Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa
File: 323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa (raw, json)
Hash identifier: +DXbNG3+5DIfVUdd5cKU3zcHabiuNmOrVbbKp3YlrN4=
Subject key identifier: 1D:D4:31:C7:C8:93:62:D8:CF:6A:1B:F3:CC:F6:53:98:06:34:EC:64
Certificate issuer: /CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63
Certificate serial: 6F82BEF628A093784CAFB4C68938C769A9D59B37
Authority key identifier: FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa
Signing time: Thu 19 Dec 2024 13:00:59 +0000
ROA not before: Thu 19 Dec 2024 12:55:59 +0000
ROA not after: Thu 18 Dec 2025 13:00:59 +0000
asID: 138142
IP address blocks: 2001:df7:af00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:82:be:f6:28:a0:93:78:4c:af:b4:c6:89:38:c7:69:a9:d5:9b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63
Validity
Not Before: Dec 19 12:55:59 2024 GMT
Not After : Dec 18 13:00:59 2025 GMT
Subject: CN=1DD431C7C89362D8CF6A1BF3CCF653980634EC64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:dd:cc:6a:67:96:0d:91:54:af:24:2c:34:
95:9d:2d:4d:f1:e2:cb:f3:66:7d:ee:12:1f:2b:d7:
fa:6a:9a:fb:33:47:ad:e2:ce:f5:b8:cf:be:e6:a0:
b1:2d:0a:43:0b:a5:9c:ad:70:f0:c5:96:5f:03:47:
31:32:4e:73:9f:bf:66:6a:f0:cc:8e:db:ea:45:a0:
6d:fc:7b:12:fc:ff:ee:d3:5a:85:9f:3e:56:74:f1:
e2:6c:31:6f:ad:11:3e:47:bf:5d:a3:d5:d5:4e:86:
24:2d:c7:87:3c:28:a1:51:83:b4:f3:92:09:5b:98:
cc:89:5b:95:49:ed:e4:c1:6f:3f:e2:a5:7a:cb:22:
98:71:54:5e:9a:04:5b:c3:40:6a:49:2d:7c:cd:75:
ab:3a:86:2f:59:33:3c:2e:61:86:70:da:8f:ef:ae:
54:b5:3a:70:48:70:e1:3e:b4:8d:b0:34:83:9d:ea:
7a:79:16:03:85:96:34:73:f4:bf:ab:b3:70:cc:f1:
d7:77:dd:7e:37:f8:84:fa:e4:0b:bb:ff:0d:a0:a0:
d1:fa:2a:6a:a7:07:f4:5c:9f:f7:e0:af:51:c9:0a:
93:4a:49:7b:c1:f5:45:1d:c8:db:27:46:66:66:32:
7b:a3:34:37:ed:17:5e:5c:d5:6c:e5:0b:65:71:e1:
24:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D4:31:C7:C8:93:62:D8:CF:6A:1B:F3:CC:F6:53:98:06:34:EC:64
X509v3 Authority Key Identifier:
keyid:FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:af00::/48
Signature Algorithm: sha256WithRSAEncryption
51:9c:98:ff:4d:a0:95:40:f5:51:aa:9c:15:02:82:80:3e:8b:
88:27:7a:c1:7f:af:66:13:ef:eb:48:be:bf:91:9d:8e:17:0f:
05:5f:82:30:e1:ff:71:ed:86:67:04:97:a6:b6:02:f8:e8:8e:
f3:3f:db:9a:7d:d0:9e:ca:8d:4a:c8:44:8b:5c:40:10:8f:b1:
1a:9e:5b:ef:4e:6b:e3:d8:26:c2:bf:f6:68:90:c2:ec:56:b8:
3a:31:7f:25:e3:cf:aa:9a:01:43:b0:b2:a6:5d:df:d3:76:d7:
1e:b8:c9:3a:bc:f6:41:65:3b:d4:d0:1a:f4:fd:b5:b1:8d:49:
cf:b6:45:0d:e3:67:82:cc:13:59:fd:5c:b1:cd:d6:32:71:5e:
6d:0a:12:53:ef:1d:6b:a0:bb:4d:32:7e:8b:99:20:04:5a:8a:
f0:b5:7a:8f:58:6c:96:26:65:9f:d3:b4:1d:b0:89:94:cc:d8:
aa:10:24:c0:63:10:ad:30:66:09:da:7b:73:a8:93:ce:9a:23:
27:ab:f7:95:ea:38:f8:7d:59:c4:14:94:b2:d5:33:71:33:9e:
71:4c:43:1f:80:3b:88:99:fd:89:3c:a9:88:03:7c:f7:cb:78:
b1:15:f3:83:a4:94:cb:e1:4d:03:62:58:e3:43:c8:a7:d4:f9:
48:3e:28:b8
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUb4K+9iigk3hMr7TGiTjHaanVmzcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBD
MzdFRUY2MzAeFw0yNDEyMTkxMjU1NTlaFw0yNTEyMTgxMzAwNTlaMDMxMTAvBgNV
BAMTKDFERDQzMUM3Qzg5MzYyRDhDRjZBMUJGM0NDRjY1Mzk4MDYzNEVDNjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn2d3MameWDZFUryQsNJWdLU3x
4svzZn3uEh8r1/pqmvszR63izvW4z77moLEtCkMLpZytcPDFll8DRzEyTnOfv2Zq
8MyO2+pFoG38exL8/+7TWoWfPlZ08eJsMW+tET5Hv12j1dVOhiQtx4c8KKFRg7Tz
kglbmMyJW5VJ7eTBbz/ipXrLIphxVF6aBFvDQGpJLXzNdas6hi9ZMzwuYYZw2o/v
rlS1OnBIcOE+tI2wNIOd6np5FgOFljRz9L+rs3DM8dd33X43+IT65Au7/w2goNH6
KmqnB/Rcn/fgr1HJCpNKSXvB9UUdyNsnRmZmMnujNDftF15c1WzlC2Vx4SQFAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUHdQxx8iTYtjPahvzzPZTmAY07GQwHwYDVR0j
BBgwFoAU/E+HYlJMPr+YEm5fV5zLMMN+72MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZTVhYTkzZC03ODdiLTRhMTctODdkMC03ZWY0MWIwZjJkZWYvMC9GQzRGODc2MjUy
NEMzRUJGOTgxMjZFNUY1NzlDQ0IzMEMzN0VFRjYzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBDMzdF
RUY2My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNWFhOTNkLTc4N2ItNGExNy04
N2QwLTdlZjQxYjBmMmRlZi8wLzMyMzAzMDMxM2E2NDY2MzczYTYxNjYzMDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzNDMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
968AMA0GCSqGSIb3DQEBCwUAA4IBAQBRnJj/TaCVQPVRqpwVAoKAPouIJ3rBf69m
E+/rSL6/kZ2OFw8FX4Iw4f9x7YZnBJemtgL46I7zP9uafdCeyo1KyESLXEAQj7Ea
nlvvTmvj2CbCv/ZokMLsVrg6MX8l48+qmgFDsLKmXd/TdtceuMk6vPZBZTvU0Br0
/bWxjUnPtkUN42eCzBNZ/VyxzdYycV5tChJT7x1roLtNMn6LmSAEWorwtXqPWGyW
JmWf07QdsImUzNiqECTAYxCtMGYJ2ntzqJPOmiMnq/eV6jj4fVnEFJSy1TNxM55x
TEMfgDuImf2JPKmIA3z3y3ixFfODpJTL4U0DYljjQ8in1PlIPii4
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:58:47 2025 by rpki-client