Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa
File: 323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa (raw, json)
Hash identifier: UhZmsK1JV2dvdlJPQwAkZ3FUoREjtD3PWxnZnEWW6L0=
Subject key identifier: CA:7F:27:0A:07:9F:7B:6A:D6:93:F0:B0:3C:49:9F:7C:AC:09:2F:AF
Certificate issuer: /CN=C43D9C91D389ADDD2039882757F731CAFAAC740F
Certificate serial: 17360FB15ECF525709EF1411AB53DACCEB98A694
Authority key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa
Signing time: Fri 29 Nov 2024 21:00:00 +0000
ROA not before: Fri 29 Nov 2024 20:55:00 +0000
ROA not after: Fri 28 Nov 2025 21:00:00 +0000
asID: 139377
IP address blocks: 2001:df1:5480::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:36:0f:b1:5e:cf:52:57:09:ef:14:11:ab:53:da:cc:eb:98:a6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F
Validity
Not Before: Nov 29 20:55:00 2024 GMT
Not After : Nov 28 21:00:00 2025 GMT
Subject: CN=CA7F270A079F7B6AD693F0B03C499F7CAC092FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8c:0a:93:78:96:c8:d9:92:33:7a:01:43:5e:
f4:14:67:b8:66:c7:ec:63:9d:f4:bc:6c:a6:a6:69:
5f:a8:5a:71:5e:27:a3:e4:6c:dc:08:67:da:1f:5a:
8e:ba:0c:db:b6:ae:23:2e:99:45:c5:bc:1f:72:81:
2a:c3:e7:a6:b6:35:5c:d1:7a:76:bb:51:16:da:c5:
cf:96:88:83:d9:22:0c:94:ed:3b:88:13:4a:6b:01:
15:0c:c4:56:d4:77:4a:cd:72:1c:c0:07:9b:5f:a8:
58:30:76:26:c0:cb:d2:81:09:47:a9:d8:6a:99:99:
ef:d3:df:97:a5:ac:98:14:7f:ab:7e:ee:b5:f4:ab:
d2:15:d9:69:99:e8:cc:f0:0a:c5:78:35:63:d5:4c:
92:34:cb:9c:11:ff:8d:df:80:04:08:13:3f:c7:10:
43:f3:3a:b5:8a:7f:72:2c:53:fb:d4:09:88:32:7b:
7b:1f:b0:c9:d0:f3:dd:59:fb:18:78:89:da:4f:7d:
2c:a8:1d:21:af:02:1d:53:a3:d9:8c:95:42:da:96:
dd:d8:83:96:ad:cb:37:80:32:62:b6:23:b5:0b:5d:
d1:c0:fc:45:9a:d1:72:06:33:03:cc:c2:9d:9a:ed:
88:f9:c4:73:bc:32:4a:37:a8:2b:48:56:2a:1d:b0:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7F:27:0A:07:9F:7B:6A:D6:93:F0:B0:3C:49:9F:7C:AC:09:2F:AF
X509v3 Authority Key Identifier:
keyid:C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:5480::/48
Signature Algorithm: sha256WithRSAEncryption
c4:5a:ff:98:65:b8:fb:43:75:5e:21:ec:3b:8c:13:b4:27:14:
ba:90:bb:34:df:a6:72:39:e2:da:df:b7:6e:39:0a:10:2f:0a:
81:2d:16:fc:61:77:ab:bd:13:92:b2:89:74:95:3d:d9:0a:e3:
c5:71:d6:c8:de:48:66:d4:60:37:69:01:47:a8:12:bf:54:3e:
b4:df:83:43:e2:c0:f3:f2:2c:fc:5f:bc:b4:e0:db:f8:2f:a8:
d2:1b:6a:c6:0e:96:19:43:c5:b7:48:e9:1c:ca:70:8d:56:63:
28:ba:8f:7a:6a:f1:c8:4a:28:9d:e1:b7:1c:44:1d:00:0e:df:
0c:79:78:04:b2:65:57:6d:eb:fb:a5:6d:19:be:2e:20:1d:a6:
a6:66:85:e0:92:fd:7a:a5:ff:a8:51:a4:04:7d:e3:b3:10:1b:
f8:b0:7a:40:5a:40:0d:dc:b0:db:5a:9a:58:8f:ba:6d:e5:e7:
a5:81:89:e0:5e:ea:4d:75:de:89:66:a9:4d:22:c0:65:48:6b:
ea:ba:30:31:b8:6c:b9:fd:d1:7c:93:8a:40:6c:e9:81:a4:48:
e8:27:09:ef:11:5d:0f:eb:97:57:87:1b:94:af:09:26:9e:54:
56:cf:d8:82:b3:56:ac:ce:96:dd:b3:6d:fa:16:16:91:7f:d1:
77:cf:61:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:14 2025 by rpki-client