Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa
File: 323430353a316463303a3a2f33322d3438203d3e203436303437.roa (raw, json)
Hash identifier: R6jlOMebhI7dihMnvovn6K1+eHFopc71JfRc6zYxAOY=
Subject key identifier: FF:CB:FA:C3:7E:C4:A8:97:1C:93:6D:CD:D5:B0:C1:2E:1A:F6:E6:25
Certificate issuer: /CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A
Certificate serial: 14BBFBA71251A2530E6D177C8096BBA18919BFAE
Authority key identifier: 1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa
Signing time: Fri 11 Oct 2024 08:00:00 +0000
ROA not before: Fri 11 Oct 2024 07:55:00 +0000
ROA not after: Fri 10 Oct 2025 08:00:00 +0000
asID: 46047
IP address blocks: 2405:1dc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:bb:fb:a7:12:51:a2:53:0e:6d:17:7c:80:96:bb:a1:89:19:bf:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A
Validity
Not Before: Oct 11 07:55:00 2024 GMT
Not After : Oct 10 08:00:00 2025 GMT
Subject: CN=FFCBFAC37EC4A8971C936DCDD5B0C12E1AF6E625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:33:bc:5d:24:b6:e8:71:b9:6d:89:09:bf:
91:66:80:a6:ac:17:7a:ac:f6:ef:6c:09:d0:1c:47:
b4:80:e1:be:14:7c:62:c8:7f:1e:4e:14:7d:5a:db:
6f:db:e6:62:02:c3:39:73:87:a1:87:d7:8d:1d:5e:
28:1e:52:b1:89:96:70:d3:d2:58:2d:b2:1e:d2:5a:
bb:7c:8f:e7:8b:05:5c:38:6d:d5:2b:32:56:b9:d1:
03:37:7c:a4:52:91:16:13:63:12:5a:04:e4:eb:f6:
c7:73:51:17:3c:00:dc:d7:71:05:e2:31:80:5d:9f:
1c:84:57:b6:f0:b1:2f:94:1a:2a:df:1c:2c:0e:de:
43:20:ea:01:d5:97:c5:6f:5a:3d:3c:f1:78:e1:48:
28:b7:88:a0:1a:98:d6:76:e9:84:ed:bb:41:7a:03:
4c:5c:4e:7a:76:c8:c7:77:60:f9:9b:51:9b:77:16:
11:c7:03:d2:6c:da:70:93:81:f3:15:58:90:25:c2:
28:b1:b4:9d:7f:c6:d3:76:15:04:d4:3e:57:93:40:
fd:18:07:b0:96:fa:4f:57:07:93:a9:ff:4d:e5:5f:
bb:ee:73:16:3e:ca:0a:d2:c9:20:3b:5f:e6:58:15:
ad:5d:3a:75:a7:e6:21:3d:3e:71:7f:0e:b7:94:e1:
dd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CB:FA:C3:7E:C4:A8:97:1C:93:6D:CD:D5:B0:C1:2E:1A:F6:E6:25
X509v3 Authority Key Identifier:
keyid:1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:1dc0::/32
Signature Algorithm: sha256WithRSAEncryption
b5:4f:69:3a:aa:4f:ed:f7:f5:bf:00:0d:c8:86:1d:dc:19:3d:
33:33:83:21:36:fe:b3:8f:d9:c2:c8:d7:6e:23:de:ee:e1:02:
5c:b2:3d:dc:83:b2:a8:17:7c:f3:61:e4:e1:b6:bd:71:44:b1:
52:f7:35:53:9e:bd:0a:86:69:ea:6b:6a:4c:97:74:0b:54:ec:
8e:fa:ef:fd:34:c9:af:07:5b:d9:1f:7c:26:63:9d:e5:88:d6:
c9:14:f7:00:01:99:62:4c:69:31:01:ae:df:d6:8b:83:bc:ae:
f0:76:77:36:44:68:df:ac:38:1e:30:88:33:56:8f:e7:ff:15:
34:0f:29:d9:4d:5a:51:42:d5:af:3e:be:7b:37:77:3b:52:f6:
b4:99:15:d3:31:a2:12:7e:93:a7:af:fa:34:e4:54:4a:0d:4b:
86:e2:dd:14:d0:64:61:06:e1:95:cf:ad:80:86:b5:f0:e9:98:
84:8c:41:af:97:cf:b1:14:f2:98:91:e0:e7:df:87:78:44:a9:
d4:bf:a1:a5:24:54:90:8f:67:68:66:ef:6a:b6:24:c9:3c:54:
5a:8b:e1:24:b9:c0:f7:ae:81:b2:27:ef:7b:59:ff:3e:df:46:
d1:ef:a3:b4:60:34:09:38:1d:5f:f9:0f:14:fd:c0:a7:b6:17:
6f:60:e7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:41:21 2025 by rpki-client