Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa
File: 323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa (raw, json)
Hash identifier: Xb1Bkjs5hzP5DiGreqFq1n1/N1wG2GKWoe1mJNbSKvU=
Subject key identifier: 71:79:34:33:D6:93:EB:64:9E:C5:EB:D9:BF:8C:60:81:1C:99:01:10
Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066
Certificate serial: 5DB33E170702C3F0E43DBFF16DFC1DAD69B65465
Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa
Signing time: Fri 31 Jan 2025 12:00:02 +0000
ROA not before: Fri 31 Jan 2025 11:55:02 +0000
ROA not after: Fri 30 Jan 2026 12:00:02 +0000
asID: 38154
IP address blocks: 2001:f20:f000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:b3:3e:17:07:02:c3:f0:e4:3d:bf:f1:6d:fc:1d:ad:69:b6:54:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066
Validity
Not Before: Jan 31 11:55:02 2025 GMT
Not After : Jan 30 12:00:02 2026 GMT
Subject: CN=71793433D693EB649EC5EBD9BF8C60811C990110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b2:0d:33:f1:34:cc:09:f0:9f:03:ae:13:ef:
59:f8:9e:62:87:e8:1b:8f:b2:b4:ca:41:b6:5e:5f:
e8:c5:32:39:6e:02:82:dd:41:0c:a4:00:c2:13:1c:
e1:1d:d1:41:dc:9b:ed:7d:e1:71:38:40:f8:03:b5:
37:ec:a6:41:a2:79:c6:56:0a:16:23:1b:97:b9:99:
05:e3:a4:ba:3b:7d:4b:4a:82:6a:1f:99:e0:57:3f:
c5:87:69:29:d6:03:49:ab:91:11:78:8d:ee:a8:2c:
19:86:e5:ca:3c:7a:7f:9c:19:7e:c0:c6:6a:80:ed:
40:6f:a2:5e:cc:bc:33:55:6b:1c:0c:5f:ea:a2:b8:
42:bb:b3:a5:93:c8:73:66:78:f8:52:fb:b7:d3:b9:
b5:c0:5f:94:76:c3:f2:1c:42:34:a8:2d:79:84:fc:
ef:8f:3f:55:25:70:0f:28:89:bd:d2:6f:a4:27:b9:
d0:be:82:58:f7:bb:49:7a:82:d2:7b:be:9b:4a:26:
73:97:fc:1d:ae:62:29:11:95:9f:b3:82:a1:80:06:
94:67:33:d5:6f:28:7e:e3:2c:88:88:e5:52:0e:f3:
a1:a6:51:44:74:29:72:4b:ae:83:79:18:b2:18:1c:
15:35:48:60:c5:d2:1f:d1:42:d1:c5:75:d7:d1:6f:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:79:34:33:D6:93:EB:64:9E:C5:EB:D9:BF:8C:60:81:1C:99:01:10
X509v3 Authority Key Identifier:
keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:f20:f000::/36
Signature Algorithm: sha256WithRSAEncryption
79:4f:e5:22:90:e3:32:44:07:b9:9f:8a:52:04:9a:88:b1:5d:
ed:79:a0:f6:85:11:56:5c:86:b1:f4:c8:1c:ac:fa:12:77:5d:
1d:76:73:4d:47:47:c5:42:54:c8:58:77:cd:81:9c:85:7c:40:
0a:d5:b0:1d:de:d4:c4:57:f0:18:28:90:cb:29:84:83:83:4d:
66:80:ad:4a:d8:ac:f2:fd:1c:57:d0:a8:fb:b9:58:f6:28:a7:
de:e8:32:c0:0d:99:3f:30:c4:1e:81:e0:82:29:bc:30:07:23:
e4:7c:b4:6a:71:06:7b:18:ae:7c:9d:d2:6b:02:6b:e6:87:31:
e8:f0:d6:e6:7c:01:0a:45:ac:a5:53:e5:e3:90:f1:bf:24:c4:
c6:7d:78:79:20:ee:06:98:50:9e:ed:87:97:99:6b:93:ae:3a:
5f:dd:e7:6d:25:3b:a0:04:d4:34:91:0d:d2:54:1d:e6:41:1f:
e8:ba:6f:3f:d4:54:ea:ac:69:6c:18:e6:39:92:29:04:e0:59:
d9:c2:d1:30:b7:38:0a:88:38:f8:41:35:82:3d:3d:78:ee:2c:
37:18:5f:ee:df:20:53:e1:12:35:2e:2d:d9:fb:4f:2e:d5:57:
8e:06:76:77:b3:c9:fc:73:ca:bd:02:8f:c7:a1:f7:92:6d:04:
7b:33:3d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:01:28 2025 by rpki-client