Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/323030313a6466303a376334303a3a2f34382d3438203d3e20313437313534.roa
File: 323030313a6466303a376334303a3a2f34382d3438203d3e20313437313534.roa (raw, json)
Hash identifier: y0s8YGn9mHg2T9EeIiu21b9Ye25qY26dsfL13en5ZUs=
Subject key identifier: 10:39:99:E4:09:DC:33:D3:1E:2B:87:B9:F1:C3:EF:E5:5D:B5:37:8D
Certificate issuer: /CN=B152586AE46FCAB640629D941147319E05FCF34B
Certificate serial: 68CFE389312069AF01E597FFD6D71767AB47AA41
Authority key identifier: B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B152586AE46FCAB640629D941147319E05FCF34B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/323030313a6466303a376334303a3a2f34382d3438203d3e20313437313534.roa
Signing time: Thu 19 Dec 2024 11:00:01 +0000
ROA not before: Thu 19 Dec 2024 10:55:01 +0000
ROA not after: Thu 18 Dec 2025 11:00:01 +0000
asID: 147154
IP address blocks: 2001:df0:7c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:cf:e3:89:31:20:69:af:01:e5:97:ff:d6:d7:17:67:ab:47:aa:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B152586AE46FCAB640629D941147319E05FCF34B
Validity
Not Before: Dec 19 10:55:01 2024 GMT
Not After : Dec 18 11:00:01 2025 GMT
Subject: CN=103999E409DC33D31E2B87B9F1C3EFE55DB5378D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:32:8b:ee:e6:82:18:55:e0:f5:1a:72:ca:b3:
dd:86:90:d8:8f:fb:ed:89:c1:91:d0:7d:a9:4f:29:
17:6d:df:5f:5b:36:45:08:bb:b1:27:40:33:75:ea:
f9:29:8a:1a:4f:f4:bb:01:d3:67:53:b1:b2:b7:a7:
16:41:91:6a:a7:0c:0c:29:3a:c0:8d:d4:5e:28:6d:
94:4c:9a:0d:34:6b:ce:02:12:29:4b:3f:6a:f3:d6:
87:d0:26:88:f5:96:32:4c:01:c3:c4:54:b6:00:7d:
1e:5f:72:a5:2f:e9:e1:0f:e9:38:43:48:39:3b:da:
a3:40:5c:86:03:23:09:95:dd:62:55:78:7f:7d:09:
78:b8:e7:7c:a2:08:8c:49:b2:e8:3c:13:91:6b:37:
89:15:4b:f1:4f:94:7c:9e:0e:07:f7:8b:66:2a:65:
fb:bf:b9:6c:6e:e7:b5:da:1e:f4:a8:09:d1:36:ba:
f2:c3:7a:a3:21:59:78:b8:91:19:f9:91:d6:1c:79:
ec:a0:90:25:eb:44:58:db:bd:1d:78:7b:bc:26:b8:
46:40:b4:6f:65:6a:36:ba:2f:15:61:68:c9:32:eb:
b3:0d:f9:e9:3c:6f:4e:2d:7f:58:43:05:1a:c9:88:
1e:84:44:6d:78:56:dc:9c:bc:6e:de:04:92:74:36:
49:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:39:99:E4:09:DC:33:D3:1E:2B:87:B9:F1:C3:EF:E5:5D:B5:37:8D
X509v3 Authority Key Identifier:
keyid:B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/B152586AE46FCAB640629D941147319E05FCF34B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B152586AE46FCAB640629D941147319E05FCF34B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/323030313a6466303a376334303a3a2f34382d3438203d3e20313437313534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:7c40::/48
Signature Algorithm: sha256WithRSAEncryption
