Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa
File: 323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa (raw, json)
Hash identifier: EztX/pCLRjxuGDD5KwhPpuJplaVIMLa9IH/IjmNzx0U=
Subject key identifier: 96:2A:2A:F9:9B:5C:DA:0D:79:61:04:F2:AB:27:4E:BB:AC:5A:C0:D7
Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD
Certificate serial: 0EE19230570E185898D344F393AC1803E8F6F5C2
Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa
Signing time: Thu 12 Dec 2024 08:02:36 +0000
ROA not before: Thu 12 Dec 2024 07:57:36 +0000
ROA not after: Thu 11 Dec 2025 08:02:36 +0000
asID: 138876
IP address blocks: 2001:df0:b580::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:e1:92:30:57:0e:18:58:98:d3:44:f3:93:ac:18:03:e8:f6:f5:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD
Validity
Not Before: Dec 12 07:57:36 2024 GMT
Not After : Dec 11 08:02:36 2025 GMT
Subject: CN=962A2AF99B5CDA0D796104F2AB274EBBAC5AC0D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:35:f7:97:f0:16:e6:d6:1c:f6:c3:3d:fb:86:
f6:07:cf:7b:53:dd:ff:52:6e:14:ff:09:42:86:d1:
c2:75:65:19:2d:97:f6:24:a5:d4:9a:25:88:7d:17:
51:12:81:78:4e:7f:b4:57:05:49:4b:36:a0:2c:05:
04:43:df:0d:8b:62:eb:01:8a:22:35:e6:d2:2a:e4:
3a:cc:65:b2:3c:13:44:4f:3a:38:1a:83:4b:30:99:
68:c2:a2:8f:44:b0:52:48:70:c4:a5:08:65:3a:ec:
93:fa:c5:8d:1b:3a:6a:67:78:e8:34:76:f6:bb:ed:
d6:88:89:d0:56:92:5e:5e:85:6e:ae:7b:e1:ab:e0:
17:ff:cc:32:ac:c6:98:6b:1f:d2:ed:be:9d:b9:9b:
0a:d3:23:38:d3:45:00:e2:f1:0f:b3:1e:66:df:45:
c7:8f:9a:5f:83:78:60:59:cb:0d:5c:18:f3:d1:b9:
be:84:59:a1:2e:40:32:1f:56:cc:10:ee:71:a9:bb:
fa:18:f9:5c:64:04:24:4a:68:54:5d:c4:36:4b:f6:
c2:16:05:0f:45:d8:5d:fc:fa:2c:20:18:26:39:4e:
0b:36:c2:d8:b7:6a:6e:49:cf:92:d8:f9:e2:2f:ca:
33:d8:6a:9c:42:c0:ac:cf:69:19:46:d2:7d:1c:6c:
98:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2A:2A:F9:9B:5C:DA:0D:79:61:04:F2:AB:27:4E:BB:AC:5A:C0:D7
X509v3 Authority Key Identifier:
keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:b580::/48
Signature Algorithm: sha256WithRSAEncryption
3a:f5:a7:3c:f5:fc:f5:fb:8d:ea:8c:bf:2e:ee:e5:d4:a0:59:
bd:3b:e6:8d:99:56:d6:3a:c8:77:20:0d:24:05:df:ae:9b:f4:
88:12:34:8a:1a:6e:c4:3b:78:48:3b:b6:fb:40:9b:17:e2:ae:
fb:70:04:4c:7b:30:93:6f:8d:31:d5:cb:0f:56:ec:0d:2c:61:
7b:25:8a:f1:d2:bc:20:3d:6e:9d:6f:6c:c2:eb:12:78:cc:cc:
b5:8b:f3:98:a1:d6:10:8b:ec:9a:cb:63:1d:5b:47:72:30:93:
ee:1d:90:0a:eb:1e:c5:b4:e0:43:f9:07:bd:30:f8:74:d6:94:
dd:b5:f3:9a:63:ef:ef:93:94:1c:59:01:4d:bf:5c:79:06:e1:
b1:16:f0:01:84:8c:f4:43:a9:1f:ff:11:58:9f:6e:23:14:91:
54:26:d4:4b:ef:19:d2:13:89:b5:14:f5:27:14:69:cd:14:de:
9c:8c:99:25:84:58:c8:5f:ac:3c:09:96:e4:82:f5:0c:a1:97:
75:9b:c4:85:0d:c5:12:6f:24:c2:86:24:ae:df:0d:4e:f4:a2:
7f:e0:c0:7f:f9:33:9e:2a:ab:59:b9:94:de:f4:0d:76:c2:17:
be:77:8c:d8:f8:d5:52:d8:02:de:a9:d8:44:d8:0c:93:26:52:
c8:a5:9d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:24:14 2025 by rpki-client