Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa
File: 323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa (raw, json)
Hash identifier: lidUKpIUI42q8veE3vysCaBMTq0HxAiYVl6H5XafxIU=
Subject key identifier: B4:F7:7A:42:F9:07:FE:CE:4F:5F:7A:9B:8F:02:F9:16:1C:CE:6E:4B
Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623
Certificate serial: 2F9F314D84796C05DB37A49AA40FCE9646AD8A1E
Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa
Signing time: Mon 23 Dec 2024 03:00:01 +0000
ROA not before: Mon 23 Dec 2024 02:55:01 +0000
ROA not after: Mon 22 Dec 2025 03:00:01 +0000
asID: 149352
IP address blocks: 2001:df0:a40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:9f:31:4d:84:79:6c:05:db:37:a4:9a:a4:0f:ce:96:46:ad:8a:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623
Validity
Not Before: Dec 23 02:55:01 2024 GMT
Not After : Dec 22 03:00:01 2025 GMT
Subject: CN=B4F77A42F907FECE4F5F7A9B8F02F9161CCE6E4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:c4:64:6e:0a:6f:83:46:1d:97:ba:f2:5e:
38:43:d9:2f:95:82:01:0b:9c:84:ad:69:78:89:75:
68:cd:7b:ec:c8:7a:c1:f7:10:c8:1c:01:45:fb:7f:
e9:23:dd:4f:88:bb:83:09:ec:d9:17:20:f1:04:8f:
23:01:1b:2a:b9:cd:42:b4:a0:65:04:9c:d0:fc:0a:
88:ab:41:47:5f:72:41:a9:79:94:50:f3:80:fc:49:
52:c3:87:19:c1:23:c7:38:97:5b:4d:81:e8:7a:f4:
c5:c2:e7:6d:98:38:10:fa:75:ec:5a:a6:41:c1:c4:
27:23:a0:3a:30:74:87:b3:c7:68:1b:a8:50:6d:67:
46:f5:79:04:68:97:78:05:d9:41:1a:50:0b:15:3b:
54:6c:2b:5a:69:60:58:fa:f0:19:5c:63:4b:b3:b1:
7e:47:2a:06:39:c0:c7:d6:27:9b:50:fa:eb:6f:4a:
72:2d:bb:bd:a7:aa:23:1b:0b:8b:24:de:39:d1:d7:
fc:19:c5:4c:91:0c:57:03:93:73:26:12:2d:c0:90:
1a:a5:a6:7e:af:33:a6:ad:12:42:4b:f9:d2:0d:8e:
26:a2:03:58:4e:f2:e7:b7:df:99:5d:38:bd:c1:74:
3a:27:ed:12:4c:4f:10:22:8d:eb:55:d4:25:ff:a6:
80:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F7:7A:42:F9:07:FE:CE:4F:5F:7A:9B:8F:02:F9:16:1C:CE:6E:4B
X509v3 Authority Key Identifier:
keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:a40::/48
Signature Algorithm: sha256WithRSAEncryption
72:a7:3f:37:a4:64:ff:98:1e:77:4f:49:23:3e:ab:0c:e1:39:
af:36:c8:b8:31:b6:c1:1a:57:59:59:c5:b8:af:a4:97:ba:02:
a2:31:ad:58:c1:e9:05:2a:59:c7:a0:f8:42:18:03:12:af:0b:
be:1a:48:b6:cb:df:9b:1a:3f:15:7f:37:c7:92:c6:65:75:71:
fc:ca:39:80:76:d9:c8:cd:0e:1d:59:32:44:45:91:e5:05:bb:
5d:74:c9:e7:92:2e:d4:05:69:7b:75:67:82:10:6c:84:18:a0:
8d:7d:f2:1d:b9:7e:31:82:20:b3:3d:40:ee:67:44:60:a6:31:
39:ba:61:f8:69:3c:f2:1a:40:ed:5a:f2:76:4a:01:ac:0b:fa:
dc:bd:f6:95:be:c6:a8:b5:e3:48:aa:33:29:7c:95:cf:40:d7:
dc:3c:f7:98:f6:16:de:7e:de:23:fc:da:47:ab:84:a0:1d:fa:
ba:0c:fb:d2:8e:6b:d0:a6:4a:2b:49:27:8a:bc:cf:7c:f4:59:
9e:50:14:86:9d:24:9c:4d:84:d1:f9:13:bd:91:c7:74:b3:7c:
82:bc:76:f0:81:9e:74:d7:54:6e:84:d3:fe:65:6a:5f:08:cd:
65:33:43:56:83:18:3e:5b:1d:f0:42:e9:22:b5:13:c2:e2:53:
73:cb:25:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:18:18 2025 by rpki-client