Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa
File: 323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa (raw, json)
Hash identifier: mAFJTZEnZNfr7PARi8AMi8BJVScVXavpsJWltGWztr8=
Subject key identifier: A5:C1:91:31:26:5C:1F:D5:EE:D4:B1:82:BF:7F:56:0B:9A:4A:D6:48
Certificate issuer: /CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF
Certificate serial: 130E03CDFE29CB8A40D877701F4D809995D7939B
Authority key identifier: 0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa
Signing time: Mon 02 Dec 2024 10:01:19 +0000
ROA not before: Mon 02 Dec 2024 09:56:19 +0000
ROA not after: Mon 01 Dec 2025 10:01:19 +0000
asID: 132678
IP address blocks: 2001:df3:7000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0e:03:cd:fe:29:cb:8a:40:d8:77:70:1f:4d:80:99:95:d7:93:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BAF96670660C94FBB3E387EF1505E6FA401ECCF
Validity
Not Before: Dec 2 09:56:19 2024 GMT
Not After : Dec 1 10:01:19 2025 GMT
Subject: CN=A5C19131265C1FD5EED4B182BF7F560B9A4AD648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bc:27:cb:04:9b:93:eb:ac:d0:32:4e:1b:ce:
01:46:e0:c1:cc:d2:4f:66:0e:44:bd:84:3b:bd:77:
ad:d5:60:a2:a4:7d:7d:6c:a5:8d:29:ab:ff:8a:03:
1f:30:bc:38:e1:a8:3d:3a:c5:55:7f:b6:e5:67:30:
92:1d:a3:2b:39:a9:e6:be:88:65:d5:fc:33:68:ca:
f1:19:62:73:eb:ae:f5:04:c7:ea:3a:bd:d8:df:26:
ea:2d:bd:21:94:ae:88:74:db:f5:23:74:4c:d6:1c:
75:e1:0c:06:54:27:03:b9:35:06:bb:b4:38:0f:72:
6e:3d:4a:cc:01:d3:22:f7:ae:ff:a6:81:66:07:b0:
c0:87:64:04:f3:a8:5f:7b:39:ec:60:dc:5e:1b:bb:
82:ee:5f:0f:04:5d:fc:48:6b:35:cf:fd:a6:2f:81:
15:09:79:06:0a:be:48:03:ab:37:81:b3:34:ee:97:
14:a3:86:c7:34:f9:04:ff:00:9b:aa:f1:03:7d:75:
70:3f:ae:41:ed:ef:d9:bd:e6:ad:86:aa:9e:46:6f:
6b:df:37:29:f8:42:01:05:9b:ae:b2:94:7d:10:e2:
4c:60:af:43:de:f0:f3:e4:4e:e0:9d:87:64:e9:d7:
a8:fe:86:eb:18:57:d6:09:72:a7:4b:43:a0:ca:38:
d4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C1:91:31:26:5C:1F:D5:EE:D4:B1:82:BF:7F:56:0B:9A:4A:D6:48
X509v3 Authority Key Identifier:
keyid:0B:AF:96:67:06:60:C9:4F:BB:3E:38:7E:F1:50:5E:6F:A4:01:EC:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BAF96670660C94FBB3E387EF1505E6FA401ECCF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:7000::/48
Signature Algorithm: sha256WithRSAEncryption
02:01:88:6c:b6:3e:28:b6:ce:fc:3c:ed:c2:d8:63:03:8e:51:
1e:02:f9:8d:8b:65:01:cd:aa:5e:9e:42:6f:e5:75:dd:d2:15:
d8:2c:32:69:ce:0f:0b:91:10:26:da:55:49:af:21:12:7a:5f:
43:ea:02:ea:95:d4:fc:8e:4e:50:8b:fb:16:83:01:37:76:f8:
59:05:f2:07:12:ba:9e:80:12:1b:1a:e4:3c:b9:12:3c:28:7c:
3e:3d:88:05:15:e8:b1:1d:3b:96:5c:98:9d:30:52:9e:89:eb:
61:37:c7:43:9d:ef:2f:15:70:62:06:e6:88:6b:7c:37:99:e5:
62:7a:d3:3e:d9:71:c6:4c:a5:3e:9d:39:10:25:e3:72:e9:58:
ef:48:82:dc:a5:06:ad:ad:f3:e1:d1:5a:27:28:bc:01:7a:6e:
a1:8b:a7:c8:01:1b:28:07:ef:4a:e1:0c:4b:de:93:92:63:25:
c1:ce:d6:d5:45:9d:fb:5a:63:d3:9c:27:b7:3f:cb:10:86:c0:
e5:d9:58:5c:41:11:f2:94:37:8b:84:90:e2:e0:31:80:ef:eb:
62:6b:6b:a1:54:01:62:10:9a:3e:8d:03:f9:f2:16:c5:b2:29:
ea:0f:60:a8:f7:9b:23:4c:ff:c7:64:7e:cc:91:db:55:bc:17:
6e:93:b9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:47:54 2025 by rpki-client