Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa
File: 323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa (raw, json)
Hash identifier: Lyuu3Yv+vfLSZYPjYsbKPzPgnZu6KfdTSML5yCvuon0=
Subject key identifier: 15:68:8C:26:89:F3:B9:A7:DA:B2:6F:AC:39:56:A1:22:7D:18:04:AA
Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353
Certificate serial: 2A0CAAE78BE8F54EF4DCD954885A9AEAE4C6C08A
Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa
Signing time: Mon 01 Jul 2024 01:02:42 +0000
ROA not before: Mon 01 Jul 2024 00:57:42 +0000
ROA not after: Mon 30 Jun 2025 01:02:42 +0000
asID: 55688
IP address blocks: 2001:df4:3b00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:0c:aa:e7:8b:e8:f5:4e:f4:dc:d9:54:88:5a:9a:ea:e4:c6:c0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353
Validity
Not Before: Jul 1 00:57:42 2024 GMT
Not After : Jun 30 01:02:42 2025 GMT
Subject: CN=15688C2689F3B9A7DAB26FAC3956A1227D1804AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3d:36:57:67:27:ed:ca:56:ad:0f:93:04:32:
39:a3:46:47:f2:f1:bd:bb:0e:97:93:81:a2:80:6d:
ac:4f:7e:e4:0c:d5:ce:b8:53:7a:dc:8b:6c:98:44:
87:b4:45:ec:b3:49:2e:4a:a5:77:52:79:ee:c4:64:
00:7a:df:94:07:90:97:cb:e4:e0:7f:fe:11:20:7e:
0a:3d:a9:d8:61:b6:37:3d:c2:38:23:2b:6b:2f:93:
4f:2f:c8:fb:da:f2:d3:1f:b2:2c:50:eb:bc:3c:e9:
7e:cf:57:33:7c:f2:cb:02:dd:c1:b5:af:36:58:09:
4c:42:0e:ed:38:ca:a8:b2:f5:13:94:43:9a:7c:d2:
14:4c:19:76:93:15:55:95:2a:02:b7:33:6d:ea:11:
c1:4e:6a:e5:34:8d:46:1e:d7:0a:c5:e9:5a:18:32:
8f:34:17:70:b6:91:46:bc:0f:a6:2f:e6:75:b8:8c:
0f:7b:f1:f2:b2:4a:33:ed:be:21:a4:99:ca:a4:e3:
cf:a1:a4:bb:5d:83:5e:54:13:79:60:19:66:22:0b:
df:75:1a:6e:44:16:e2:1d:02:3b:84:7a:65:3e:36:
2b:74:f2:88:e3:c8:16:36:bf:dc:7c:2d:32:99:4c:
46:70:55:02:e1:6d:af:36:04:c7:c0:40:c3:38:52:
3e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:68:8C:26:89:F3:B9:A7:DA:B2:6F:AC:39:56:A1:22:7D:18:04:AA
X509v3 Authority Key Identifier:
keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:3b00::/48
Signature Algorithm: sha256WithRSAEncryption
39:91:ff:18:36:0f:95:db:a1:64:ec:d5:f2:6d:7f:1d:99:48:
e0:ce:4b:1b:13:64:1a:44:aa:83:44:9e:92:31:c9:bd:87:cb:
85:e1:c4:ea:b9:8f:44:03:e5:47:39:25:48:06:01:e5:f3:c4:
a5:bc:ed:a2:b0:53:85:23:07:3d:b5:7a:34:af:79:ae:29:d8:
45:99:f8:b3:03:27:3e:3d:6e:33:ef:74:ed:73:40:31:23:1d:
c5:58:37:02:b6:7b:70:b3:1c:31:19:8b:95:73:a4:6c:ff:b4:
79:10:7b:53:57:e7:b8:98:d9:af:83:8a:ae:32:ed:8b:55:b5:
5d:f3:ac:cf:7c:d8:d3:6f:e9:4e:1c:5f:fa:8f:f2:7d:21:20:
b4:1c:f2:47:e6:c9:3b:c9:fd:3e:fc:e7:b4:29:e0:d1:9c:00:
c2:a7:5e:c1:b7:43:23:f0:b2:a8:51:c7:b5:4d:6b:9b:c9:30:
5b:b2:15:fa:29:9e:34:d5:f2:15:71:7e:ba:7c:2f:1c:6d:67:
46:3f:27:24:ac:de:a0:3c:95:d5:97:af:98:a5:22:08:c4:55:
65:77:fd:03:26:f6:dd:72:82:61:14:5d:12:b5:95:ab:d4:38:
e7:8d:75:cc:61:0b:0f:03:22:39:f0:e3:e7:25:fb:7b:04:c2:
57:38:42:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:58:32 2025 by rpki-client