Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa
File: 323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa (raw, json)
Hash identifier: iNFBLvB5id05sOD+V+u3Ty0i54uF6gY2wjNxHgRdccE=
Subject key identifier: AB:67:16:59:7F:D7:93:AB:51:2E:8E:4E:74:D4:0E:93:57:4E:FB:97
Certificate issuer: /CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14
Certificate serial: F457D8E87B87C411A9E2E914269708DBA7F7D4
Authority key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa
Signing time: Thu 05 Dec 2024 11:00:58 +0000
ROA not before: Thu 05 Dec 2024 10:55:58 +0000
ROA not after: Thu 04 Dec 2025 11:00:58 +0000
asID: 149388
IP address blocks: 2001:df0:7ac0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
f4:57:d8:e8:7b:87:c4:11:a9:e2:e9:14:26:97:08:db:a7:f7:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14
Validity
Not Before: Dec 5 10:55:58 2024 GMT
Not After : Dec 4 11:00:58 2025 GMT
Subject: CN=AB6716597FD793AB512E8E4E74D40E93574EFB97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:69:fb:9e:c5:04:fe:82:a7:fb:cf:6a:2e:37:
09:04:58:e5:76:0c:72:4b:ba:1d:d5:fe:4f:a9:40:
33:38:7d:6b:5e:4a:77:1a:d5:10:6a:ad:66:31:80:
af:18:89:2c:54:08:9e:ef:93:6a:13:49:4b:7c:86:
57:6d:4e:30:e8:b0:e2:1e:ec:7b:b5:4c:0f:a5:bf:
9e:41:e3:f8:b7:d1:bb:fd:2d:8d:02:e3:39:4a:33:
67:d8:91:a6:29:dc:6d:14:2e:d9:e3:6a:a6:d6:e5:
82:e1:1e:67:61:d0:b1:3f:27:6b:13:58:08:78:84:
dd:46:b0:b2:1d:d6:1d:ab:79:24:09:3c:63:0a:db:
7b:36:6d:e0:26:21:c7:9e:b3:0e:6e:9e:76:a9:d5:
ca:07:b4:62:33:4a:9a:85:77:ca:ca:ab:00:3e:e2:
34:24:43:e7:6e:fd:a5:97:84:2c:0f:2b:18:39:50:
12:61:80:f5:4e:46:1c:4b:2e:f3:71:30:c6:95:4b:
6b:35:3b:d6:08:09:e1:2c:ec:2e:4b:6e:aa:dc:3d:
ef:c7:1a:ad:00:69:19:ad:37:9b:d6:c5:73:50:14:
b8:bc:2f:f8:0c:8c:bb:01:bb:c6:30:18:aa:18:8f:
59:51:46:c0:42:01:ee:d4:d5:80:23:56:51:af:b8:
71:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:67:16:59:7F:D7:93:AB:51:2E:8E:4E:74:D4:0E:93:57:4E:FB:97
X509v3 Authority Key Identifier:
keyid:D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:7ac0::/48
Signature Algorithm: sha256WithRSAEncryption
0c:90:2d:9b:6d:bd:ec:6c:0a:de:b9:0e:37:1e:f1:2a:ba:d0:
33:c0:12:ea:f0:02:96:4a:bc:12:6b:c8:41:8b:83:ed:56:9d:
79:e0:ce:08:b2:ee:3b:fc:9d:64:05:13:ce:37:c3:a9:c5:e9:
44:b0:70:8f:36:a1:4b:32:0b:c9:31:4e:5c:bb:96:3f:0b:86:
2c:c2:a2:a2:fd:89:17:93:27:f4:82:28:f6:51:4d:86:07:ac:
17:00:f2:4d:c8:95:2c:05:1b:45:99:4b:8c:1f:66:bc:68:7f:
39:03:7c:45:8d:b7:ba:76:bd:28:4f:db:38:38:49:6d:9d:45:
94:c6:6b:15:92:1d:29:e8:2b:db:ee:bf:b5:9a:8b:1d:8f:7b:
6f:cc:89:9f:0d:61:97:df:24:40:b7:ee:16:25:07:bf:bf:e0:
71:94:b4:ee:c7:60:19:c1:68:78:ce:10:1f:7a:ae:c8:60:02:
0f:52:3d:27:e8:bf:b9:bb:2b:56:60:8c:09:ac:07:56:30:10:
52:8f:41:26:46:42:b6:57:f3:1d:4c:54:71:c4:c2:98:66:66:
54:a4:4a:b4:f9:24:f3:9a:50:15:49:d1:b4:d4:ab:a6:f2:c4:
08:37:a7:72:61:99:98:b6:28:a2:07:84:b5:68:02:2a:fb:ae:
f3:8f:cd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:47:52 2025 by rpki-client