Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa
File: 323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa (raw, json)
Hash identifier: C/eQpXS1FL2/uRM5yW4FJhP7RGRcdJRCrZp3lfFC1uQ=
Subject key identifier: B5:67:D5:C7:B4:48:C4:09:DA:15:35:91:2F:43:CF:D6:9D:32:95:52
Certificate issuer: /CN=1F515919CCC0A900FF9717E1B7EF11F5A5183DF3
Certificate serial: 44F50F71EE7FB01AB74B1AF078B717319DF386D8
Authority key identifier: 1F:51:59:19:CC:C0:A9:00:FF:97:17:E1:B7:EF:11:F5:A5:18:3D:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa
Signing time: Wed 16 Oct 2024 06:27:29 +0000
ROA not before: Wed 16 Oct 2024 06:22:29 +0000
ROA not after: Wed 15 Oct 2025 06:27:29 +0000
asID: 153127
IP address blocks: 2001:df4:58c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f5:0f:71:ee:7f:b0:1a:b7:4b:1a:f0:78:b7:17:31:9d:f3:86:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F515919CCC0A900FF9717E1B7EF11F5A5183DF3
Validity
Not Before: Oct 16 06:22:29 2024 GMT
Not After : Oct 15 06:27:29 2025 GMT
Subject: CN=B567D5C7B448C409DA1535912F43CFD69D329552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:79:0b:3d:03:12:35:90:48:30:a0:36:aa:5e:
0b:97:fe:7c:1b:68:55:79:10:6b:ac:bf:7b:03:a7:
2b:31:68:30:9a:17:ac:77:83:91:21:e5:f1:43:c0:
3d:05:fc:35:7a:5f:94:b5:d0:c4:46:98:f1:36:41:
05:9d:03:cc:d2:b9:56:0c:0e:0f:ae:53:7c:85:48:
22:fe:c7:0a:84:29:0d:7c:06:77:7e:d5:86:24:0d:
c4:12:82:c0:67:5b:b6:d2:bf:a3:54:61:bd:e3:16:
97:3a:ac:3b:c1:6f:ed:20:40:1b:27:a5:45:aa:8a:
81:af:e7:45:29:9a:ac:3d:91:e6:cb:7f:57:13:be:
47:51:c9:ed:80:e3:45:e7:55:71:7a:f6:0e:a9:24:
1d:ea:a4:15:a4:45:b2:9b:71:85:5b:ea:9c:5b:39:
6e:4d:27:aa:1e:ce:ac:26:6c:82:09:26:04:07:c4:
b7:25:e7:67:44:41:c6:93:e5:88:5a:d9:b4:b9:f9:
d8:f3:53:5f:4a:a6:97:b1:a6:40:1a:e9:31:32:70:
5a:af:25:04:d6:b9:f1:7e:2c:eb:0a:01:64:0e:8e:
1a:e1:61:e5:3e:55:59:7d:2a:c2:db:99:3d:1e:22:
0c:b6:a6:84:e9:71:85:32:cc:82:7d:84:7a:61:50:
05:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:67:D5:C7:B4:48:C4:09:DA:15:35:91:2F:43:CF:D6:9D:32:95:52
X509v3 Authority Key Identifier:
keyid:1F:51:59:19:CC:C0:A9:00:FF:97:17:E1:B7:EF:11:F5:A5:18:3D:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F515919CCC0A900FF9717E1B7EF11F5A5183DF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:58c0::/48
Signature Algorithm: sha256WithRSAEncryption
1c:b9:71:af:2f:fc:d4:5b:21:77:2c:bf:ed:3e:f1:7d:3a:1c:
6e:c9:d5:55:55:22:3e:d2:b2:67:fa:66:56:14:0e:7a:7d:13:
75:3a:a0:14:dc:a5:63:4d:2f:5a:a0:76:2a:88:c1:6c:9b:8e:
1d:d4:6c:ea:bc:25:e2:3f:7c:c8:38:8e:8c:b1:87:f0:3b:85:
84:bc:7e:ea:76:b8:4c:34:20:10:dc:cf:18:73:a9:bb:ff:cd:
c7:2f:66:a8:f1:ea:4a:68:b3:ad:42:77:e2:ee:ad:b7:1f:11:
b1:a3:80:a7:ef:02:ba:90:04:47:7a:b0:1d:c5:87:6b:73:e2:
3d:27:1a:6b:eb:ca:45:b9:d3:2a:6c:1d:54:1e:83:ff:44:6a:
a3:67:69:70:fe:28:e0:cd:c1:64:7c:de:af:41:14:89:d0:1a:
9d:e2:2a:34:6d:f6:93:3f:6a:24:b3:b1:97:11:31:53:e9:35:
79:41:48:4c:d5:96:ee:92:e9:8a:d8:77:a6:a2:b7:3b:04:8a:
1c:3a:69:d5:f6:1f:7f:12:5c:81:28:a5:9f:0b:1f:74:5a:b6:
eb:25:72:14:ad:6b:14:8e:37:30:e7:bf:fc:33:87:02:da:3e:
3d:35:36:78:d9:cd:9e:8b:aa:3c:ad:17:83:f7:47:2e:88:93:
a1:36:58:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:54:27 2025 by rpki-client