Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa
File: 323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa (raw, json)
Hash identifier: XCgthdgFQVXgZhXpxamHo4Nu0prJPBdnL+Lmrt7t4ps=
Subject key identifier: E0:32:FD:1F:20:38:25:32:BE:81:E1:4D:08:12:81:36:F4:A8:BB:59
Certificate issuer: /CN=63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC
Certificate serial: 54D9EF8E99A418A2E3CE9DA347EA2AC2A38C6988
Authority key identifier: 63:FD:8D:EE:5A:44:38:A5:0F:F5:0B:6B:9B:9D:6A:3F:53:F3:48:DC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa
Signing time: Thu 12 Dec 2024 11:00:00 +0000
ROA not before: Thu 12 Dec 2024 10:55:00 +0000
ROA not after: Thu 11 Dec 2025 11:00:00 +0000
asID: 132164
IP address blocks: 2001:df0:9e00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:d9:ef:8e:99:a4:18:a2:e3:ce:9d:a3:47:ea:2a:c2:a3:8c:69:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC
Validity
Not Before: Dec 12 10:55:00 2024 GMT
Not After : Dec 11 11:00:00 2025 GMT
Subject: CN=E032FD1F20382532BE81E14D08128136F4A8BB59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:0d:f8:3e:6f:db:ea:1e:65:f1:d6:38:0a:
2a:02:1c:18:db:0a:28:e5:0a:e8:5e:ab:55:67:b1:
1e:a8:f7:1c:bb:d4:b5:ff:b1:68:ca:69:2c:f5:d7:
71:f1:9b:90:d0:3a:37:aa:5d:03:27:3e:32:f3:fd:
3f:5b:c9:8f:c8:f0:88:af:f7:16:49:80:f7:c2:67:
ce:64:e6:7f:9f:4b:79:75:a5:d6:88:ed:8b:4a:b7:
2a:6b:ac:15:31:a4:29:22:70:1e:e0:8a:ab:48:18:
58:f1:98:d3:0a:d3:8e:ea:ae:5a:c8:79:92:b4:03:
3e:6b:66:e1:bd:45:79:ef:c8:3f:d5:bc:14:f9:f6:
e6:43:a7:05:84:42:fe:44:c2:24:a7:a4:74:97:3b:
78:90:11:d5:b8:0c:f5:64:f8:39:ac:74:19:fc:af:
9c:6e:c3:ea:c5:9b:0f:55:d3:72:34:79:1d:fe:e0:
51:5e:76:de:c3:77:02:2e:40:d2:3f:62:a7:66:6d:
62:cb:77:a5:cf:46:02:8f:56:69:e1:e7:c1:51:13:
eb:a0:83:9b:d8:d9:91:70:d9:a5:52:42:ab:6d:2a:
fb:9f:5b:d2:e5:5a:9d:32:f5:8b:95:22:9a:33:dc:
3f:16:61:27:9d:73:1a:35:f3:77:93:b2:dc:da:52:
07:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:32:FD:1F:20:38:25:32:BE:81:E1:4D:08:12:81:36:F4:A8:BB:59
X509v3 Authority Key Identifier:
keyid:63:FD:8D:EE:5A:44:38:A5:0F:F5:0B:6B:9B:9D:6A:3F:53:F3:48:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63FD8DEE5A4438A50FF50B6B9B9D6A3F53F348DC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:9e00::/48
Signature Algorithm: sha256WithRSAEncryption
65:c8:f7:83:ca:cc:36:70:d7:f6:0e:07:bf:33:a2:38:ad:f5:
32:7a:b0:8b:6f:e2:26:be:cc:af:42:69:ec:d6:19:c2:6c:c3:
cf:c8:ea:f0:a3:06:14:16:3d:38:b9:ad:0a:fe:27:59:96:0f:
6b:cd:28:89:85:47:60:ff:8d:79:3f:cf:b8:5a:bb:d5:00:7b:
a2:6d:23:b9:d9:89:5a:46:9a:df:64:4c:c2:0b:7f:6a:e2:e8:
71:3c:3a:7d:71:a2:98:4a:d9:98:c5:04:5e:6a:a2:65:67:55:
59:f0:94:9a:3f:7d:1a:af:0a:1f:a8:e8:6f:13:12:10:61:5c:
17:be:79:13:ff:36:9b:45:a5:6b:e0:f2:00:5a:67:22:c8:49:
0e:70:bd:4a:be:e5:10:e8:01:a0:0e:56:59:13:40:d9:45:55:
eb:50:fb:86:3d:74:3c:56:5e:90:54:ec:45:91:60:d7:57:76:
be:ef:82:be:3e:63:4c:fe:83:09:5a:f7:b8:a8:52:93:c4:94:
17:99:09:6d:59:39:41:53:53:48:68:ba:85:ac:3c:00:96:d3:
58:80:5b:01:da:f1:87:c4:51:18:42:a6:31:84:9a:02:67:40:
0e:f3:51:ed:eb:88:72:d5:6f:20:3b:72:3e:6d:1f:29:e8:83:
c5:a3:cd:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:35:59 2025 by rpki-client