Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa
File: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (raw, json)
Hash identifier: n84lQxFjMaL3Y9UQU8GKoerRQT4fOqmo8MdPg5kVYsQ=
Subject key identifier: 75:AB:E3:01:68:A9:2B:00:0D:66:65:40:EB:F0:0A:39:E6:C0:C3:65
Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164
Certificate serial: 663620B566AD8E27297EC5024EC44AAADFC14C95
Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa
Signing time: Thu 02 May 2024 04:17:55 +0000
ROA not before: Thu 02 May 2024 04:12:55 +0000
ROA not after: Thu 01 May 2025 04:17:55 +0000
asID: 38785
IP address blocks: 121.101.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:36:20:b5:66:ad:8e:27:29:7e:c5:02:4e:c4:4a:aa:df:c1:4c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164
Validity
Not Before: May 2 04:12:55 2024 GMT
Not After : May 1 04:17:55 2025 GMT
Subject: CN=75ABE30168A92B000D666540EBF00A39E6C0C365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:19:98:a1:5e:ce:e8:fe:46:80:58:5d:45:a0:
c3:a9:7f:2c:44:58:24:b8:1a:9e:a9:cf:9b:2b:09:
ef:09:f6:5b:bf:ad:59:02:8b:fa:95:98:bd:ab:d8:
dc:cb:ab:f7:2c:10:05:82:ee:76:2f:56:87:54:77:
74:b9:a6:9e:92:7a:68:ca:96:63:5e:da:5b:31:9a:
5d:4f:00:b9:01:e7:99:e3:7c:b2:92:9b:60:a2:65:
72:35:ae:b8:4a:44:40:8f:a0:18:6d:cb:d3:b2:04:
ba:4c:e2:76:c6:d4:30:62:b6:73:60:10:ec:da:f6:
ed:a7:7d:15:d7:9e:4f:de:85:85:af:d8:c0:b7:3d:
51:99:11:e0:68:ea:c2:ab:8f:03:67:af:8c:0c:25:
85:3f:02:71:39:a0:05:99:47:9b:4b:6f:2e:3e:35:
30:78:f1:ea:e8:4b:aa:e9:a6:18:c2:54:02:62:92:
1b:40:f3:25:3f:41:86:c3:6b:8b:de:fc:ac:1a:30:
eb:2f:10:32:7d:65:12:27:7b:67:fb:ca:49:d0:e5:
00:c0:f4:6b:15:83:ab:e6:c6:8a:c2:0b:2d:46:84:
52:08:85:88:ba:f8:7d:16:ac:1a:61:d5:db:00:19:
80:20:24:a3:01:c5:e0:a8:0e:d7:1b:0d:68:a8:8b:
82:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AB:E3:01:68:A9:2B:00:0D:66:65:40:EB:F0:0A:39:E6:C0:C3:65
X509v3 Authority Key Identifier:
keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.101.187.0/24
Signature Algorithm: sha256WithRSAEncryption
54:15:61:10:1e:fe:10:c1:35:c6:0c:00:e7:1e:54:52:29:ca:
0d:4f:df:d0:bd:ba:8b:0f:f0:88:86:0e:e4:93:7f:be:4f:d3:
3a:9a:2d:52:14:a9:6d:5c:26:0c:8f:6e:93:71:21:f2:3e:3a:
ce:86:61:c5:51:a7:4a:27:e9:5b:99:4b:da:98:25:8d:16:5e:
e0:c6:cd:b0:86:8e:06:3a:d9:fd:41:36:fa:0c:18:99:6f:77:
9b:5c:d4:95:7c:96:52:f5:ba:7d:7e:93:5b:0b:13:6f:c6:d6:
87:87:d0:6a:c8:dc:08:0c:7b:16:38:aa:76:f1:9a:32:a3:11:
23:e7:0d:90:44:05:48:cb:9f:48:71:23:60:18:b0:97:0d:f0:
6f:2b:fa:ce:99:ab:e6:ea:b1:c6:6f:1b:a2:d9:2b:38:25:6d:
65:8f:36:7a:78:68:25:42:ae:50:94:70:64:13:01:9d:c3:df:
39:b2:35:fa:a2:3f:cc:ad:6f:d5:59:2f:72:95:ac:a9:85:a1:
10:cf:03:9f:07:40:fe:fb:e3:39:60:08:41:51:bd:a0:84:a5:
17:f1:f3:e2:d5:d4:18:01:34:a2:9b:81:1c:b2:07:b8:ae:d5:
59:db:4d:ac:91:da:2b:ed:fe:e3:d2:dc:0d:01:46:e1:36:f7:
d1:d9:52:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:10:22 2025 by rpki-client