Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa
File: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (raw, json)
Hash identifier: y0Ec6JrQKxzntUk48Us/rCX52IJwb03iB7KaQZ7Fux0=
Subject key identifier: 19:07:CE:7F:94:B8:FB:05:40:C0:6D:21:77:99:25:35:57:DF:A3:1B
Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164
Certificate serial: 7C170EDEDB6B3796E9C14564B30FD63233E5D8B8
Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa
Signing time: Thu 02 May 2024 04:18:19 +0000
ROA not before: Thu 02 May 2024 04:13:19 +0000
ROA not after: Thu 01 May 2025 04:18:19 +0000
asID: 38785
IP address blocks: 121.101.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:17:0e:de:db:6b:37:96:e9:c1:45:64:b3:0f:d6:32:33:e5:d8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164
Validity
Not Before: May 2 04:13:19 2024 GMT
Not After : May 1 04:18:19 2025 GMT
Subject: CN=1907CE7F94B8FB0540C06D217799253557DFA31B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bd:53:53:e0:fd:4e:fb:09:f7:dc:15:5e:a0:
54:f5:12:68:1b:3a:be:72:d9:a1:54:ec:e8:99:7e:
00:46:ef:f8:84:b5:a6:8d:b5:2d:5b:b3:7d:0a:b3:
ad:7a:ae:4e:55:1e:34:2f:9e:51:b9:04:ee:da:bc:
ee:bd:1c:ea:7e:9a:cc:1c:28:a7:69:79:d5:ef:e1:
c7:41:3e:c7:e7:4a:61:02:8a:9e:ec:dd:2f:d4:dd:
7a:0c:fd:9a:36:94:96:0f:02:79:bd:53:a9:fa:5f:
13:41:c2:3c:ee:4a:3b:33:0a:3c:e8:e8:05:65:77:
6e:5c:90:e2:2b:e6:ca:de:3d:9c:27:3e:a1:9d:1d:
75:22:f9:c4:77:45:ef:18:7a:5d:20:2d:c6:78:da:
cf:76:c9:dd:d7:f6:dc:87:b4:50:29:09:c5:59:56:
dc:88:0d:cd:9d:21:14:89:59:a8:09:37:46:b0:53:
5b:ac:ee:0c:33:b2:b6:49:bf:b0:42:39:13:9e:32:
20:fd:57:12:1e:3d:f9:87:f7:1d:d9:25:6a:a5:fb:
a4:82:3c:ed:b1:c7:28:fd:2e:c1:85:1e:cd:00:26:
91:df:cc:7d:8a:16:41:8e:85:94:a8:61:2e:ec:43:
8a:82:aa:b0:d6:3e:2a:4f:9b:2d:6d:86:16:2c:4b:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:07:CE:7F:94:B8:FB:05:40:C0:6D:21:77:99:25:35:57:DF:A3:1B
X509v3 Authority Key Identifier:
keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.101.190.0/24
Signature Algorithm: sha256WithRSAEncryption
77:19:c3:f9:c4:4b:c3:91:10:a6:b3:79:6c:8a:f0:a2:fa:41:
5b:5b:d1:c8:2e:07:b9:f8:27:2a:a6:df:2b:87:1c:e6:f0:cf:
bf:ee:d6:b6:3e:f7:1f:7b:de:02:98:48:cb:b9:f0:42:08:86:
4c:00:c8:9b:a9:bd:4b:b3:6e:69:dd:c4:26:ea:09:40:5e:65:
e6:e1:1f:7c:12:fa:06:e7:8e:8e:e4:0f:46:4e:ae:9a:d9:8f:
63:31:d8:f7:87:2b:88:32:f4:05:1c:d5:22:64:a2:cf:d0:d7:
d0:36:43:0f:af:a6:28:02:db:a6:72:83:98:07:3f:7b:a3:ec:
50:2a:e9:32:84:ba:ce:20:58:b3:59:99:de:dd:93:c2:a8:f1:
2e:5e:cc:85:cb:a7:1d:97:6c:22:76:e2:88:3b:63:a5:a8:4a:
6e:58:a0:53:93:86:51:44:c3:56:e8:27:a8:e4:18:5f:13:87:
7b:f4:9b:69:1b:fb:2e:8d:1e:3b:57:de:09:af:f6:1a:b4:c2:
9c:45:6c:86:8d:38:ab:c0:34:c2:c0:4d:90:45:9a:fb:04:6c:
43:0f:ee:b6:6d:bb:81:ee:b1:dd:2e:5b:25:ef:73:ab:9f:0f:
0e:bd:5d:1d:44:0a:a7:69:4c:2d:42:04:99:f0:cc:c3:26:ef:
76:26:3b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:28 2025 by rpki-client