Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa
File: 323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa (raw, json)
Hash identifier: iArmdB6Xmwne1qM2afDTqVSj06uD3mLVfN37VycmReA=
Subject key identifier: 02:A0:DB:0F:AB:3F:E2:88:86:33:0B:93:33:E2:97:36:45:5B:EB:25
Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F
Certificate serial: 37D58A59321C521FAD773DEEBDB9B0149994521B
Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa
Signing time: Mon 01 Jul 2024 01:04:03 +0000
ROA not before: Mon 01 Jul 2024 00:59:03 +0000
ROA not after: Mon 30 Jun 2025 01:04:03 +0000
asID: 138107
IP address blocks: 2001:df7:3b00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:d5:8a:59:32:1c:52:1f:ad:77:3d:ee:bd:b9:b0:14:99:94:52:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F
Validity
Not Before: Jul 1 00:59:03 2024 GMT
Not After : Jun 30 01:04:03 2025 GMT
Subject: CN=02A0DB0FAB3FE28886330B9333E29736455BEB25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:41:49:f2:61:9c:ae:4e:ed:be:3e:00:fd:ed:
25:26:fc:a0:e7:4b:22:33:27:7c:a6:92:88:09:1f:
c6:45:06:b8:f6:fd:ae:10:15:9f:fa:08:d0:a7:d2:
28:21:e4:f0:d9:f3:54:38:4f:38:f4:ef:66:05:56:
c4:35:4d:be:49:8d:d7:17:b7:38:15:fa:ed:ee:b4:
49:df:92:19:d2:88:b6:70:ed:30:56:5f:98:92:21:
ab:02:2c:55:b8:84:f5:9f:0b:f1:36:4e:8f:d1:be:
9f:ef:70:ea:e2:54:e8:c2:42:b7:f6:e7:f8:6f:89:
c7:87:db:f7:3b:aa:57:01:b2:5f:97:df:a5:82:7e:
e3:fb:00:2e:af:40:33:17:0c:40:67:74:46:28:4a:
08:51:25:2e:4c:bc:cd:3d:fe:85:38:00:49:64:35:
43:d9:0f:6c:2c:4e:76:34:f9:6c:03:87:ad:8f:5d:
9c:b7:db:0c:b4:57:bd:d9:5a:96:a8:21:14:06:47:
a3:7f:db:01:8f:4c:82:8f:8b:6e:62:4c:7a:86:84:
a5:ea:89:f5:38:91:01:30:7c:5f:70:8d:72:9c:0d:
96:a8:e8:bf:2e:9d:97:1b:52:4b:13:6a:78:ac:97:
5d:1c:14:bc:6b:6e:c9:91:9d:5c:f4:30:56:c9:68:
cd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A0:DB:0F:AB:3F:E2:88:86:33:0B:93:33:E2:97:36:45:5B:EB:25
X509v3 Authority Key Identifier:
keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:3b00::/48
Signature Algorithm: sha256WithRSAEncryption
61:1c:b0:fb:66:e7:29:2c:61:5b:e8:af:32:39:85:a4:f8:58:
b9:dc:73:7d:e8:2a:6e:1f:97:dd:9b:5f:47:c8:31:f5:3c:8c:
43:aa:4d:29:03:f3:02:0a:b4:c8:8d:b6:6b:86:37:27:0a:77:
81:aa:58:cd:4e:23:f3:e2:a3:7a:a0:c6:fa:e0:1d:99:d0:d8:
48:cc:f4:4e:ae:c5:24:fa:05:70:f8:55:56:99:d2:c0:32:4f:
ff:27:95:4e:2a:c0:2c:dc:f2:d8:f5:23:1a:00:d2:2c:e0:c5:
40:0e:29:5b:b7:e0:54:af:cd:18:c2:3a:24:62:d0:81:e7:6b:
02:12:18:80:5c:18:33:4e:52:5d:f8:9c:f5:c9:18:dd:b1:25:
e1:33:a1:b2:23:89:53:02:7e:7e:26:e3:93:e2:e9:2f:d8:1a:
18:a1:77:61:bb:dc:52:f5:ff:c4:48:43:e5:2d:82:9d:92:23:
f6:a1:77:bd:4c:75:18:f8:ac:70:27:b8:1e:6b:b5:b5:60:1d:
24:78:ea:d5:ee:06:86:2f:b6:98:42:b1:f9:e8:4a:9a:e0:2b:
ca:be:62:59:9a:d0:6d:8f:87:da:e1:16:2d:ce:6d:ab:6c:0e:
25:d5:3f:c9:e9:95:ac:cf:69:54:ea:4d:a2:82:7e:7b:2e:4f:
49:d8:c3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:56 2025 by rpki-client