96:34:f5:e0:32:cf:bf:b4:1c:0e:7c:72:8c:8c:42:3b:b6:16:
cb:d2:88:17:88:9c:90:f1:12:cb:f2:ee:84:21:04:8a:90:1c:
4d:28:d8:4e:d0:ed:a1:33:f2:92:f3:b6:73:70:cb:53:c2:53:
a7:3c:fe:db:85:cc:69:84:b1:b7:9c:0d:a6:45:38:f0:98:9d:
a4:5b:f8:c0:3f:af:32:19:fb:01:4e:3a:77:ef:31:25:37:05:
5b:12:00:f1:72:ee:be:54:87:9b:d8:d1:43:5b:20:7b:b6:31:
09:38:40:ea:a0:53:54:8e:cf:b5:02:7e:ba:2b:aa:4d:5e:f4:
d8:6c:01:d1:c9:16:95:13:2c:24:ad:eb:20:11:8b:ab:13:0f:
03:d2:92:41:f3:23:4b:72:f3:e2:92:b9:b0:ef:97:09:00:7b:
1e:0c:d1:d3:b8:18:28:91:11:93:67:61:b3:f7:b0:f9:2f:75:
0a:78:f3:08:c0:65:73:c2:c1:4c:3a:44:42:dc:db:dd:52:00:
e5:11:0e:1b:09:21:cc:c8:bf:35:b3:26:f3:6c:66:3c:4c:15:
34:43:c0:bc:4a:c6:9b:e1:b1:e3:08:65:c1:26:52:9d:b3:55:
df:d5:b6:9c:e6:37:e0:63:ef:d6:62:e4:b2:8f:df:8d:ae:1d:
29:42:57:68
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUaM/jiTEgaa8B5Zf/1tcXZ6tHqkEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjE1MjU4NkFFNDZGQ0FCNjQwNjI5RDk0MTE0NzMxOUUw
NUZDRjM0QjAeFw0yNDEyMTkxMDU1MDFaFw0yNTEyMTgxMTAwMDFaMDMxMTAvBgNV
BAMTKDEwMzk5OUU0MDlEQzMzRDMxRTJCODdCOUYxQzNFRkU1NURCNTM3OEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrMovu5oIYVeD1GnLKs92GkNiP
++2JwZHQfalPKRdt319bNkUIu7EnQDN16vkpihpP9LsB02dTsbK3pxZBkWqnDAwp
OsCN1F4obZRMmg00a84CEilLP2rz1ofQJoj1ljJMAcPEVLYAfR5fcqUv6eEP6ThD
SDk72qNAXIYDIwmV3WJVeH99CXi453yiCIxJsug8E5FrN4kVS/FPlHyeDgf3i2Yq
Zfu/uWxu57XaHvSoCdE2uvLDeqMhWXi4kRn5kdYceeygkCXrRFjbvR14e7wmuEZA
tG9laja6LxVhaMky67MN+ek8b04tf1hDBRrJiB6ERG14VtycvG7eBJJ0NkndAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUEDmZ5AncM9MeK4e58cPv5V21N40wHwYDVR0j
BBgwFoAUsVJYauRvyrZAYp2UEUcxngX880swDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YTllMjg5OC0wMjNiLTQ3NDEtODczNS1hMDcxOGNjNmNmMmIvMC9CMTUyNTg2QUU0
NkZDQUI2NDA2MjlEOTQxMTQ3MzE5RTA1RkNGMzRCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjE1MjU4NkFFNDZGQ0FCNjQwNjI5RDk0MTE0NzMxOUUwNUZD
RjM0Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhOWUyODk4LTAyM2ItNDc0MS04
NzM1LWEwNzE4Y2M2Y2YyYi8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjMzNDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM3MzEzNTM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
8HxAMA0GCSqGSIb3DQEBCwUAA4IBAQCWNPXgMs+/tBwOfHKMjEI7thbL0ogXiJyQ
8RLL8u6EIQSKkBxNKNhO0O2hM/KS87ZzcMtTwlOnPP7bhcxphLG3nA2mRTjwmJ2k
W/jAP68yGfsBTjp37zElNwVbEgDxcu6+VIeb2NFDWyB7tjEJOEDqoFNUjs+1An66
K6pNXvTYbAHRyRaVEywkresgEYurEw8D0pJB8yNLcvPikrmw75cJAHseDNHTuBgo
kRGTZ2Gz97D5L3UKePMIwGVzwsFMOkRC3NvdUgDlEQ4bCSHMyL81sybzbGY8TBU0
Q8C8Ssab4bHjCGXBJlKds1Xf1bac5jfgY+/WYuSyj9+Nrh0pQldo
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:41:22 2025 by rpki-client