Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa
File: 3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa (raw, json)
Hash identifier: 8ldm32XUyMOpRp5JNArSyW9JE1SCy0cuIiKGzA0ySxg=
Subject key identifier: 79:D0:7D:0F:50:62:F6:09:D1:A4:86:F8:1C:E1:FD:1E:21:1C:F7:EA
Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72
Certificate serial: 5CC3B443079434BA857AA67015EB4DBA66A2B196
Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa
Signing time: Mon 01 Jul 2024 01:04:02 +0000
ROA not before: Mon 01 Jul 2024 00:59:02 +0000
ROA not after: Mon 30 Jun 2025 01:04:02 +0000
asID: 131706
IP address blocks: 121.101.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:c3:b4:43:07:94:34:ba:85:7a:a6:70:15:eb:4d:ba:66:a2:b1:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72
Validity
Not Before: Jul 1 00:59:02 2024 GMT
Not After : Jun 30 01:04:02 2025 GMT
Subject: CN=79D07D0F5062F609D1A486F81CE1FD1E211CF7EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:34:c0:1f:ed:14:0c:17:23:e6:14:ff:33:6c:
ef:1d:c5:0a:91:3c:0e:f0:97:3b:f5:97:03:db:32:
3e:33:a4:0e:6f:af:a6:f0:4c:be:86:db:a3:87:74:
b3:2a:52:01:54:1e:f9:17:e9:5c:6e:59:4e:63:35:
88:b5:ec:92:cb:c9:01:0b:87:71:86:7f:d5:79:f4:
6b:4a:9f:4b:85:52:c4:45:05:77:85:bb:6b:64:03:
5e:44:ad:20:9c:8b:ab:8e:a8:30:f7:f2:0d:29:e5:
d6:c6:6b:5f:ce:b1:d4:f7:9d:5d:ab:1b:4e:b8:27:
67:5d:77:aa:83:f7:e9:00:ee:ff:7f:05:b3:61:b2:
07:99:e3:b8:bc:7d:7c:1a:68:06:35:58:3e:7d:3d:
3e:a5:5c:ff:58:4b:a0:25:80:1f:a8:cd:c8:1b:02:
42:33:cc:13:1e:df:e6:66:c1:b2:21:25:e1:0a:d7:
76:93:4d:1e:c1:f6:8a:6b:ff:cf:1f:2e:3f:40:2a:
f7:78:8f:da:ef:5d:ee:0e:fe:41:dd:38:1f:db:57:
1e:57:62:b1:63:9e:7f:3e:08:e4:7a:2a:f5:55:bc:
d2:c2:7e:9b:bf:4e:7a:74:63:c7:9f:07:36:ba:e4:
27:a5:9a:d0:f5:d5:83:71:9e:af:da:e6:cc:62:c0:
08:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D0:7D:0F:50:62:F6:09:D1:A4:86:F8:1C:E1:FD:1E:21:1C:F7:EA
X509v3 Authority Key Identifier:
keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/3132312e3130312e3132382e302f32312d3234203d3e20313331373036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.101.128.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:95:47:1e:d9:5d:1c:83:34:20:7f:65:79:10:b0:53:86:59:
33:76:f1:06:b1:b7:14:33:75:73:c9:ad:83:1e:b8:99:c2:1f:
ae:75:4c:11:5c:42:7a:9a:69:41:4f:c2:3b:56:70:b7:4b:4a:
18:57:12:4c:4d:bd:21:b8:d3:d6:bb:84:e2:38:42:f6:c7:27:
bf:97:68:41:22:7f:00:74:a5:47:b5:77:f1:d6:2a:4f:65:7c:
75:a9:da:85:6b:4d:ff:c7:86:0f:e7:3c:05:99:a5:7d:0b:87:
12:70:62:5c:1b:00:6a:37:ed:b3:cc:0e:c7:b4:8e:78:4f:7c:
6c:db:e7:de:14:07:a2:f7:4d:ab:98:f7:6b:69:db:27:35:07:
21:70:39:7d:c9:35:2e:c1:0d:d2:14:69:2e:20:a3:5e:f6:a6:
c9:72:d5:65:6e:50:3d:36:59:32:76:9a:b7:a5:d7:de:64:65:
3d:d8:48:c3:8b:82:70:4a:59:10:9f:93:dd:39:86:4a:e4:f6:
a8:cf:e8:ff:94:0d:36:70:44:74:2c:b2:2d:45:66:3d:54:32:
72:76:43:c7:41:33:92:ba:79:1c:7a:8b:b6:13:5a:d5:80:d9:
1b:5b:9a:7c:11:00:bd:5b:5f:07:ec:d3:40:a7:89:3e:2c:5e:
b5:e2:c5:cc
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUXMO0QweUNLqFeqZwFetNumaisZYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1
NjNERkU3MjAeFw0yNDA3MDEwMDU5MDJaFw0yNTA2MzAwMTA0MDJaMDMxMTAvBgNV
BAMTKDc5RDA3RDBGNTA2MkY2MDlEMUE0ODZGODFDRTFGRDFFMjExQ0Y3RUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNMAf7RQMFyPmFP8zbO8dxQqR
PA7wlzv1lwPbMj4zpA5vr6bwTL6G26OHdLMqUgFUHvkX6VxuWU5jNYi17JLLyQEL
h3GGf9V59GtKn0uFUsRFBXeFu2tkA15ErSCci6uOqDD38g0p5dbGa1/OsdT3nV2r
G064J2ddd6qD9+kA7v9/BbNhsgeZ47i8fXwaaAY1WD59PT6lXP9YS6AlgB+ozcgb
AkIzzBMe3+ZmwbIhJeEK13aTTR7B9opr/88fLj9AKvd4j9rvXe4O/kHdOB/bVx5X
YrFjnn8+COR6KvVVvNLCfpu/Tnp0Y8efBza65CelmtD11YNxnq/a5sxiwAgFAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUedB9D1Bi9gnRpIb4HOH9HiEc9+owHwYDVR0j
BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx
QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE
RkU3Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i
MmQyLTBiOTMwMWE2NjZhNS8wLzMxMzIzMTJlMzEzMDMxMmUzMTMyMzgyZTMwMmYz
MjMxMmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN5ZYAwDQYJ
KoZIhvcNAQELBQADggEBAKqVRx7ZXRyDNCB/ZXkQsFOGWTN28QaxtxQzdXPJrYMe
uJnCH651TBFcQnqaaUFPwjtWcLdLShhXEkxNvSG409a7hOI4QvbHJ7+XaEEifwB0
pUe1d/HWKk9lfHWp2oVrTf/Hhg/nPAWZpX0LhxJwYlwbAGo37bPMDse0jnhPfGzb
594UB6L3TauY92tp2yc1ByFwOX3JNS7BDdIUaS4go172psly1WVuUD02WTJ2mrel
195kZT3YSMOLgnBKWRCfk905hkrk9qjP6P+UDTZwRHQssi1FZj1UMnJ2Q8dBM5K6
eRx6i7YTWtWA2RtbmnwRAL1bXwfs00CniT4sXrXixcw=
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:28 2025 by rpki-client