Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa
File: 323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa (raw, json)
Hash identifier: gtOr9NwzW8Aa7fZGd03VkoCWA9Dhf88Ryc02CpBSPGY=
Subject key identifier: 7D:ED:BA:06:05:3B:72:14:C8:8D:02:00:18:52:85:63:7F:28:B1:BF
Certificate issuer: /CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919
Certificate serial: 308ADD013EA6E0297C5D794C28F79E87391BDA8D
Authority key identifier: B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa
Signing time: Wed 19 Feb 2025 00:00:01 +0000
ROA not before: Tue 18 Feb 2025 23:55:01 +0000
ROA not after: Wed 18 Feb 2026 00:00:01 +0000
asID: 150245
IP address blocks: 2001:df1:e040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:8a:dd:01:3e:a6:e0:29:7c:5d:79:4c:28:f7:9e:87:39:1b:da:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919
Validity
Not Before: Feb 18 23:55:01 2025 GMT
Not After : Feb 18 00:00:01 2026 GMT
Subject: CN=7DEDBA06053B7214C88D0200185285637F28B1BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:8c:57:ae:30:0e:52:70:4f:a3:a0:bf:96:
02:17:76:78:5b:a1:cb:d8:32:9d:5f:32:ab:98:48:
11:be:49:f2:47:af:23:2d:53:80:cb:3b:ce:19:6f:
e2:97:f8:4d:3c:16:7e:f7:bc:ef:16:f5:97:fb:ca:
56:76:6d:6c:32:90:35:0a:95:3f:38:01:c3:8d:05:
ab:ce:90:ef:b3:06:cc:ea:ef:b3:36:44:d4:07:b6:
33:68:d6:f0:c9:21:9f:3b:14:19:72:47:42:1d:dc:
76:bf:28:47:12:ce:a3:ff:83:76:7e:87:2e:0a:6c:
70:bf:b4:8c:04:1a:33:99:a3:d3:54:c0:ee:d5:e5:
71:ce:de:13:25:26:71:78:64:18:a8:39:d1:a0:4f:
69:98:3e:25:c9:8e:83:3c:7c:39:86:ac:8b:41:38:
98:be:49:48:fb:89:6f:c4:e0:89:ce:22:b0:43:f8:
48:c8:f9:85:5f:86:ba:4f:11:f9:7b:f3:51:5b:be:
6d:6b:87:e4:cd:54:61:3f:f1:98:14:8a:cc:5c:6b:
82:67:17:a5:bb:0f:71:64:9d:a8:82:be:cb:8c:82:
91:a9:67:26:af:ee:36:f7:d8:ba:f9:b0:57:ec:22:
15:20:01:c7:7b:2b:29:7b:c2:eb:2f:ed:a2:c1:63:
d9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:ED:BA:06:05:3B:72:14:C8:8D:02:00:18:52:85:63:7F:28:B1:BF
X509v3 Authority Key Identifier:
keyid:B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/323030313a6466313a653034303a3a2f34382d3438203d3e20313530323435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:e040::/48
Signature Algorithm: sha256WithRSAEncryption
8d:d4:1b:55:70:75:01:f4:26:0f:f9:1c:d9:cf:1c:14:80:5c:
69:19:dc:cc:38:01:5b:67:53:40:ad:31:be:97:34:f2:48:7b:
bf:b4:e5:45:4b:f2:0a:c0:7f:e0:16:da:09:9f:f8:21:af:d9:
59:20:4f:e2:4f:e9:be:19:14:8f:10:2c:7b:dd:eb:65:04:b2:
ce:b5:13:e9:1b:a6:c9:d8:d0:da:ee:52:19:98:8f:3f:45:83:
9e:e2:52:1e:3e:d3:95:b3:33:d8:58:bb:02:d1:0d:39:bc:0e:
cb:6b:85:f9:89:f7:52:8c:4d:2d:95:c3:a6:b5:67:c2:2c:e3:
37:e4:1d:00:6c:c3:21:e4:96:51:15:73:26:ba:fd:cf:3d:6a:
d3:05:df:29:82:22:dd:d5:80:e4:40:87:32:c0:41:8e:e3:9c:
b7:b6:93:30:5f:3d:69:51:61:c7:b2:a9:90:6f:bc:00:8c:c9:
c1:3b:77:a3:64:7f:1c:4a:76:9f:72:43:f8:49:85:01:89:3c:
67:58:45:cd:15:ad:ae:18:44:d4:41:72:a3:7b:06:fc:5d:e7:
7a:ea:b9:3f:03:98:44:e6:68:66:dd:30:57:9a:20:58:38:a9:
fa:0a:f7:5c:1f:c7:a1:71:0a:71:0a:f0:50:35:cf:b3:7a:94:
bb:01:85:3a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUMIrdAT6m4Cl8XXlMKPeehzkb2o0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZG
RDdDMjkxOTAeFw0yNTAyMTgyMzU1MDFaFw0yNjAyMTgwMDAwMDFaMDMxMTAvBgNV
BAMTKDdERURCQTA2MDUzQjcyMTRDODhEMDIwMDE4NTI4NTYzN0YyOEIxQkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKHIxXrjAOUnBPo6C/lgIXdnhb
ocvYMp1fMquYSBG+SfJHryMtU4DLO84Zb+KX+E08Fn73vO8W9Zf7ylZ2bWwykDUK
lT84AcONBavOkO+zBszq77M2RNQHtjNo1vDJIZ87FBlyR0Id3Ha/KEcSzqP/g3Z+
hy4KbHC/tIwEGjOZo9NUwO7V5XHO3hMlJnF4ZBioOdGgT2mYPiXJjoM8fDmGrItB
OJi+SUj7iW/E4InOIrBD+EjI+YVfhrpPEfl781Fbvm1rh+TNVGE/8ZgUisxca4Jn
F6W7D3FknaiCvsuMgpGpZyav7jb32Lr5sFfsIhUgAcd7Kyl7wusv7aLBY9kZAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUfe26BgU7chTIjQIAGFKFY38osb8wHwYDVR0j
BBgwFoAUsrL0K/GXitCUGGSAp9oAhv18KRkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
ODQ2ZjQyMi1jMzAyLTQ0NjItYjU4NC03MDBlOTM0NmNhMDkvMC9CMkIyRjQyQkYx
OTc4QUQwOTQxODY0ODBBN0RBMDA4NkZEN0MyOTE5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZGRDdD
MjkxOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NDZmNDIyLWMzMDItNDQ2Mi1i
NTg0LTcwMGU5MzQ2Y2EwOS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY1MzAzNDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNDM1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
8eBAMA0GCSqGSIb3DQEBCwUAA4IBAQCN1BtVcHUB9CYP+RzZzxwUgFxpGdzMOAFb
Z1NArTG+lzTySHu/tOVFS/IKwH/gFtoJn/ghr9lZIE/iT+m+GRSPECx73etlBLLO
tRPpG6bJ2NDa7lIZmI8/RYOe4lIePtOVszPYWLsC0Q05vA7La4X5ifdSjE0tlcOm
tWfCLOM35B0AbMMh5JZRFXMmuv3PPWrTBd8pgiLd1YDkQIcywEGO45y3tpMwXz1p
UWHHsqmQb7wAjMnBO3ejZH8cSnafckP4SYUBiTxnWEXNFa2uGETUQXKjewb8Xed6
6rk/A5hE5mhm3TBXmiBYOKn6CvdcH8ehcQpxCvBQNc+zepS7AYU6
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:22 2025 by rpki-client