Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/323030313a6466373a326630303a3a2f34382d3438203d3e20313338313134.roa
File: 323030313a6466373a326630303a3a2f34382d3438203d3e20313338313134.roa (raw, json)
Hash identifier: Bb/OkwwJmJHe8/z9Qp5PTG+7pV0l1ZMHq6rEYToHVas=
Subject key identifier: 96:53:61:1E:A2:82:E2:11:17:FE:CE:BE:23:AF:04:A2:B2:65:DF:7D
Certificate issuer: /CN=129285A478A166EE0B54DBCDA60771DA54C4F65F
Certificate serial: 1D517B221F585A5360EF8C3CD90E813D0772AE48
Authority key identifier: 12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/323030313a6466373a326630303a3a2f34382d3438203d3e20313338313134.roa
Signing time: Mon 06 Jan 2025 08:02:28 +0000
ROA not before: Mon 06 Jan 2025 07:57:28 +0000
ROA not after: Mon 05 Jan 2026 08:02:28 +0000
asID: 138114
IP address blocks: 2001:df7:2f00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:51:7b:22:1f:58:5a:53:60:ef:8c:3c:d9:0e:81:3d:07:72:ae:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=129285A478A166EE0B54DBCDA60771DA54C4F65F
Validity
Not Before: Jan 6 07:57:28 2025 GMT
Not After : Jan 5 08:02:28 2026 GMT
Subject: CN=9653611EA282E21117FECEBE23AF04A2B265DF7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b1:3d:06:b3:2b:f6:60:d6:9b:9e:91:d8:2e:
31:ed:4f:19:c7:81:b6:2f:ef:f0:d2:44:f0:23:ea:
b5:af:c3:7c:8f:3e:8f:fc:03:86:c9:f2:f3:ec:b5:
96:0e:bf:cd:31:6a:79:68:8a:ae:e2:d5:38:a8:be:
c6:90:15:8f:96:5e:12:63:ee:82:46:33:59:63:b9:
ce:9b:4a:eb:ae:4b:7e:76:13:76:ed:2f:57:1d:95:
d3:8a:db:67:09:49:26:f4:23:46:d9:46:64:76:cf:
60:92:73:7c:33:99:cc:ab:aa:c6:60:7e:71:5e:f6:
52:3e:fe:d9:cb:10:66:8a:a3:ca:b3:5e:91:32:8d:
a6:a6:00:28:cc:45:c8:b0:b9:a3:71:51:86:c4:f8:
11:45:7c:0d:d0:21:29:f8:57:f2:b8:3d:b0:bc:ff:
db:d5:01:f5:ed:fa:40:75:32:b3:6c:f8:8b:51:14:
0b:0f:6c:dd:b6:ed:a7:b7:2b:60:f8:0e:d4:89:38:
04:e8:78:07:50:86:33:25:22:5c:c7:7d:e6:f5:d2:
46:46:fc:4e:5c:7c:32:54:63:69:e0:ad:fa:47:b5:
45:e2:66:60:c5:be:43:cf:83:af:b8:fc:76:fa:26:
5b:92:43:f3:4f:61:e4:ae:5b:1e:2e:00:59:d3:cc:
f7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:53:61:1E:A2:82:E2:11:17:FE:CE:BE:23:AF:04:A2:B2:65:DF:7D
X509v3 Authority Key Identifier:
keyid:12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/323030313a6466373a326630303a3a2f34382d3438203d3e20313338313134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:2f00::/48
Signature Algorithm: sha256WithRSAEncryption
6e:74:ff:87:e5:24:cb:f0:68:58:f3:db:72:88:94:0e:67:b5:
a6:c1:a1:31:18:7b:51:1c:89:92:0a:72:fc:35:ea:ed:92:be:
3f:f1:e1:19:cb:99:d5:ba:f3:9c:1a:62:df:27:dd:b6:67:8a:
cf:ae:a1:45:d0:61:c1:bf:39:40:ec:0e:93:e1:52:45:89:e2:
f9:fa:fa:26:40:a0:5f:6b:a2:5f:36:e5:ef:2c:80:c6:d7:53:
f6:9e:67:f2:21:b8:3a:16:ad:09:c6:f7:ed:93:54:e9:95:96:
0d:b2:11:69:9c:f6:7d:13:0f:41:55:a1:66:4c:00:83:72:7e:
41:1c:c7:bd:ef:9c:99:f7:fd:40:77:91:70:39:e3:2d:e3:a0:
41:25:d4:94:6d:54:74:9c:9f:c0:94:3e:b6:30:f1:a5:fa:21:
ed:ad:b1:bf:1e:e6:45:4f:ee:38:07:e7:55:0a:1c:94:c5:11:
6a:de:c4:f0:01:ed:df:33:d3:75:a2:7b:b4:35:0b:f8:d3:29:
d5:bd:06:61:40:54:95:53:23:68:a1:f4:22:f8:a6:51:f3:81:
d3:63:af:69:50:f3:69:83:1f:bf:60:75:95:ae:76:bc:e5:41:
64:49:7b:f4:61:30:16:17:88:b0:0a:44:b2:5f:ed:bc:42:19:
d5:e5:6c:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:17:06 2025 by rpki-client