Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa
File: 323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa (raw, json)
Hash identifier: PbwEzJXRFcDlg8qq7i8GVSnaGAPkcyZUmZy35AgEFf0=
Subject key identifier: 13:EF:11:24:F3:B8:95:9A:87:96:3A:5C:F8:2B:B8:CA:71:0F:FF:95
Certificate issuer: /CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416
Certificate serial: BA12C9015D8C8F1117EF58021BC062001EBC08
Authority key identifier: B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa
Signing time: Wed 19 Mar 2025 10:00:03 +0000
ROA not before: Wed 19 Mar 2025 09:55:03 +0000
ROA not after: Wed 18 Mar 2026 10:00:03 +0000
asID: 135455
IP address blocks: 2001:df3:1200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ba:12:c9:01:5d:8c:8f:11:17:ef:58:02:1b:c0:62:00:1e:bc:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416
Validity
Not Before: Mar 19 09:55:03 2025 GMT
Not After : Mar 18 10:00:03 2026 GMT
Subject: CN=13EF1124F3B8959A87963A5CF82BB8CA710FFF95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:33:26:96:dc:a4:a0:de:e7:34:2e:4b:f8:d6:
5c:db:58:d1:1e:5c:82:c7:73:72:b0:84:6e:de:1f:
66:9b:da:9e:79:fc:ac:9b:30:89:13:a2:35:fe:bc:
ba:39:0d:a3:a5:b5:b7:b7:05:15:d6:32:a8:47:b1:
9e:b4:2b:30:04:e3:2e:4c:45:af:de:39:f5:c9:8b:
73:56:f5:f4:eb:4e:5f:db:8b:a6:10:fc:db:61:b0:
cc:ab:02:7e:58:d0:d9:48:c7:d4:d5:99:8b:bd:bb:
06:bd:2a:71:b4:ef:34:dd:58:02:68:9e:d8:30:f4:
e1:26:cb:87:c2:07:47:ee:09:ef:ac:ca:3a:1b:0a:
d2:02:9e:f6:b1:a8:1d:36:68:a2:6a:5a:53:c8:ca:
bb:02:17:45:6d:c4:2e:1f:0e:40:2e:19:a2:86:4d:
45:29:72:9b:26:29:3f:65:7e:ad:ed:b6:0e:1b:bf:
3c:22:18:26:66:04:19:d2:94:65:88:6a:1e:4e:0f:
61:ae:ec:96:08:b2:2a:f9:a6:af:a4:c8:cd:17:33:
14:26:df:62:b7:c5:8f:15:99:51:24:41:23:e2:b8:
4c:ef:a6:de:53:b6:40:11:9d:28:8c:af:e1:6c:d0:
95:bf:f3:00:a9:aa:07:17:24:e2:ef:09:60:a4:12:
39:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EF:11:24:F3:B8:95:9A:87:96:3A:5C:F8:2B:B8:CA:71:0F:FF:95
X509v3 Authority Key Identifier:
keyid:B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/323030313a6466333a313230303a3a2f34382d3438203d3e20313335343535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:1200::/48
Signature Algorithm: sha256WithRSAEncryption
7e:0c:94:3a:10:39:d8:66:fb:fb:49:71:c0:df:20:c2:69:ce:
82:48:86:e2:ac:3b:08:24:09:04:ec:90:7b:a7:51:43:59:0b:
a0:ad:6a:b3:b2:ca:f0:1d:17:a4:fa:81:94:e3:84:c0:5e:f5:
34:02:e6:c7:ee:dc:43:c7:33:b6:8d:01:9c:62:ca:2d:4c:01:
25:f2:89:a3:40:f1:ff:6f:b7:11:05:6c:28:d3:cb:7f:b8:51:
8b:5f:ad:7b:2a:57:f0:82:1e:48:f1:97:e6:8a:2f:80:3f:8d:
7d:10:37:de:8f:fd:77:92:71:f6:fe:d8:b8:24:af:88:3c:5f:
49:76:60:ac:c5:f7:a2:82:88:28:e4:e9:44:ea:66:c2:b5:b6:
65:8d:ed:53:06:3d:50:cc:9e:ac:fc:1c:9a:92:72:a4:83:82:
d1:44:eb:49:db:21:5f:5a:ad:24:ff:a7:ae:5e:e2:f2:be:af:
a8:d0:33:96:00:36:30:2f:d7:43:c0:af:3c:9e:1d:66:9f:ed:
0e:ef:5f:c9:83:20:21:4f:c3:d2:dc:e4:b8:1c:9d:84:a8:f7:
71:3f:53:40:cc:88:3e:4f:67:42:ab:f5:cb:90:15:f4:3c:f4:
f7:d1:42:b2:24:fc:b0:30:af:ea:a4:99:9b:d5:b7:a0:1c:fc:
6b:2c:0d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:20 2025 by rpki-client