Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa
File: 323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa (raw, json)
Hash identifier: fpi4CO6dz+MooFZgF3fJxoijLeT4dgpZBighVWAxUxY=
Subject key identifier: 62:C1:52:2D:B4:23:2A:D5:B7:D8:1C:8B:A7:61:51:7E:FD:18:06:16
Certificate issuer: /CN=E3928623409C1C10E292F838F8308E11636E6C03
Certificate serial: 28723FEC3E73B47D4E7206336DD53F0871899CAF
Authority key identifier: E3:92:86:23:40:9C:1C:10:E2:92:F8:38:F8:30:8E:11:63:6E:6C:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E3928623409C1C10E292F838F8308E11636E6C03.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa
Signing time: Thu 18 Jul 2024 04:41:08 +0000
ROA not before: Thu 18 Jul 2024 04:36:08 +0000
ROA not after: Thu 17 Jul 2025 04:41:08 +0000
asID: 153069
IP address blocks: 2001:df4:c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:72:3f:ec:3e:73:b4:7d:4e:72:06:33:6d:d5:3f:08:71:89:9c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E3928623409C1C10E292F838F8308E11636E6C03
Validity
Not Before: Jul 18 04:36:08 2024 GMT
Not After : Jul 17 04:41:08 2025 GMT
Subject: CN=62C1522DB4232AD5B7D81C8BA761517EFD180616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cf:2e:56:6e:c5:c0:dd:0c:bf:f5:3c:14:49:
dd:d0:e8:1d:c2:2e:87:46:6e:8a:75:96:29:82:72:
b9:21:aa:6a:83:3a:04:3e:ac:d7:f2:e3:7c:27:62:
2e:de:3c:fd:70:f1:f0:ec:3e:c2:8c:88:ce:1c:62:
b9:89:cb:15:08:5e:41:35:c4:6d:ba:3c:ec:dc:ad:
0b:bb:6b:52:e3:8a:42:59:78:36:81:e6:0e:35:86:
88:7e:e4:a4:32:21:46:13:c6:22:7f:d7:f7:f3:22:
9c:e1:2d:e9:bc:1e:0f:a6:28:08:e1:f8:61:69:a4:
67:9d:23:2d:d9:99:b7:8e:ec:3e:a1:98:c1:61:25:
d8:1a:8b:ea:dd:4b:d6:01:d9:d1:c7:e3:f8:3b:e1:
e3:d8:f3:82:ff:2b:8f:05:16:6f:70:5f:93:37:ad:
55:e6:13:b8:85:16:ba:be:6c:50:f4:0d:64:66:55:
36:3a:cf:df:ac:f9:db:36:aa:ce:ce:14:7a:99:5a:
e1:11:75:4c:17:31:ba:ac:eb:24:67:47:ff:71:d5:
00:b5:5c:c6:18:c5:9a:9f:b6:e5:43:9f:d5:34:f8:
a0:ef:05:c0:d9:91:46:98:94:61:6a:0d:10:9c:2b:
b2:ca:6e:97:c3:d9:a5:94:83:0d:bd:6a:bd:42:4b:
2f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C1:52:2D:B4:23:2A:D5:B7:D8:1C:8B:A7:61:51:7E:FD:18:06:16
X509v3 Authority Key Identifier:
keyid:E3:92:86:23:40:9C:1C:10:E2:92:F8:38:F8:30:8E:11:63:6E:6C:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/E3928623409C1C10E292F838F8308E11636E6C03.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E3928623409C1C10E292F838F8308E11636E6C03.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:c40::/48
Signature Algorithm: sha256WithRSAEncryption
7e:6f:5a:f4:43:c3:01:0b:49:42:ff:3c:18:7d:64:6a:3f:ca:
6f:3f:27:af:93:c4:36:df:da:cd:e5:f7:a2:45:7c:c6:52:5b:
19:74:20:ca:37:1d:6b:82:96:5c:3d:d8:66:bb:46:24:14:25:
59:37:1e:00:38:b2:63:b7:ea:8b:56:de:0a:cb:c7:96:0b:a4:
51:25:8a:fa:11:5e:f0:48:f7:92:2f:05:dc:c0:ea:2e:06:fc:
6f:5e:ab:12:90:95:d4:14:1f:cf:96:bd:a8:a8:26:f2:cc:94:
8b:a6:89:92:60:3f:1f:64:cd:e4:81:31:7d:0e:7f:c8:9e:13:
ff:10:d1:bc:b1:c8:c6:26:e0:2c:23:24:b4:00:6f:a3:70:cf:
0b:84:46:c1:27:89:50:a5:df:7e:cd:8d:5a:b6:6b:82:92:a2:
5e:30:14:5e:d9:42:44:65:90:dd:2c:14:48:5b:29:9a:b8:a7:
26:df:17:c9:ab:48:dd:ea:a4:b6:d8:a2:ce:4b:64:2b:20:01:
92:73:78:9f:b1:42:f9:a9:4e:2a:1f:01:09:6d:b8:0a:bf:bd:
fd:d0:55:2d:30:c3:42:8c:a1:a6:73:e2:91:a6:9a:cc:76:d1:
7e:9b:61:08:4a:b4:b9:2b:3a:b1:49:11:e6:33:ea:99:59:51:
b2:07:03:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:29:14 2025 by rpki-client