Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa
File: 323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa (raw, json)
Hash identifier: 2lAjycdxeSaqDarXvJpjbjwFWksBTkypcj159AzhKmk=
Subject key identifier: 89:FE:82:4A:60:C7:00:63:5E:46:EE:2F:1F:0D:8D:F5:A2:F4:2E:C2
Certificate issuer: /CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F
Certificate serial: 46B8C0EEAB889D715BDF50A29AA1BFAC6957DC6A
Authority key identifier: 1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa
Signing time: Thu 20 Feb 2025 20:00:01 +0000
ROA not before: Thu 20 Feb 2025 19:55:01 +0000
ROA not after: Thu 19 Feb 2026 20:00:01 +0000
asID: 152373
IP address blocks: 2001:df3:72c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:b8:c0:ee:ab:88:9d:71:5b:df:50:a2:9a:a1:bf:ac:69:57:dc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F
Validity
Not Before: Feb 20 19:55:01 2025 GMT
Not After : Feb 19 20:00:01 2026 GMT
Subject: CN=89FE824A60C700635E46EE2F1F0D8DF5A2F42EC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b8:77:5d:54:ea:7f:1f:af:54:1b:c5:25:ec:
be:fc:49:1a:6a:da:9c:82:e5:26:fa:27:d0:8a:3d:
8a:4c:da:e0:15:e8:c8:c8:ef:e6:9c:d2:fd:72:78:
84:e9:bd:fc:5d:5d:6b:27:ec:e9:c2:ec:dc:b2:b3:
4a:3e:fb:ba:91:b2:b2:3c:b4:1b:71:e1:a2:47:d5:
12:1f:95:9e:86:fc:ee:3f:81:e4:4a:e7:62:7a:c9:
ec:d7:66:69:69:40:92:a0:9b:0e:f0:41:55:d6:8f:
a8:b7:19:4e:1c:5c:29:73:cd:af:8b:ec:ed:ab:f0:
5e:8d:64:07:29:82:03:12:d8:9c:7b:ad:fb:16:20:
36:fa:ab:b6:61:fc:dc:e3:df:df:5b:23:58:6f:ee:
5b:eb:22:51:7a:f9:7e:47:64:ab:a3:75:0c:1c:5a:
da:d5:63:08:00:d2:94:46:0c:71:fc:b3:a5:6d:0c:
c7:5b:34:30:a4:9a:a4:f1:a9:d9:d3:61:ce:bc:39:
c3:35:3e:59:15:74:5a:14:0f:4d:df:42:cf:26:f0:
c3:4a:ce:a0:a1:9a:c4:86:b0:a5:bd:8f:1d:2d:25:
b9:2a:54:43:27:9e:ce:92:d1:5d:22:1f:98:3a:86:
59:c5:5b:02:59:ef:8b:dd:3a:71:f0:85:92:1b:82:
e7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FE:82:4A:60:C7:00:63:5E:46:EE:2F:1F:0D:8D:F5:A2:F4:2E:C2
X509v3 Authority Key Identifier:
keyid:1A:C4:9A:EA:F4:8C:92:51:C7:91:3E:A3:8C:F4:BA:F8:E4:0B:7E:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AC49AEAF48C9251C7913EA38CF4BAF8E40B7E4F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/1/323030313a6466333a373263303a3a2f34382d3438203d3e20313532333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:72c0::/48
Signature Algorithm: sha256WithRSAEncryption
47:ba:24:94:02:a1:e8:13:4b:e1:5c:e7:bd:13:cd:0c:78:58:
a2:71:11:98:8a:f3:ed:48:df:83:be:dd:78:b5:92:35:db:61:
9b:ec:ce:59:dc:36:f3:db:a5:45:b9:39:4b:60:3e:93:dd:35:
c5:71:8e:19:c6:f7:d5:6f:a6:26:10:78:1e:c2:52:5c:a4:78:
2e:e5:73:ed:93:ed:af:1d:cc:99:b4:9d:25:e8:be:eb:b6:4e:
9a:e1:1b:da:e8:e2:81:96:ef:0e:5d:91:5e:b8:cd:f8:2b:9c:
11:97:ad:11:2e:7f:6e:91:e4:50:6f:a1:df:5f:ae:c2:7b:b3:
f7:9c:34:f9:83:b2:1c:4b:59:e2:3a:6c:eb:47:b2:11:d8:3e:
3c:69:bd:ca:a0:03:6a:f8:12:87:31:f7:b3:6e:e9:47:52:89:
f3:73:cc:46:c3:7c:b3:ca:f8:25:92:41:aa:24:f6:12:53:10:
81:ce:18:e1:9b:d7:d5:41:3c:6d:e1:18:aa:82:c5:ba:e4:a7:
b5:2f:36:85:0d:df:12:8f:dd:e8:a0:5c:36:e9:ef:84:57:53:
84:5e:3e:a1:c5:75:85:2d:71:7b:44:ad:31:7d:81:02:9d:79:
00:d2:1f:19:35:04:a7:39:fc:26:3d:2a:3b:af:bc:bf:c3:9e:
df:1f:16:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:20:48 2025 by rpki-client