b0:a9:d8:70:52:21:27:ba:
50:09:40:7f:7e:cc:9a:05:43:0e:72:2b:46:42:9b:
3b:66:35:bd:a8:7b:44:62:1d:56:5f:be:46:25:71:
a4:5b:82:02:5c:46:f2:45:83:80:17:24:db:5e:d5:
03:03:8f:82:8c:26:d9:92:96:be:f1:ff:7b:73:76:
49:77:76:20:e1:10:a1:e9:83:87:ed:02:09:73:4f:
c1:e1:b0:1e:33:ba:fc:e7:4c:50:be:9a:4b:81:9c:
05:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:4B:D5:0B:04:3F:DE:31:28:2F:50:B7:B5:11:57:0A:A4:D8:B9:C9
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131342e33302e39312e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.30.91.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:dd:ae:cd:34:b6:d2:4f:59:06:0e:55:32:86:f8:2d:04:b7:
8b:be:88:12:8b:25:b0:4a:df:4c:9e:f5:2b:9e:af:96:f7:b7:
55:21:75:f2:da:1f:60:29:48:ab:46:d8:f0:6c:72:80:9d:f4:
1a:63:68:18:9d:05:ce:ff:9c:3f:6c:e5:25:59:c1:4f:d5:d6:
94:75:03:16:a1:cc:f5:4b:cb:b5:5a:23:49:dc:80:74:6b:45:
8b:2d:ba:4f:92:c3:75:7d:fd:d8:ee:bb:07:b5:57:0a:b2:5a:
c4:96:b4:47:83:39:31:18:0d:9b:8b:2f:19:00:08:8d:81:a1:
99:3a:40:6b:b1:6e:2c:c2:23:e2:cd:8a:db:38:04:bb:42:f1:
1e:89:b7:9e:5b:5d:3a:d4:b9:e6:10:ad:9b:10:3f:ff:e9:53:
c1:ad:52:58:ad:01:a3:5e:c1:61:40:e9:77:92:ad:b5:ae:aa:
99:f3:15:02:db:34:70:50:0a:71:de:b5:d9:ca:14:48:50:26:
e7:4d:1f:0c:55:c5:99:c3:35:c5:f7:b5:fb:ea:55:2a:82:f8:
09:6a:4d:03:84:5d:60:61:f7:1e:d9:70:61:4d:73:d1:0d:e9:
be:3a:dc:fe:5f:de:7f:5a:f1:a0:16:3f:5f:ba:6e:f7:94:9e:
20:e2:95:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:55:49 2025 by rpki-client