Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa
File: 323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa (raw, json)
Hash identifier: H/ox6OsaCzhg0WLRWLlKQUCFCkVe5McPk/cy7mSo53w=
Subject key identifier: 7A:10:3C:F8:DA:99:46:11:4B:0D:43:FA:9F:6E:9D:87:50:DC:4E:0B
Certificate issuer: /CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26
Certificate serial: 1796F0ADA1D612AB7265429E086CEDAAF83E2C79
Authority key identifier: EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa
Signing time: Thu 09 May 2024 09:00:01 +0000
ROA not before: Thu 09 May 2024 08:55:01 +0000
ROA not after: Thu 08 May 2025 09:00:01 +0000
asID: 137342
IP address blocks: 2001:df2:3a00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:96:f0:ad:a1:d6:12:ab:72:65:42:9e:08:6c:ed:aa:f8:3e:2c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26
Validity
Not Before: May 9 08:55:01 2024 GMT
Not After : May 8 09:00:01 2025 GMT
Subject: CN=7A103CF8DA9946114B0D43FA9F6E9D8750DC4E0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b5:ce:90:83:11:db:d3:d0:76:58:28:56:c0:
67:c0:f0:2d:78:b8:ec:b3:2e:c4:a1:3a:33:29:d2:
fc:08:12:c2:0c:e9:25:16:fb:2a:3e:6d:b0:a9:3d:
9a:22:30:b0:3a:39:d8:8e:39:f4:39:f5:f1:3c:5f:
5e:30:dc:1a:ca:22:92:ba:7a:79:1c:66:48:d0:16:
05:d8:58:df:9a:8a:47:33:6e:66:4f:93:87:dd:d0:
5d:34:0e:40:1b:cd:6d:71:a2:31:57:9b:aa:a6:21:
66:32:61:ca:66:c0:66:90:c1:34:d8:f5:1d:df:8c:
19:ce:20:db:d4:94:3d:25:f5:ca:6d:41:0a:25:9e:
b8:71:15:4a:d3:64:99:a8:c0:2a:02:5e:48:69:c0:
e3:77:08:ed:9e:df:96:08:e2:86:18:f0:db:40:16:
04:1f:97:49:34:5f:33:d4:fd:f7:52:98:b3:89:7f:
81:7f:db:2b:97:01:77:5d:95:78:70:bf:2f:a2:a9:
84:39:05:2d:ac:61:fe:47:ec:fe:d3:42:44:8d:c6:
c4:88:fc:f6:f3:2a:bc:fc:d3:ba:90:9c:62:c4:38:
85:2f:27:0b:fb:da:2b:67:b6:2a:e0:55:2b:b7:4f:
92:ed:97:df:6e:cc:ef:7a:ee:40:e8:ad:d9:19:dc:
96:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:10:3C:F8:DA:99:46:11:4B:0D:43:FA:9F:6E:9D:87:50:DC:4E:0B
X509v3 Authority Key Identifier:
keyid:EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:3a00::/48
Signature Algorithm: sha256WithRSAEncryption
94:25:86:6c:d7:01:2a:4a:3b:1e:d2:53:cc:e0:d6:76:a7:cd:
fc:00:35:03:dd:ed:4d:03:3c:60:3f:16:22:cb:9b:1c:83:32:
d1:b7:cf:d5:9b:b1:5e:e0:40:7a:43:a8:fa:7b:67:05:48:b0:
88:72:9e:f2:30:a1:fe:70:b2:ea:c3:f3:cb:17:eb:b4:69:59:
74:e3:ed:b6:01:b5:b6:03:2e:df:ac:7d:24:d5:1f:02:f2:0f:
34:7c:41:57:af:63:8b:cc:cd:23:9b:da:5a:2a:bc:5e:20:50:
80:c0:89:0c:f3:ef:72:75:58:0a:9c:46:fb:9f:f3:7f:ef:34:
27:41:ae:ae:75:8d:b0:a2:0e:c4:0e:99:d9:85:b6:32:3d:ae:
84:74:74:8c:b1:1c:25:6e:06:1c:74:eb:f1:c5:d8:c3:3d:4f:
64:14:61:b8:04:e4:fb:de:ea:a9:8f:e2:d3:c2:cf:50:65:78:
e8:9b:67:64:fb:93:17:8d:e9:e4:4d:c9:8f:4a:0b:16:80:19:
9b:2a:22:4f:ee:52:47:a8:3f:eb:d0:fd:fc:13:17:d4:8d:c3:
44:e7:9e:11:00:1d:f0:9e:11:2b:11:3c:e8:ab:07:09:48:96:
46:3e:a1:94:76:d8:7b:01:f5:29:8d:85:99:3b:82:9d:1d:ce:
fa:a2:1b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:50:47 2025 by rpki-client