Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa
File: 323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa (raw, json)
Hash identifier: cEM+4StkyEglCT4lHQCTAQwPGP8wSQIN6J/jKANGX3Y=
Subject key identifier: FD:B4:DD:67:F9:82:B8:1A:A3:0E:4F:4C:76:34:7D:24:84:C6:03:0E
Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768
Certificate serial: 5A1FFFAFFCFAC5BF1ACDEA8D5AD9BF8E9DDD4D02
Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa
Signing time: Mon 01 Jul 2024 01:02:37 +0000
ROA not before: Mon 01 Jul 2024 00:57:37 +0000
ROA not after: Mon 30 Jun 2025 01:02:37 +0000
asID: 138115
IP address blocks: 2001:df7:5300::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:1f:ff:af:fc:fa:c5:bf:1a:cd:ea:8d:5a:d9:bf:8e:9d:dd:4d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768
Validity
Not Before: Jul 1 00:57:37 2024 GMT
Not After : Jun 30 01:02:37 2025 GMT
Subject: CN=FDB4DD67F982B81AA30E4F4C76347D2484C6030E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:29:73:a2:ae:07:a3:52:3f:68:e9:30:79:6a:
1b:3d:96:17:82:14:01:a0:e2:ff:f7:74:f4:f5:70:
d8:8b:83:9b:ed:1d:d7:91:4a:9a:ff:32:38:ea:1a:
5d:d7:d5:25:21:2a:b1:0c:c7:f1:93:ee:dd:3e:07:
dd:42:32:18:64:da:f6:97:ed:14:50:df:d3:60:d7:
2d:a3:f1:e3:ba:05:53:8a:46:76:b6:7e:b9:86:df:
bf:91:8e:e3:67:68:23:86:ad:3e:5e:cd:38:c2:c3:
51:29:33:a8:60:45:64:51:03:34:d6:bc:45:ce:32:
83:b3:b1:ef:d3:73:e9:45:bd:7a:79:5f:97:d3:ec:
2c:3c:d5:a5:a5:27:56:df:25:77:a9:ba:1f:77:ec:
04:b2:27:ae:49:7a:b5:d4:5e:0b:a9:04:1b:9c:13:
3c:f7:59:7c:14:f4:32:6d:14:c1:39:0f:9d:de:97:
ae:94:19:bd:f8:05:8f:b4:17:9f:79:cc:72:dd:4b:
b0:a0:c3:fa:d0:ce:d7:17:9a:24:3e:03:ea:f8:23:
98:12:1b:31:b4:e7:f6:c9:31:84:d0:12:ed:df:87:
64:d7:c0:61:3d:73:5f:c9:c9:d3:42:28:95:27:cf:
77:ef:52:df:ba:87:4d:a7:1d:56:32:e0:2f:6f:4f:
27:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B4:DD:67:F9:82:B8:1A:A3:0E:4F:4C:76:34:7D:24:84:C6:03:0E
X509v3 Authority Key Identifier:
keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:5300::/48
Signature Algorithm: sha256WithRSAEncryption
b2:c4:2e:dc:83:f9:8b:bd:c2:44:51:05:8d:c6:0b:d3:0c:99:
12:07:51:b7:0c:54:16:fb:95:b5:de:3c:07:a0:9b:64:cc:d8:
6e:20:9d:28:de:ea:6d:b3:53:2f:80:3d:5d:74:97:ce:94:a9:
d4:c1:4d:1e:c2:18:4c:e1:38:dc:6c:d1:2a:a7:8f:2f:c1:aa:
6b:9b:4e:db:b0:4e:03:4d:9c:72:6b:a1:f2:ee:b4:cc:35:e4:
aa:ca:84:65:17:de:4e:b4:c5:c2:fd:67:23:c6:de:16:b4:64:
df:d6:ae:83:c1:38:75:f0:c9:15:af:0b:9a:c0:06:c2:bd:0c:
6c:69:88:4a:27:af:e8:d3:fc:5a:b1:34:36:f2:84:2b:19:5b:
8e:05:04:7d:45:73:e5:18:59:c3:82:f5:72:cd:c6:0e:18:dd:
e0:60:57:dd:a1:61:86:93:2a:b5:08:32:b9:e1:9b:30:5f:73:
fb:9c:3c:0b:be:a1:85:c0:05:a9:4b:49:87:46:67:1a:70:38:
fa:85:d4:45:a1:30:77:b1:fa:43:63:c4:a7:c1:c0:6c:74:5e:
c4:46:58:b3:db:fc:a1:be:a0:96:04:33:fc:8c:9c:90:55:24:
01:a5:8a:09:0c:92:53:aa:3d:c4:ce:1f:49:ac:dd:e0:46:27:
d1:83:98:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:17:52 2025 by rpki-client