Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa
File: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (raw, json)
Hash identifier: eQwZ0HpEaRU5AO86abCZFFKH0HF0iLl7VUx7NHne24s=
Subject key identifier: 1A:DD:4F:AA:E3:E2:F3:2C:01:D2:96:AA:23:60:27:E2:0E:33:DD:83
Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561
Certificate serial: 2317B8B90D57DEE788185CF1CA89C441CBAB8886
Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa
Signing time: Mon 04 Nov 2024 04:42:56 +0000
ROA not before: Mon 04 Nov 2024 04:37:56 +0000
ROA not after: Mon 03 Nov 2025 04:42:56 +0000
asID: 152005
IP address blocks: 2001:df3:1cc0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:17:b8:b9:0d:57:de:e7:88:18:5c:f1:ca:89:c4:41:cb:ab:88:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561
Validity
Not Before: Nov 4 04:37:56 2024 GMT
Not After : Nov 3 04:42:56 2025 GMT
Subject: CN=1ADD4FAAE3E2F32C01D296AA236027E20E33DD83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:79:f8:7c:1b:6f:c5:be:89:87:c9:d9:f2:1d:
4d:eb:78:f1:5c:51:1d:31:f8:03:8b:72:70:4b:5c:
0f:cd:f4:87:ec:6c:bb:04:ca:82:05:8d:7f:f1:52:
81:95:bd:2a:b6:83:a7:20:a7:3e:16:2c:d6:18:c1:
b4:0b:69:9f:5f:9e:63:e1:8c:2f:cd:5e:a3:65:80:
54:bd:53:45:eb:a3:db:cc:ff:7a:5a:c3:a9:47:15:
bd:41:39:59:fb:3f:d0:05:a3:a4:86:35:01:33:56:
7f:84:41:d9:8c:28:4d:10:d2:82:60:22:d9:f7:e1:
6c:4e:09:17:9a:66:27:96:e7:23:f1:91:5e:35:2d:
db:21:19:8e:b9:ce:6f:ad:fe:89:d3:20:99:ba:48:
f4:84:4a:9d:90:b8:9f:f6:a2:d7:f2:75:63:59:0f:
bd:29:49:95:92:f2:f0:d6:03:57:7a:bc:8e:40:54:
96:fc:f7:7c:69:9f:80:03:79:d4:84:39:44:ee:3d:
83:df:35:64:55:8b:5d:be:b2:e4:2a:f4:10:12:c9:
0a:36:cf:e8:56:48:31:d9:64:19:09:5f:f8:fd:d5:
75:cd:4e:6e:1c:1e:c6:67:09:3f:95:68:01:15:4d:
d2:c1:4d:eb:65:0e:fd:c2:63:0a:7c:51:1c:d8:50:
4e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:DD:4F:AA:E3:E2:F3:2C:01:D2:96:AA:23:60:27:E2:0E:33:DD:83
X509v3 Authority Key Identifier:
keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:1cc0::/48
Signature Algorithm: sha256WithRSAEncryption
2f:a1:4d:a8:f2:c9:82:bf:f9:a6:36:27:0c:71:b9:a8:71:b5:
42:a7:ba:fe:91:24:7b:5d:fc:d4:39:94:72:21:e6:4e:21:bb:
8f:65:d6:09:d2:a2:2f:c2:ec:15:41:46:7b:a4:bb:4d:16:29:
c1:00:30:a1:f1:f9:82:b9:0a:cc:5e:43:98:0a:75:87:b9:92:
2c:fd:87:ef:73:ef:74:56:9a:b0:fb:38:42:86:7b:2b:39:4d:
6a:5f:9e:af:0a:58:19:c7:a8:d1:97:df:0e:03:c9:3b:43:9a:
1f:87:10:9d:7a:3d:a6:33:15:84:3c:37:b4:2b:76:fa:a9:5c:
cf:a2:8c:18:f2:ea:d8:4e:a0:31:4f:c7:a2:cf:33:e8:f0:f2:
2a:ba:87:bc:95:06:46:e0:b1:ca:1c:16:ee:8d:70:47:16:16:
1b:05:8f:99:5c:bb:ae:9c:c5:2b:47:43:84:8c:04:9a:46:06:
53:fb:05:f6:21:13:f3:d7:21:86:71:32:79:dc:e1:5b:d0:ae:
89:19:2d:09:fa:0b:a0:4e:38:a8:17:cb:c4:da:f5:15:6f:1c:
ff:eb:75:67:f1:d1:19:9b:40:43:a7:95:87:c6:7d:d6:a0:d1:
95:51:5f:37:ca:5d:fc:56:a0:47:37:aa:08:62:76:f3:db:a6:
b2:a0:5a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:49 2025 by rpki-client