Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa
File: 323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa (raw, json)
Hash identifier: yVe8GXVmi9K8cMh9902KjJLW/Ty04NeW25WlVS+N6VM=
Subject key identifier: AF:EF:A4:6F:BC:41:FD:4F:28:A6:35:73:66:81:45:88:8F:55:55:5C
Certificate issuer: /CN=A500108F09BF54E5603B5C1F6E6325A561FE7126
Certificate serial: 52916949F127E6F35ADDC9F50F216BB0F236984D
Authority key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa
Signing time: Mon 01 Jul 2024 01:05:23 +0000
ROA not before: Mon 01 Jul 2024 01:00:23 +0000
ROA not after: Mon 30 Jun 2025 01:05:23 +0000
asID: 137331
IP address blocks: 2001:df4:b100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:91:69:49:f1:27:e6:f3:5a:dd:c9:f5:0f:21:6b:b0:f2:36:98:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126
Validity
Not Before: Jul 1 01:00:23 2024 GMT
Not After : Jun 30 01:05:23 2025 GMT
Subject: CN=AFEFA46FBC41FD4F28A63573668145888F55555C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:93:5b:19:ea:4b:d3:12:87:db:71:97:4a:
4e:17:3c:70:a6:52:d6:49:3a:36:8a:06:c6:3a:4a:
2b:4a:b2:d2:ed:5d:07:2e:a7:25:10:8b:bb:1b:a2:
33:22:99:73:1a:a6:bd:f4:00:55:2f:f1:a3:c0:ad:
68:d2:82:73:2d:f8:b4:68:60:c3:20:0b:0f:77:13:
31:46:e5:54:ce:6b:d0:2d:78:b1:e9:fb:e3:65:8c:
be:5f:ea:91:bd:5a:7d:bd:b7:35:bf:98:e3:05:df:
7b:c6:aa:3c:62:b8:73:26:26:f8:cf:30:d1:9f:c5:
8e:50:a6:2d:97:d7:ea:88:a3:57:2c:70:4b:00:34:
5b:94:52:ec:0c:3c:2c:00:99:e8:63:44:16:ee:cf:
34:6a:86:92:3a:aa:46:a4:b7:00:08:41:02:1f:0a:
99:3d:a0:fc:5b:02:a0:93:98:81:53:30:a5:39:fc:
8f:3b:44:2d:7f:ce:4e:44:6e:43:32:27:af:f5:e0:
5b:04:84:9b:84:ca:11:48:c7:de:e3:d4:8e:43:57:
9f:dd:ef:60:65:92:58:0d:98:d7:05:d2:d5:7a:74:
83:71:c8:6a:ac:d3:4b:57:bf:2c:b0:e2:1c:90:4b:
39:de:f7:1f:c8:7c:dc:3a:59:f7:62:a7:22:15:05:
7e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:EF:A4:6F:BC:41:FD:4F:28:A6:35:73:66:81:45:88:8F:55:55:5C
X509v3 Authority Key Identifier:
keyid:A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:b100::/48
Signature Algorithm: sha256WithRSAEncryption
4a:ba:fd:61:2a:c6:f2:3c:03:38:b8:85:31:38:8c:18:fa:c3:
f7:61:3e:89:ec:c2:81:30:e1:2c:7f:ce:fb:f6:61:63:32:52:
75:05:0d:10:b3:f7:b6:59:88:5b:bc:1d:27:a8:61:48:b2:72:
2a:38:23:48:4b:34:4f:ad:f8:38:30:23:3b:16:e8:77:87:3d:
1a:e4:64:56:b7:b5:a9:4a:24:57:59:0d:a2:ad:49:4b:3d:56:
63:54:d5:42:dd:19:b9:47:a4:09:ed:56:9e:e0:1f:70:60:f7:
ed:69:c5:91:c5:75:93:6f:f9:b9:d1:e4:cb:c6:6c:a7:77:12:
62:d9:06:20:76:32:29:4a:92:b0:4e:80:e0:3a:31:fa:be:41:
3a:dc:75:1b:db:c9:7c:fd:40:81:33:98:9c:c7:9b:49:66:27:
d9:b2:29:84:15:9e:b8:1b:0d:b5:4e:38:50:89:24:17:98:71:
b8:75:47:f8:5a:57:54:c7:86:52:fb:2d:ee:70:af:22:9a:d5:
6f:4d:98:ac:8c:3c:92:4e:f0:b2:bd:a3:d2:7a:54:80:48:f1:
52:2b:e1:3d:db:0b:96:d3:0e:7d:32:be:40:d9:69:7b:e7:22:
c8:0a:ed:56:4e:48:dc:b2:cd:d1:94:6c:8e:fc:99:1f:a6:c8:
04:70:1e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:21 2025 by rpki-client