Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa
File: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (raw, json)
Hash identifier: ONsSDNwNCKSQA0g6zXrNIJFeG1JttoPkAupg3mK+FJ4=
Subject key identifier: F8:40:2C:F1:CA:68:07:93:D3:53:3C:E4:8B:3B:4C:02:E0:40:8D:D0
Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA
Certificate serial: 708E0CAFA66ADE830DF4E200704A8BB4F9D86432
Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa
Signing time: Thu 11 Jul 2024 07:51:47 +0000
ROA not before: Thu 11 Jul 2024 07:46:47 +0000
ROA not after: Thu 10 Jul 2025 07:51:47 +0000
asID: 151575
IP address blocks: 2001:df4:7c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:8e:0c:af:a6:6a:de:83:0d:f4:e2:00:70:4a:8b:b4:f9:d8:64:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA
Validity
Not Before: Jul 11 07:46:47 2024 GMT
Not After : Jul 10 07:51:47 2025 GMT
Subject: CN=F8402CF1CA680793D3533CE48B3B4C02E0408DD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:da:a4:6c:82:03:da:9d:fa:ab:2f:a7:66:3e:
9a:31:af:ca:01:27:42:01:40:31:a4:3c:31:37:2b:
94:33:f3:fe:f3:cc:5f:0d:01:08:61:c8:63:76:a3:
a7:b8:8d:e4:d5:7a:b0:7c:f3:11:75:75:b8:fe:65:
c0:d6:e0:ef:a3:72:74:98:14:ed:ca:9f:92:d1:df:
25:eb:b6:f2:69:50:d9:c2:aa:a4:9b:e3:9d:9f:d8:
0b:e1:ac:b1:ef:ad:05:05:eb:ad:a5:bb:98:89:23:
9d:8e:8c:cb:93:3e:64:33:95:7a:c3:96:0f:b7:63:
5b:52:2e:25:a4:41:00:06:3e:76:de:6a:6c:23:a3:
1d:d9:80:64:d3:8a:76:c1:bd:6f:37:00:d7:27:6b:
b1:d2:74:3e:90:d6:06:20:5a:82:c7:a1:ee:73:a5:
e2:24:e9:47:b6:e5:01:ff:9f:df:34:b4:68:c6:88:
49:43:51:77:74:e2:99:e8:44:ca:1f:cd:cb:9a:7f:
71:74:c6:db:cc:e8:94:72:fb:9f:96:16:9e:86:5c:
3e:ce:9a:76:04:46:ca:17:7f:77:54:1e:30:8a:07:
8f:bc:c0:3a:1a:38:75:9f:e5:55:a6:d9:f5:1b:48:
64:a5:e3:e4:2e:c1:1d:75:71:2b:36:66:1f:ca:f1:
95:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:40:2C:F1:CA:68:07:93:D3:53:3C:E4:8B:3B:4C:02:E0:40:8D:D0
X509v3 Authority Key Identifier:
keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:7c0::/48
Signature Algorithm: sha256WithRSAEncryption
53:b2:ab:19:72:07:a6:2a:76:4a:d7:a8:ae:63:f9:b4:b4:40:
50:36:55:32:b5:a0:81:0b:70:71:4f:35:4c:c5:40:8a:d4:dc:
12:e5:66:dc:2d:5b:6c:e0:51:1d:a0:6b:ed:ab:7b:1e:04:70:
8f:38:c4:d5:7c:8d:31:95:55:52:b6:4c:12:c1:42:fe:34:a0:
39:ba:fa:93:c9:91:b6:a1:1e:38:75:c4:c6:a1:29:8c:f9:8b:
97:81:d3:7e:8d:91:8f:8d:1b:e1:6b:d5:7f:ae:de:12:f6:0c:
d6:68:7b:a2:12:31:aa:e3:f9:00:b8:0b:aa:00:5a:5d:f2:62:
06:44:51:bd:f6:50:bd:0a:03:9f:0a:8e:f6:7b:c6:ca:9f:44:
5b:a4:58:d7:0a:09:78:0a:08:d2:82:73:c9:35:b8:88:6d:5f:
5d:fe:80:92:67:7b:ef:35:58:be:fa:99:f6:49:5c:a8:6f:c7:
09:47:41:d0:81:fd:9f:19:06:62:2e:20:16:48:91:00:dd:87:
03:5e:88:08:47:c6:59:79:33:fe:f0:ce:33:19:b4:0b:30:25:
b2:97:55:b6:e5:70:06:1d:b7:99:ae:35:5a:d5:2e:18:7c:f1:
23:50:35:6b:a0:55:98:b3:8d:49:bb:a8:5b:8c:bf:29:3e:f8:
16:18:f9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:28 2025 by rpki-client