Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa
File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa (raw, json)
Hash identifier: 3EvU4TBtv6BXZiyYaAbxIfh7U9gKO1iNAgsQ6ldwMyE=
Subject key identifier: 3F:EC:11:3C:E9:A0:97:7A:FA:22:C6:73:0D:15:E2:81:74:C7:A5:A6
Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653
Certificate serial: 13C0E202977522D509D05E152D1F0F11BC72EDDB
Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa
Signing time: Tue 02 Jul 2024 11:00:01 +0000
ROA not before: Tue 02 Jul 2024 10:55:01 +0000
ROA not after: Tue 01 Jul 2025 11:00:01 +0000
asID: 141596
IP address blocks: 2001:df0:54c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:c0:e2:02:97:75:22:d5:09:d0:5e:15:2d:1f:0f:11:bc:72:ed:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653
Validity
Not Before: Jul 2 10:55:01 2024 GMT
Not After : Jul 1 11:00:01 2025 GMT
Subject: CN=3FEC113CE9A0977AFA22C6730D15E28174C7A5A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b7:ec:55:55:34:5b:d9:d3:ae:61:7a:d4:9a:
66:f9:c3:29:f4:6b:88:13:3f:ee:80:0e:bb:40:be:
df:e7:88:56:8f:91:9d:31:8f:52:6e:20:d2:e4:07:
26:5a:28:9d:e9:44:74:30:06:c5:e1:1a:73:72:0c:
a9:8c:f5:c8:b3:ff:03:59:54:7d:52:d3:9e:83:41:
33:88:6e:16:13:64:f2:38:df:df:ae:bd:73:04:74:
e8:80:ca:89:d8:7b:27:98:5a:92:07:e7:db:b0:56:
8d:da:a1:bb:08:93:59:77:3b:56:14:ef:90:f8:07:
09:db:83:98:dc:d2:25:1d:70:0b:9b:53:e4:1a:48:
bd:fe:97:61:7e:d6:6e:ac:56:3c:c1:9f:c4:d3:57:
2b:6b:79:43:e1:6b:03:e9:b7:77:f2:87:ab:f4:c0:
cd:e5:2a:89:33:f1:ff:ee:74:1d:fa:f0:03:21:a7:
58:92:47:05:b5:fc:39:dc:30:d1:24:50:c3:02:c5:
57:22:1c:16:31:c2:9b:bc:b8:fb:8e:8c:0b:ce:ac:
82:84:a2:e5:d2:2d:ca:56:67:c7:30:3d:19:2d:d8:
63:11:d3:1f:89:d6:9b:81:53:87:c1:ce:a3:91:39:
94:7f:f3:30:ec:94:d7:7a:12:9f:34:5b:c4:e3:c1:
38:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EC:11:3C:E9:A0:97:7A:FA:22:C6:73:0D:15:E2:81:74:C7:A5:A6
X509v3 Authority Key Identifier:
keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:54c0::/48
Signature Algorithm: sha256WithRSAEncryption
22:84:79:1c:18:af:01:04:4b:81:78:22:9c:de:16:1b:8b:44:
ad:d5:2c:c2:3f:76:41:93:bf:77:8e:d3:f1:4f:be:21:3f:45:
64:50:63:c9:d2:f0:0f:78:6f:e1:65:55:32:13:bb:94:a6:b1:
33:cc:f1:e5:b7:ca:43:78:c5:e4:62:ef:7a:10:42:fc:33:2d:
af:28:88:c2:09:26:0a:c9:9e:9b:ec:dc:17:21:50:3e:77:d7:
73:2c:4c:73:dd:39:a3:72:3d:23:84:38:12:02:e2:a9:fe:42:
52:85:31:a1:f7:5d:cb:12:14:64:f6:70:3a:fc:a1:9f:09:76:
6d:9f:e1:7a:2e:b3:3a:c8:fc:2d:43:aa:11:81:7f:ea:d0:24:
f0:55:1f:0b:1d:2d:c3:17:ba:9b:5a:05:28:b9:1f:81:37:44:
3d:c9:89:95:1a:7d:83:76:42:52:4e:96:e3:ae:20:f2:2f:7e:
d4:ea:7b:9a:ca:a2:18:47:38:16:c3:58:21:fb:0b:73:f6:14:
ce:94:7e:83:a3:58:71:f2:fa:49:3b:59:e1:76:f8:5e:6b:de:
e3:83:ca:9e:ef:eb:42:a6:83:c2:9b:ce:50:27:27:4c:e0:67:
a4:f0:ec:3a:99:41:22:49:83:71:4f:33:c0:45:67:d5:ae:9e:
84:d7:fe:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:43:57 2025 by rpki-client