Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa
File: 323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa (raw, json)
Hash identifier: RiJN0l87aY48VKpm5kB/oKohwUhSNuwZ2dejTOYaeE0=
Subject key identifier: FA:74:39:73:74:9E:CF:9C:CD:6E:95:68:C4:C3:60:F2:E5:9B:06:4D
Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43
Certificate serial: 09C933ACA92B980D8BA517635201F4FE4144F43F
Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa
Signing time: Mon 01 Jul 2024 01:05:55 +0000
ROA not before: Mon 01 Jul 2024 01:00:55 +0000
ROA not after: Mon 30 Jun 2025 01:05:55 +0000
asID: 139998
IP address blocks: 2001:df2:e880::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:c9:33:ac:a9:2b:98:0d:8b:a5:17:63:52:01:f4:fe:41:44:f4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43
Validity
Not Before: Jul 1 01:00:55 2024 GMT
Not After : Jun 30 01:05:55 2025 GMT
Subject: CN=FA743973749ECF9CCD6E9568C4C360F2E59B064D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:89:c9:06:34:a3:bc:04:26:a7:71:bb:d7:7f:
95:ee:cc:ed:09:00:95:70:81:70:58:fa:0f:40:85:
a0:f1:89:66:6b:a1:01:9d:16:58:ca:ad:d0:37:c6:
ef:32:bd:f1:7c:93:05:83:d7:bd:bf:07:e8:57:90:
6a:36:3e:ee:21:78:1c:4e:59:1e:ee:29:9f:aa:1c:
df:27:00:57:ba:90:b3:89:00:46:53:28:c8:c9:5c:
e0:23:2d:2f:b7:3d:6f:d3:96:28:27:b7:24:f1:32:
f7:f6:0a:27:02:4a:f5:86:85:79:e3:88:a7:76:f8:
d3:56:a8:14:4d:ae:05:10:35:a8:ea:2f:e2:b5:b1:
7f:82:c4:98:40:56:4c:4b:94:88:21:40:97:8d:1d:
e4:88:9a:38:93:05:ef:9f:96:98:ce:4f:de:0d:1c:
79:de:4f:1f:59:e2:71:cd:ea:d3:7c:90:f8:97:84:
2c:fe:2c:16:d4:17:0a:f1:21:bc:65:b5:0f:c1:7a:
e9:0f:6a:77:4c:82:7a:b4:11:a1:7b:47:89:dc:88:
51:f8:ca:c6:00:d6:47:8b:f2:d9:1c:9e:84:00:6e:
87:94:5e:85:2d:13:5a:44:b9:d6:0e:e9:cc:51:24:
0d:32:fc:fd:92:0b:65:e4:38:cf:c3:9b:32:bb:b5:
b3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:74:39:73:74:9E:CF:9C:CD:6E:95:68:C4:C3:60:F2:E5:9B:06:4D
X509v3 Authority Key Identifier:
keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:e880::/48
Signature Algorithm: sha256WithRSAEncryption
1f:d6:6b:4f:da:2d:bc:cb:7f:15:cb:e8:7e:f0:8a:a1:cc:bc:
e1:7e:36:52:3c:4d:a1:e5:11:4c:20:dc:25:93:07:f9:85:a0:
f4:d1:c0:e4:be:90:5e:8c:f5:79:03:3e:62:f7:e6:af:2a:9b:
56:26:16:e9:62:20:ae:45:a9:aa:61:b4:55:9b:31:db:82:c7:
a4:05:43:40:f7:bc:f5:5a:e2:fb:1a:67:26:50:75:7e:2d:5d:
f6:be:09:e1:f0:98:d6:a0:dd:14:f0:b6:90:f2:71:c1:80:fd:
29:88:aa:6b:dd:c4:18:70:bf:c2:1c:06:8d:c3:6b:2a:f0:61:
07:7e:cc:ea:52:ce:a9:56:ba:da:24:5a:21:bf:0f:f2:85:fc:
43:4f:e9:c5:2a:7a:72:49:e4:8f:9e:66:5d:2d:64:9a:65:e2:
2e:2c:9c:53:74:2b:6b:ec:f5:b7:16:51:57:56:0e:fa:53:70:
98:48:3c:f3:0f:52:c9:de:8a:98:de:8d:31:03:dc:90:fb:51:
26:1b:ea:3a:fe:30:82:ee:be:d6:71:bd:ef:90:3e:8a:a2:b6:
22:a6:0b:fa:e9:b3:8b:fc:2f:b9:ee:3b:86:17:93:2d:c3:4a:
71:a9:f2:6f:64:80:5c:e9:dc:69:09:6a:63:d2:31:9a:d2:b2:
6f:38:c5:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:16 2025 by rpki-client