Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa
File: 323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa (raw, json)
Hash identifier: +wADgBbGHlnAaJF9ne9rrntz6G0qBIbnlfj6NpTrwJg=
Subject key identifier: 67:32:3F:29:7A:A5:D5:5D:0A:85:15:BC:A7:89:D9:E7:56:E4:A0:0F
Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189
Certificate serial: 48C5DB9BD5490FCF78C3A7E19DF5DD04EE1868EE
Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa
Signing time: Mon 01 Jul 2024 01:04:16 +0000
ROA not before: Mon 01 Jul 2024 00:59:16 +0000
ROA not after: Mon 30 Jun 2025 01:04:16 +0000
asID: 136105
IP address blocks: 2001:df0:fb00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:c5:db:9b:d5:49:0f:cf:78:c3:a7:e1:9d:f5:dd:04:ee:18:68:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189
Validity
Not Before: Jul 1 00:59:16 2024 GMT
Not After : Jun 30 01:04:16 2025 GMT
Subject: CN=67323F297AA5D55D0A8515BCA789D9E756E4A00F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:24:5e:0f:27:95:ba:32:9c:93:a6:4d:82:e9:
94:39:b7:26:22:a9:b1:4f:e7:e2:3e:b4:74:41:12:
57:72:f6:67:52:d0:f5:ea:5f:0a:2c:8b:d8:b2:28:
7e:39:a4:c0:c2:fd:fe:dd:25:ab:a3:0b:a3:23:5b:
3a:3e:77:50:b8:4b:54:e6:df:60:80:f9:20:c0:b1:
8c:75:28:7b:97:11:1b:b0:fd:a8:3a:f4:8c:dc:fb:
6e:b4:1d:e3:c5:8d:36:20:ef:44:30:ab:6b:f0:1a:
8f:77:fa:f5:01:84:9c:ca:7c:82:27:e4:d1:a0:44:
54:23:d3:ef:0f:9c:9b:1e:70:48:94:15:39:ce:99:
1c:92:33:5c:39:b2:bd:d7:d4:2d:de:7c:b3:9c:61:
ff:ad:5a:66:ab:f4:48:69:78:49:11:b6:03:83:5f:
e1:4b:79:6f:7e:3e:ac:7c:50:3d:2f:44:f1:dd:c2:
ce:d5:ce:5e:74:b6:df:69:64:59:9d:78:23:52:4a:
1f:1e:05:7b:63:44:e2:5b:2e:39:2f:11:6f:8d:f7:
7a:1d:dd:ee:46:bd:d4:8a:56:29:64:28:67:ce:66:
d6:2c:7b:97:02:35:b9:f5:c8:22:c8:ee:2a:d7:46:
d6:0e:3d:62:c0:c1:03:49:50:25:a7:4b:1c:11:bc:
4f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:32:3F:29:7A:A5:D5:5D:0A:85:15:BC:A7:89:D9:E7:56:E4:A0:0F
X509v3 Authority Key Identifier:
keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/323030313a6466303a666230303a3a2f34382d3438203d3e20313336313035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:fb00::/48
Signature Algorithm: sha256WithRSAEncryption
19:0f:80:10:83:fb:2e:59:b0:43:52:a7:5b:93:7e:1a:03:1b:
a0:4c:dc:24:7f:06:71:e6:21:95:b1:41:6f:6c:47:bb:42:00:
55:d4:4c:8c:31:70:e5:32:d0:8a:77:f2:cc:a6:fb:24:ee:3a:
bd:60:45:9b:07:e4:08:0b:a9:58:73:88:39:e5:d8:bf:db:de:
9b:59:49:63:54:75:b0:75:1c:dd:c0:ab:38:37:0a:70:08:53:
c6:91:9e:da:b4:f0:5a:a6:3a:8f:e1:41:ed:3f:30:f3:96:ab:
b6:6b:d1:a1:7c:c2:8f:63:ae:3b:88:2b:73:2a:5c:48:9f:69:
b3:53:8f:c6:5a:92:df:47:96:1e:4a:1f:b6:17:45:73:1d:1c:
29:3e:6b:89:e5:74:6e:d7:b1:41:02:53:95:dd:52:c1:2d:e9:
9a:f8:da:d4:b4:8f:6b:df:9e:bb:af:56:73:ea:c2:37:f5:84:
78:0e:28:66:86:fe:62:4d:89:fb:e9:a5:7f:76:a1:f5:80:33:
f6:68:19:07:12:f9:79:e1:5a:e7:88:81:0e:c3:c2:8b:f8:0b:
e2:e4:d3:20:f2:81:d1:9c:da:87:c2:cf:14:bf:58:cd:cd:a7:
a7:c8:a3:57:fb:13:15:fc:80:b3:4e:5c:57:3c:c8:f2:ef:e9:
fc:01:a2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:21 2025 by rpki-client