Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa
File: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (raw, json)
Hash identifier: yvEJWkP0xFq1u9XfkAxvcy195JE5QOchL8JpvPiL8B8=
Subject key identifier: 36:56:EA:11:1C:B8:62:26:DD:38:BA:47:64:05:09:59:65:94:8C:EC
Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Certificate serial: 0C138CC453A5DAACACA917AB5DDA617C53CE2FDD
Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa
Signing time: Fri 09 Aug 2024 07:02:22 +0000
ROA not before: Fri 09 Aug 2024 06:57:22 +0000
ROA not after: Fri 08 Aug 2025 07:02:22 +0000
asID: 46050
IP address blocks: 2001:df5:d200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:13:8c:c4:53:a5:da:ac:ac:a9:17:ab:5d:da:61:7c:53:ce:2f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Validity
Not Before: Aug 9 06:57:22 2024 GMT
Not After : Aug 8 07:02:22 2025 GMT
Subject: CN=3656EA111CB86226DD38BA476405095965948CEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:2b:80:7f:e7:f8:f0:5d:d2:a3:ea:fd:97:
fe:6b:aa:1c:7e:07:28:29:c3:c7:44:89:c9:ae:b7:
f3:c0:b3:9a:b1:1c:92:e1:b5:77:b5:85:3e:bd:a4:
22:b3:11:01:4a:5b:24:fe:2c:e1:a3:57:e7:0d:4a:
af:57:62:bb:fa:3e:f3:5e:e9:df:58:70:10:12:7c:
91:06:39:cf:ff:0e:9e:d1:e3:50:2d:6f:ac:ed:c5:
39:e1:66:ab:87:ec:df:6c:03:bc:5d:13:ca:78:be:
26:f9:45:8a:ef:63:c3:9a:8d:21:17:84:8b:e3:c3:
e7:0d:dc:9c:17:e6:34:17:84:6a:e6:84:b0:71:0d:
d6:d1:bb:d9:a9:c1:a5:1e:7c:d4:26:d1:b5:5b:9b:
8b:c2:7e:59:d0:b0:74:bb:26:7b:ed:93:d3:71:bb:
ec:24:ed:4c:cf:28:aa:7c:b6:2b:da:ca:a2:83:41:
93:f4:28:8d:65:15:6e:19:e3:b1:28:a6:de:ab:a4:
52:f3:ca:90:32:e1:b8:c0:cd:12:8d:09:c6:27:b6:
d3:c1:98:f0:7b:f7:e2:31:4d:ba:42:1e:98:46:34:
e3:29:1c:e5:d3:a5:59:3e:31:90:f5:c0:15:ed:63:
20:f7:4c:6b:7f:60:ec:38:02:d1:13:5d:54:38:58:
22:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:56:EA:11:1C:B8:62:26:DD:38:BA:47:64:05:09:59:65:94:8C:EC
X509v3 Authority Key Identifier:
keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:d200::/48
Signature Algorithm: sha256WithRSAEncryption
5b:34:d0:ef:56:81:ce:52:cc:b0:81:e2:e1:f8:cd:8b:9f:91:
25:73:c1:1e:b7:b7:63:b5:09:f9:cf:43:44:3e:44:bb:c9:57:
c5:87:d1:94:4a:94:5f:cb:61:6e:c7:dd:39:04:6e:a7:34:a0:
ef:52:16:68:9b:b4:75:e9:a0:8a:84:fb:87:b4:fc:89:bc:c2:
b1:18:48:dd:7a:6b:6e:f5:25:02:d5:36:43:f8:32:5b:33:89:
76:32:f2:03:d5:db:bb:86:5e:0a:ed:1c:68:e2:e1:08:ad:5a:
a0:ed:f2:a9:1b:7c:4f:7d:9e:3b:49:3b:52:9b:46:b1:6d:71:
17:9c:92:62:84:52:01:d7:84:67:4f:fe:31:59:dc:81:2d:ab:
5c:ad:e1:af:60:79:a7:5a:e5:73:8d:b9:e4:a4:84:c8:0e:86:
33:ea:8e:3e:0d:bd:1a:22:68:d5:cd:c6:7a:7b:73:79:b2:ed:
96:e5:ca:5d:4b:07:76:f8:69:7a:6b:f4:6f:13:2d:cc:e6:ea:
32:12:ff:c2:41:91:1d:8b:68:46:c9:a9:a9:b7:7e:89:5a:03:
b6:f8:90:22:27:8d:13:39:f7:ab:15:f4:c1:8b:d3:4c:d6:b8:
aa:31:60:e0:13:5e:67:9c:e9:3b:6d:f2:7e:f4:9d:83:6a:66:
96:73:34:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:26:02 2025 by rpki-client