Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa
File: 3132312e35322e3133362e302f32312d3231203d3e203535363939.roa (raw, json)
Hash identifier: y1d0G8T+Y3oi/U7zYsXxsMEdHM9mWNptYCytl+n7OUQ=
Subject key identifier: 2C:0A:00:F6:98:49:DD:64:16:AA:DA:78:9D:C9:04:27:B2:1D:8F:B1
Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Certificate serial: 230005CFD4BF703DF2A881979F6C9BE5A0973522
Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa
Signing time: Mon 01 Jul 2024 01:04:04 +0000
ROA not before: Mon 01 Jul 2024 00:59:04 +0000
ROA not after: Mon 30 Jun 2025 01:04:04 +0000
asID: 55699
IP address blocks: 121.52.136.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:00:05:cf:d4:bf:70:3d:f2:a8:81:97:9f:6c:9b:e5:a0:97:35:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Validity
Not Before: Jul 1 00:59:04 2024 GMT
Not After : Jun 30 01:04:04 2025 GMT
Subject: CN=2C0A00F69849DD6416AADA789DC90427B21D8FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:cd:9f:08:c7:14:6b:a0:f4:c7:31:28:e6:
f8:bf:b9:58:a6:c4:d0:02:5c:d7:41:d4:ad:7a:ef:
39:20:68:2c:95:8a:92:35:70:d4:ef:fc:ca:4a:c1:
fd:01:4a:83:9b:28:f2:4a:04:b8:63:d0:a7:41:ab:
b2:43:4f:6f:ef:57:7a:c3:c2:85:6b:ef:11:98:ce:
e4:bf:90:18:cc:ea:71:6e:a5:09:9c:ae:fa:76:eb:
b9:a6:4d:94:25:75:23:7f:37:f2:b3:c5:a6:10:8c:
93:90:8f:6a:6c:14:0e:82:e4:9e:3e:90:71:64:4c:
46:7e:71:33:f6:5c:2f:57:16:5a:be:1f:07:96:d1:
71:58:12:78:fe:8b:be:42:40:29:39:ab:18:77:14:
07:eb:52:82:14:55:bf:25:c5:46:29:08:c1:4f:8b:
a5:8f:30:87:66:a5:78:9b:68:12:d2:9d:87:0b:18:
ad:6a:5e:e7:7c:22:4b:e5:cc:a6:b0:5e:15:ed:a7:
d8:ba:bb:60:d6:6b:9c:58:66:c8:00:b6:75:b8:27:
b2:68:62:9e:76:46:21:ca:a3:69:04:c2:5e:1c:7c:
fb:e3:ea:56:29:eb:fa:df:30:c7:3c:51:67:b1:07:
86:a7:4d:4e:c3:b7:8a:c7:f5:d1:b6:da:b2:98:30:
37:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:0A:00:F6:98:49:DD:64:16:AA:DA:78:9D:C9:04:27:B2:1D:8F:B1
X509v3 Authority Key Identifier:
keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3132312e35322e3133362e302f32312d3231203d3e203535363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.52.136.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:43:1d:fe:3d:12:ce:0a:5d:ad:60:61:5c:f5:0d:64:f0:80:
52:5c:23:22:9a:b5:b3:64:54:07:e3:d5:a6:e9:bb:f8:27:91:
bb:1c:e5:1e:dc:46:49:ed:59:a6:2e:99:44:b2:54:a4:18:f0:
c6:10:e5:85:9f:28:88:c4:e3:d3:67:91:c4:92:34:a9:52:97:
a2:03:6c:1d:3d:9d:21:56:03:6e:83:42:ad:2c:d6:62:53:1e:
6b:75:f5:03:42:6f:d2:01:e7:f4:58:73:c4:4c:76:29:81:fc:
2a:f2:82:c7:40:f6:cf:fa:ae:6e:90:b8:95:a5:7b:4f:de:34:
5d:a3:5b:b4:b4:9d:5e:dc:ba:db:2d:69:ba:0d:0b:29:2f:a8:
1c:68:15:3e:93:75:6d:7e:70:5f:ea:5d:34:62:86:a2:10:3e:
a2:ce:12:78:22:a6:fd:78:39:20:0a:16:8d:9e:a8:6b:8f:cd:
61:b5:a0:5f:db:d9:e6:f9:ef:7e:5f:b4:1e:1a:19:4e:23:74:
58:ad:50:e8:dd:f2:11:63:57:eb:9d:ea:8e:f7:07:eb:cd:35:
5c:ea:35:04:2b:20:82:ac:fe:f7:ef:8f:d1:5a:07:08:20:b4:
8f:c3:a0:25:f0:29:10:90:46:56:1f:ea:b7:29:8d:fd:c5:23:
18:36:13:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:59:43 2025 by rpki-client