Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa
File: 323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa (raw, json)
Hash identifier: QBBO/FoYTyAYgTzseCUJPqnk8CnediRAVVQ9iko63Nk=
Subject key identifier: 3D:78:14:B0:40:8B:4A:CF:6D:20:82:88:B9:FA:67:CA:D0:A1:84:E8
Certificate issuer: /CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD
Certificate serial: 1893A95060207E5BCCC4955EDD430C75D8C53896
Authority key identifier: 6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa
Signing time: Mon 16 Dec 2024 06:00:03 +0000
ROA not before: Mon 16 Dec 2024 05:55:03 +0000
ROA not after: Mon 15 Dec 2025 06:00:03 +0000
asID: 141126
IP address blocks: 2001:df3:5c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:93:a9:50:60:20:7e:5b:cc:c4:95:5e:dd:43:0c:75:d8:c5:38:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD
Validity
Not Before: Dec 16 05:55:03 2024 GMT
Not After : Dec 15 06:00:03 2025 GMT
Subject: CN=3D7814B0408B4ACF6D208288B9FA67CAD0A184E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:39:79:72:46:d3:3c:90:a5:5d:8d:43:e7:
53:63:4d:3e:d8:c3:90:ce:f0:ed:dc:e3:6c:2f:c9:
08:c6:0a:d6:de:19:40:ce:be:0a:ca:90:d1:4c:ab:
21:26:10:18:b4:c7:03:4d:6d:b4:a9:1a:7d:8b:98:
f5:93:df:48:67:5e:b1:ab:15:fd:25:1a:30:a6:e9:
07:cf:74:38:fe:76:39:6b:9f:7c:bb:9b:48:0a:09:
e3:b2:95:5e:35:6f:1e:be:6a:d1:52:b5:85:3d:8f:
db:f0:79:43:a4:93:69:e4:06:b7:bd:fe:39:d3:42:
80:90:87:62:f9:64:fa:88:81:aa:57:08:f2:dd:31:
1b:64:ec:d0:77:68:17:4c:52:d9:43:d4:b2:f5:21:
22:60:0b:42:af:63:1c:d1:e3:4c:b6:e0:96:5b:40:
18:4f:18:f1:6f:72:1a:4e:b4:45:c9:14:39:02:e5:
af:c3:42:05:97:42:6c:e1:58:a0:c4:11:24:9a:ad:
f3:84:26:f4:49:ba:a5:dc:f9:e8:d8:d8:9e:62:10:
14:63:fe:1a:ff:a6:43:76:7a:29:d0:7f:c1:f2:e7:
f5:af:0a:3a:be:b8:1c:59:d3:1e:c1:da:9b:3d:55:
42:5d:e2:ca:c5:e8:b0:ba:68:0e:4a:14:6a:07:f3:
64:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:78:14:B0:40:8B:4A:CF:6D:20:82:88:B9:FA:67:CA:D0:A1:84:E8
X509v3 Authority Key Identifier:
keyid:6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:5c40::/48
Signature Algorithm: sha256WithRSAEncryption
1f:9c:be:8c:0a:be:18:58:f1:0e:8c:91:cc:56:8d:97:16:e0:
85:15:0b:55:1a:83:85:58:81:cc:ab:f1:df:a1:79:b0:b7:69:
92:87:1f:21:ff:b9:9f:75:3b:84:dd:ce:da:37:57:fc:29:b5:
14:d8:a2:7f:ce:c7:c9:6c:03:dc:75:cf:01:bf:83:2f:ad:ea:
95:9e:20:2a:48:f6:dc:b0:89:52:a0:4b:87:e4:3a:e4:1d:3a:
23:b5:2c:bd:90:e0:2b:a1:22:7f:55:2e:5f:76:63:08:e1:fc:
6e:28:69:0a:90:fb:ce:59:b6:8f:2c:b7:93:b5:a9:b3:bf:7d:
49:da:71:57:54:b4:7a:2e:3b:36:8b:84:d3:92:5b:83:26:19:
a3:f0:f2:0e:5c:c5:ca:a8:33:3f:34:92:73:52:a0:58:7b:2e:
0c:69:33:19:21:7c:b3:de:45:e8:ce:a5:44:4c:24:b3:33:47:
13:d0:21:54:59:ac:34:a2:ef:33:4b:58:30:3d:88:7f:02:3f:
d4:d8:5c:c0:83:37:ec:c4:fa:8d:46:7d:8e:47:9c:2a:d0:02:
f4:ee:96:22:84:6f:dc:26:d5:c5:2d:b2:79:08:9d:00:2c:61:
af:18:ad:03:72:65:86:0f:fb:d2:81:cc:e1:61:13:18:9a:b3:
e3:b2:21:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:32:58 2025 by rpki-client