Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa
File: 323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa (raw, json)
Hash identifier: eq1dIyT/hTSGTA8tTWeYbx3bmYqwcmsoUQci0ZdZLPs=
Subject key identifier: 33:7D:80:67:25:3B:01:26:85:FB:A1:A2:ED:F9:C3:20:2E:56:37:4A
Certificate issuer: /CN=56091C1067601EE93D3C4D25CDA071DC6C463934
Certificate serial: 46CB47563062946699CBA1A32E837C195C08DEC9
Authority key identifier: 56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa
Signing time: Thu 26 Sep 2024 11:00:00 +0000
ROA not before: Thu 26 Sep 2024 10:55:00 +0000
ROA not after: Thu 25 Sep 2025 11:00:00 +0000
asID: 141052
IP address blocks: 2001:df3:f780::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:cb:47:56:30:62:94:66:99:cb:a1:a3:2e:83:7c:19:5c:08:de:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56091C1067601EE93D3C4D25CDA071DC6C463934
Validity
Not Before: Sep 26 10:55:00 2024 GMT
Not After : Sep 25 11:00:00 2025 GMT
Subject: CN=337D8067253B012685FBA1A2EDF9C3202E56374A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:5d:0c:cd:e6:0f:0b:95:51:12:bd:1c:bb:
34:ee:aa:5c:63:e7:3c:3a:e2:24:3e:b9:54:9d:37:
16:4b:17:68:df:1b:f6:95:fe:75:0c:96:dd:f4:db:
d1:b6:ab:58:09:b1:03:76:9f:69:0b:87:aa:ea:9b:
d7:f4:9c:99:70:10:9f:fc:84:fa:f6:b8:1c:30:6c:
e6:0c:62:b8:64:66:9e:06:ad:29:7b:9f:14:00:ab:
8c:4e:d6:62:5e:53:55:b6:1f:f6:3c:99:d3:01:7b:
81:11:ac:3d:1a:6a:8b:8a:f9:ec:5c:1f:86:da:25:
81:dd:e2:1a:6c:fc:59:d2:5d:5e:d2:7d:5b:6c:99:
5a:3a:fb:80:6e:8a:e8:5c:83:d1:57:5c:f4:55:db:
a4:24:08:df:20:f1:0b:40:90:47:f0:f0:dd:fb:ce:
51:4d:39:98:74:9f:71:a8:74:95:f2:68:16:fc:d7:
a3:d3:79:c2:aa:d1:f6:e9:68:b8:e3:b6:f5:d7:48:
5a:cd:2b:d0:2d:c5:84:0f:37:c9:c9:ad:9f:fe:be:
fd:c9:3a:5a:25:6c:f6:6a:a6:a4:be:6a:05:91:93:
cd:de:3e:f6:10:15:d3:69:0a:1d:96:78:ff:01:03:
7f:20:6b:37:1a:cc:d2:f4:de:08:18:63:e0:fe:df:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7D:80:67:25:3B:01:26:85:FB:A1:A2:ED:F9:C3:20:2E:56:37:4A
X509v3 Authority Key Identifier:
keyid:56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:f780::/48
Signature Algorithm: sha256WithRSAEncryption
b3:eb:ff:a6:ef:b7:95:bc:fa:a9:4a:30:03:b6:fc:25:06:ec:
c7:40:8b:eb:68:5f:cb:c8:cd:f0:02:e3:52:ba:bc:4a:76:7e:
cc:27:53:78:63:5b:62:5b:19:b4:66:b9:1f:fb:6c:50:62:0c:
78:84:9f:5e:43:02:49:69:1e:d9:45:eb:d2:a2:53:42:ee:8b:
cf:2b:79:31:71:b6:98:4e:15:a5:5d:a1:79:50:8f:7d:4a:53:
82:3c:ea:73:1f:35:10:c2:dc:a1:e4:ae:5e:90:da:fc:e6:f9:
11:7a:74:2a:3f:ad:6f:74:26:db:53:22:15:47:32:86:1e:31:
76:b4:76:d5:5d:be:ec:1f:40:3c:a2:06:42:28:32:a0:ff:b7:
27:c4:a2:c5:4b:7e:4b:b7:a1:b9:72:9f:6a:aa:ec:db:0a:87:
c3:4c:45:cc:46:bc:47:38:4c:1c:06:42:1b:60:e9:b1:2c:f6:
36:a6:92:6f:f4:cd:03:12:67:df:e7:a1:97:92:bb:fc:38:4c:
0e:18:0f:79:12:ee:e8:b2:f8:b2:9f:37:4b:4d:48:9a:e8:ec:
1c:0c:d3:cb:24:c7:34:b7:e0:70:12:ff:bc:f9:32:e9:26:8e:
2e:73:cd:a7:c1:26:de:1b:45:6d:81:a5:26:ae:c1:23:8b:b4:
51:46:00:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:19:37 2025 by rpki-client