Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa
File: 323430353a633963303a3a2f33322d3438203d3e20313338383233.roa (raw, json)
Hash identifier: s8lHN6mCeR+HJshcEVWQRH0RHZcp4BOPgK7V87vFKcA=
Subject key identifier: 7A:82:C0:1D:54:B8:97:10:63:B1:A5:F2:78:B3:DC:40:68:86:7A:88
Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D
Certificate serial: 1F439C64D66646E58611FC59C037A356C7332882
Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa
Signing time: Sun 18 Aug 2024 09:00:00 +0000
ROA not before: Sun 18 Aug 2024 08:55:00 +0000
ROA not after: Sun 17 Aug 2025 09:00:00 +0000
asID: 138823
IP address blocks: 2405:c9c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:43:9c:64:d6:66:46:e5:86:11:fc:59:c0:37:a3:56:c7:33:28:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D
Validity
Not Before: Aug 18 08:55:00 2024 GMT
Not After : Aug 17 09:00:00 2025 GMT
Subject: CN=7A82C01D54B8971063B1A5F278B3DC4068867A88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8e:d1:2a:9c:f1:08:06:9a:2f:6e:9b:a9:06:
46:02:f8:18:34:a2:39:95:ae:95:d1:12:f5:d8:6d:
b9:04:2a:98:58:a4:61:51:d2:d1:b6:a8:15:06:a4:
62:a1:a5:73:2d:a4:98:11:77:96:b6:fe:5a:a2:b4:
33:f7:62:65:f6:f2:00:04:91:fa:36:7d:fd:44:53:
3c:b3:6e:85:29:7e:18:93:d5:4e:46:3d:0f:17:5c:
f0:6d:70:e1:92:30:fe:08:d8:f3:d1:e0:36:38:d7:
67:46:d0:ac:85:97:f6:b8:7d:fb:f9:ff:d4:6d:9a:
d2:3f:f4:ba:eb:a7:75:59:6b:72:05:0c:f8:c4:11:
11:49:cf:d6:74:35:32:51:c5:e2:cb:d1:6e:b6:b2:
bc:e5:0a:a7:f2:cf:72:0b:b7:f6:14:c8:7d:6e:d1:
be:c0:6c:ec:3f:ce:1d:49:cc:77:86:df:3f:99:6b:
15:11:bf:8f:58:70:fd:7d:c2:c2:ad:30:66:3f:35:
32:57:3d:fe:0f:f3:c1:68:92:a5:36:40:5b:29:58:
e5:a7:d9:d2:30:26:67:8a:62:52:62:a1:5c:ca:cc:
69:54:55:82:2f:81:cb:ff:d4:fe:4e:56:0d:5a:d7:
01:d2:61:23:e8:5f:81:8d:6c:37:2b:de:c0:ce:db:
80:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:82:C0:1D:54:B8:97:10:63:B1:A5:F2:78:B3:DC:40:68:86:7A:88
X509v3 Authority Key Identifier:
keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c9c0::/32
Signature Algorithm: sha256WithRSAEncryption
56:dd:25:0c:f5:da:bf:5b:28:ab:18:ae:41:88:c5:c0:d9:c0:
b4:c4:a7:5e:de:4d:31:0b:eb:19:fe:4f:29:19:b4:3d:be:08:
39:fb:63:c3:3e:55:95:a5:70:a3:3e:fe:0f:3a:80:4e:f1:12:
47:e8:99:26:9e:fd:6b:70:38:f5:cd:f2:c8:3e:5b:11:b7:04:
59:2a:e3:f3:6a:81:54:ec:ac:74:47:8a:ee:ae:83:4e:62:fa:
b0:a1:78:27:6e:7b:01:0f:4f:2b:c2:ce:6c:d2:05:e0:d2:87:
b9:d6:a8:e8:97:98:c3:76:fa:ab:33:cc:1e:7a:d8:cd:a8:de:
fe:7a:5d:32:05:9e:98:5c:32:cb:93:38:2a:76:68:45:6f:1c:
e9:13:eb:d0:01:b2:21:0a:af:35:dc:69:b5:99:8f:fd:90:36:
bd:23:a1:1b:03:cf:2c:dd:eb:69:e5:b3:60:9a:b3:9d:b6:94:
c5:30:70:0e:26:42:bc:9a:b9:f6:59:8d:b1:2e:b9:34:dc:8f:
1c:50:fa:1c:46:9d:b4:17:71:fe:c3:87:6a:f7:86:d3:0f:2f:
7b:90:eb:34:d9:83:96:4a:43:88:86:01:c7:73:23:0f:34:c9:
c4:cd:2c:90:7a:bd:9b:c0:7b:2f:28:45:93:78:55:c7:9f:d2:
cf:d2:a9:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:05 2025 by rpki-client