Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa
File: 323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa (raw, json)
Hash identifier: SMUXRvtfNi7m6TWntr0XsrZd7UmYMQGRBW++4EJYnOk=
Subject key identifier: F9:1B:07:9E:B8:DE:B7:63:4F:D9:52:86:A4:0A:BE:AA:9F:D9:E0:4B
Certificate issuer: /CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49
Certificate serial: 19334557D51A0361FC01A28266FAF9BDBB764FC3
Authority key identifier: 9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa
Signing time: Sat 02 Nov 2024 02:00:00 +0000
ROA not before: Sat 02 Nov 2024 01:55:00 +0000
ROA not after: Sat 01 Nov 2025 02:00:00 +0000
asID: 138871
IP address blocks: 2001:df7:f100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:33:45:57:d5:1a:03:61:fc:01:a2:82:66:fa:f9:bd:bb:76:4f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49
Validity
Not Before: Nov 2 01:55:00 2024 GMT
Not After : Nov 1 02:00:00 2025 GMT
Subject: CN=F91B079EB8DEB7634FD95286A40ABEAA9FD9E04B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e2:94:c1:7c:7a:ca:b5:03:c8:83:95:3d:d4:
20:d6:c7:78:b8:35:36:a8:bc:69:57:fe:ad:bb:68:
72:b8:ed:ff:aa:f1:8b:34:fd:f4:bb:1d:cc:05:8e:
27:4c:0c:c1:56:cf:68:6b:4c:4c:50:9f:26:20:97:
fc:8e:b5:00:7b:b0:4a:3b:63:08:17:67:6c:5b:ee:
74:87:3b:51:82:5b:99:dc:2e:dd:1a:f0:bf:02:08:
a3:93:3e:a1:b3:a3:03:c4:72:45:3b:d3:fb:33:19:
3a:d0:71:24:7b:c1:fd:f1:84:de:f4:c7:a4:33:ef:
07:ac:af:48:4a:64:dc:8f:e8:69:e9:31:51:15:7b:
f8:ec:ef:7f:bd:3f:62:1d:a3:fe:50:32:6a:97:80:
8d:b5:ed:61:f9:d1:77:4f:c4:b3:fc:19:b8:93:32:
f0:eb:7f:78:d1:cf:44:5e:09:3f:67:9a:35:bb:13:
d0:74:83:54:fe:38:5c:50:33:d7:56:85:45:ec:16:
3f:21:13:c9:54:8a:c5:9b:be:f3:3a:94:97:2e:d3:
45:25:79:59:a4:cb:ea:36:a3:37:19:71:99:26:11:
82:b6:e4:30:fe:a5:8e:fc:a1:fb:4b:e8:64:5d:63:
a6:09:1a:70:43:2a:bb:7a:50:bd:08:28:e5:2d:00:
a4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1B:07:9E:B8:DE:B7:63:4F:D9:52:86:A4:0A:BE:AA:9F:D9:E0:4B
X509v3 Authority Key Identifier:
keyid:9A:D8:AE:F8:36:2D:D0:3E:AC:C7:B7:DE:E2:0F:5D:3F:6D:FF:5D:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AD8AEF8362DD03EACC7B7DEE20F5D3F6DFF5D49.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:f100::/48
Signature Algorithm: sha256WithRSAEncryption
5c:17:87:6f:c6:18:5f:ac:0e:53:8a:03:f2:5c:cb:e9:76:73:
26:79:da:90:16:8a:98:20:32:e6:fa:b7:cf:48:a7:b5:44:9a:
5b:aa:ad:f0:c4:c0:2a:a7:ed:1e:bc:83:ab:ed:3e:af:0e:2d:
02:0c:9a:93:c5:20:15:88:5d:c8:05:be:08:da:ff:1a:b3:10:
e5:47:d3:b2:c7:cb:78:2f:3d:e2:92:cd:db:3d:3e:5a:ba:3d:
12:27:2e:b0:42:c7:f6:6a:94:25:99:f5:51:9c:7a:fc:53:a1:
9e:70:8f:56:fb:b2:e0:42:15:c1:19:a4:fc:9f:1d:59:f7:1c:
c1:56:81:20:30:70:8d:3a:e5:56:ea:e1:81:dc:92:1c:24:4b:
a4:22:38:c1:5b:70:8d:c9:f0:a4:0c:7c:f2:8b:9f:e0:63:a1:
cd:ad:9b:14:7e:04:c9:52:e6:16:15:24:d1:b2:05:84:f3:53:
ca:37:39:a0:34:e9:cc:a3:af:58:93:d7:be:09:71:10:f9:6f:
45:03:f4:76:ee:de:9a:d9:65:82:b1:1d:da:e0:3b:b5:ac:03:
c8:ed:fb:c1:b8:65:2f:e2:b0:d2:a7:dd:1b:83:0e:6d:2c:ab:
7f:76:80:4a:69:3d:d5:c0:a4:9a:ef:8b:1c:41:af:11:0c:d2:
0a:fd:48:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:50:15 2025 by rpki-client