Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: sw0SlIxt+FA7pZy4rkUInlCn0uAcgR4nYJ5Re3N9oxc=
Subject key identifier: F5:1B:2D:3D:18:06:64:0D:96:12:DF:96:66:43:57:F2:4D:A6:B8:C2
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 03CA8CC8FE7C1917E53C48740C142958DAF57DFE
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 09 Aug 2024 11:34:07 +0000
ROA not before: Fri 09 Aug 2024 11:29:07 +0000
ROA not after: Fri 08 Aug 2025 11:34:07 +0000
asID: 153087
IP address blocks: 2404:97c0:103::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ca:8c:c8:fe:7c:19:17:e5:3c:48:74:0c:14:29:58:da:f5:7d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Aug 9 11:29:07 2024 GMT
Not After : Aug 8 11:34:07 2025 GMT
Subject: CN=F51B2D3D1806640D9612DF96664357F24DA6B8C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1d:71:9c:38:de:35:09:96:b3:04:f7:ad:49:
42:cd:04:9f:26:46:8b:f1:be:f5:84:fa:77:03:9a:
f2:ba:2e:76:59:07:5d:d1:7a:82:33:03:c6:b4:21:
98:65:fa:a2:e3:82:ca:c0:e0:e5:8a:bf:f6:0a:7d:
d9:c4:f3:8f:0f:9a:d8:af:b1:51:0e:25:6b:45:5f:
a8:97:11:03:f8:de:9e:d0:7e:27:a5:80:8c:9c:24:
32:99:42:83:67:15:1e:45:42:bc:4f:71:be:d5:e5:
ad:5e:1f:8c:2e:78:53:81:6a:1f:80:8e:2f:cc:e4:
9e:fd:e8:ab:7c:56:0f:1f:a4:d6:86:30:98:b5:e0:
74:03:01:99:6b:c0:c9:fa:2c:42:cf:61:cb:68:a8:
de:8a:f0:9e:9b:97:b9:05:1f:a1:a9:f0:2b:42:52:
42:24:9d:02:0e:36:29:e5:ab:ef:86:05:79:23:45:
65:f0:31:a2:b2:81:2d:33:6d:f2:2e:f7:36:70:d0:
a5:0c:93:5c:a4:ce:9d:6f:77:b0:64:df:eb:f3:25:
b5:97:c9:38:57:15:1e:8b:c0:7b:78:ad:44:05:9d:
ff:d2:b2:1d:57:4b:0b:52:95:03:f5:61:2f:56:48:
23:aa:c8:ba:ab:1f:af:c3:44:3f:7f:5e:9b:06:c7:
58:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1B:2D:3D:18:06:64:0D:96:12:DF:96:66:43:57:F2:4D:A6:B8:C2
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:103::/48
Signature Algorithm: sha256WithRSAEncryption
b1:5c:a5:a7:d1:b4:ba:b2:39:c9:5f:a6:1a:10:22:f5:59:01:
42:01:c2:55:4c:13:29:5f:38:30:87:53:09:7f:d5:6b:ab:fc:
85:e3:82:81:0f:0a:c1:31:9c:2b:4b:d4:62:3a:06:fa:7c:7a:
55:99:c7:15:cc:ae:a7:b5:3f:00:a3:4a:b7:4c:0e:e3:22:e7:
e2:c1:16:17:fe:e9:6a:77:89:b7:3a:fe:b4:d4:14:13:fe:9b:
9b:41:9f:68:c3:4f:9a:0e:ba:1d:c9:94:db:dd:19:84:b1:2c:
cc:9f:92:30:4a:3e:a7:a8:7a:ab:c2:09:59:d7:e3:b4:10:ea:
5b:0a:13:d9:37:b4:0b:7d:b5:e3:94:fe:05:a6:4c:ee:9a:db:
27:d7:b3:aa:d1:5d:7c:18:84:bb:19:29:55:93:9b:35:7f:ae:
c7:84:64:29:eb:6f:ec:65:93:60:ae:e0:a9:2a:ef:57:94:fb:
28:f7:f1:55:62:19:8d:9a:cf:06:cc:f7:be:9e:92:53:16:97:
ed:3a:7b:de:e0:a1:8c:f6:6a:44:32:df:65:74:20:df:2d:77:
5f:99:6d:04:27:f2:5f:33:5a:36:66:da:57:9c:ba:3a:00:33:
40:21:b6:e8:b2:1a:8b:f9:ae:f1:5c:0d:8c:47:e3:23:d4:83:
ad:c9:64:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:33 2025 by rpki-client