Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa
File: 323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa (raw, json)
Hash identifier: 0nV8oEBVXH/JPtvgS8EpIh/oB0Hfx5eWoEzYr6jyICg=
Subject key identifier: 9B:62:20:D0:0F:AE:7A:BA:01:7B:39:21:EC:3D:2F:9E:35:72:1B:F5
Certificate issuer: /CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39
Certificate serial: 1E808B6F650365022ED9064F0259FBB0D334E0
Authority key identifier: 45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa
Signing time: Mon 01 Jul 2024 01:04:14 +0000
ROA not before: Mon 01 Jul 2024 00:59:14 +0000
ROA not after: Mon 30 Jun 2025 01:04:14 +0000
asID: 138873
IP address blocks: 2001:df0:b280::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:80:8b:6f:65:03:65:02:2e:d9:06:4f:02:59:fb:b0:d3:34:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39
Validity
Not Before: Jul 1 00:59:14 2024 GMT
Not After : Jun 30 01:04:14 2025 GMT
Subject: CN=9B6220D00FAE7ABA017B3921EC3D2F9E35721BF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c5:66:f2:97:c6:e3:71:a0:9a:57:93:c1:b2:
51:ac:3f:d2:97:23:24:39:4e:60:e6:50:20:56:49:
d8:b2:2e:5c:dd:0c:23:e1:d2:87:21:b1:57:6c:d1:
a3:80:8c:26:cb:38:ac:a6:49:93:55:2b:2f:bd:00:
16:eb:c7:fe:0e:66:02:76:55:0e:eb:c6:99:90:a1:
b2:74:18:55:ca:80:b6:e8:d5:6f:96:68:70:a1:b3:
7c:48:ba:96:26:cc:9d:c7:79:03:c3:39:07:33:74:
1e:b2:2c:b9:b9:8b:dc:c0:ad:eb:3f:46:a9:56:fe:
cf:9c:e3:90:40:61:f0:ae:6d:c4:70:ba:3b:f8:d1:
5f:a9:2e:fe:9c:3a:f4:9f:62:8e:12:27:1a:7a:f6:
f6:cf:61:f4:93:da:f3:ee:bf:06:3e:07:57:96:fd:
e4:9f:7e:5d:9d:78:14:2c:67:a2:5f:91:55:b0:1f:
c0:3e:0b:e4:24:2f:8c:73:dc:43:63:54:34:4b:ec:
79:73:06:b0:fe:c6:6e:c5:19:9b:f6:81:ad:40:eb:
18:9b:b5:d4:6a:c8:bb:67:ca:b3:b1:51:77:ee:6c:
64:30:20:4c:ba:a8:f4:a2:d2:b8:98:16:33:a7:00:
15:83:95:af:70:72:84:d8:64:1c:b3:c3:75:48:a9:
24:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:62:20:D0:0F:AE:7A:BA:01:7B:39:21:EC:3D:2F:9E:35:72:1B:F5
X509v3 Authority Key Identifier:
keyid:45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:b280::/48
Signature Algorithm: sha256WithRSAEncryption
58:d1:10:7f:20:2d:40:d2:21:ac:d3:a8:92:9c:00:05:69:b4:
14:d4:ef:26:26:b6:47:72:89:69:99:24:84:37:37:96:82:a7:
38:43:da:d4:d0:22:0b:da:2c:85:6a:a1:5a:74:6e:5e:a8:6b:
2c:a2:9b:f2:90:40:a9:ae:f0:1a:ee:61:09:0e:ae:11:f6:11:
58:e7:f2:09:f5:7c:80:5c:e4:07:19:33:70:a2:cd:7f:85:69:
24:b8:36:77:73:66:75:14:aa:89:fe:76:95:3c:0b:4e:bf:de:
d4:16:b4:44:ef:d3:0e:ae:b3:83:a9:e1:a1:7a:b3:24:b8:ca:
c6:40:1c:d0:11:f6:9b:0c:c5:b4:4a:97:1f:cc:37:e2:3c:35:
75:95:52:e9:da:ec:e0:57:1a:78:48:cd:be:93:78:d4:3b:e3:
46:ad:fc:8b:eb:11:fd:84:03:cb:f9:d3:09:85:ca:52:a2:50:
93:83:6b:08:c2:8b:5f:79:be:01:88:b1:14:e9:fe:db:63:bd:
3a:0a:e0:f8:7d:cc:6e:c4:06:82:53:2e:52:86:0c:dd:7e:17:
7b:0f:15:58:3e:24:36:13:e7:a9:9e:52:98:e1:fc:8c:f7:01:
c1:1c:29:40:5f:c2:a8:99:0a:39:8a:03:ae:8f:c7:58:81:94:
c7:99:ed:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:29:38 2025 by rpki-client