Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa
File: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (raw, json)
Hash identifier: HvvkfODWlbpCPVaGpltaWkLF8YbtBVvjE+DIED0bI6g=
Subject key identifier: C8:17:D8:FE:BE:74:41:67:1D:24:DC:2B:44:E6:1B:60:15:C2:C4:4A
Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB
Certificate serial: 7B38BBFDB71B6A97246DE9E1137FEFB2A6C025E8
Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa
Signing time: Wed 10 Jul 2024 10:00:02 +0000
ROA not before: Wed 10 Jul 2024 09:55:02 +0000
ROA not after: Wed 09 Jul 2025 10:00:02 +0000
asID: 58404
IP address blocks: 2001:df6:ac00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:38:bb:fd:b7:1b:6a:97:24:6d:e9:e1:13:7f:ef:b2:a6:c0:25:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB
Validity
Not Before: Jul 10 09:55:02 2024 GMT
Not After : Jul 9 10:00:02 2025 GMT
Subject: CN=C817D8FEBE7441671D24DC2B44E61B6015C2C44A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f6:93:96:e0:bb:cd:2d:43:52:e3:36:6d:3a:
47:a5:d1:82:75:86:4f:12:a8:a1:a7:38:09:4d:4c:
5c:be:78:4e:08:54:16:e1:2d:1d:b7:c5:27:60:30:
eb:ec:05:47:d2:6d:f8:f2:06:3d:19:42:ba:f2:9d:
59:59:ff:68:f3:d5:4e:f1:05:19:66:4a:a6:d7:0e:
20:bc:87:15:e9:ca:a5:33:37:7c:9d:9e:99:e1:95:
f0:43:99:ad:d8:69:61:dc:9d:e6:81:57:f8:d2:98:
7c:2b:6b:c3:37:b4:a7:90:cd:fc:0c:6d:e8:d2:9d:
63:0d:62:70:3c:2c:a8:8c:38:bb:52:26:fb:59:89:
f9:63:fa:cc:1e:de:fd:7e:09:ec:71:1c:06:03:b2:
35:72:c2:2a:bc:3f:40:cd:21:2e:21:bd:9e:58:d3:
a2:3f:06:12:f2:d7:a3:85:03:27:e0:5f:b3:b0:b1:
a9:56:41:6d:b3:b2:59:93:c3:da:61:9d:bf:cd:cb:
91:70:78:19:9a:b6:25:56:00:83:99:bf:cf:59:d3:
4a:bf:12:17:4d:eb:b5:74:85:9e:4a:2a:80:8c:1c:
ab:0c:ba:82:19:15:78:bf:43:26:62:69:bb:65:9d:
cd:9e:dd:67:5a:ba:fd:8e:e8:89:99:75:f3:3e:ec:
e2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:17:D8:FE:BE:74:41:67:1D:24:DC:2B:44:E6:1B:60:15:C2:C4:4A
X509v3 Authority Key Identifier:
keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df6:ac00::/48
Signature Algorithm: sha256WithRSAEncryption
5b:a3:44:91:4e:37:ee:05:b8:0a:c3:33:18:58:e8:03:61:f8:
41:d7:c0:b7:17:67:75:a8:cb:58:25:44:4f:4a:e6:e0:35:8f:
e3:ce:93:e7:d4:5a:1f:19:f5:58:5d:24:c4:1f:31:78:6d:65:
f2:52:83:12:05:bb:78:71:ba:fc:0b:8c:be:37:81:8f:cd:a5:
84:c4:87:1d:49:a0:03:93:fc:c2:c6:7c:b0:6b:69:1e:31:28:
2f:c6:7a:ca:ff:1d:1f:3f:f8:75:54:9a:28:db:b6:e3:e1:05:
da:5d:4e:d2:71:84:ff:ae:4d:40:fe:c5:a7:b9:aa:9c:81:93:
c8:a4:be:eb:4a:c4:19:b3:f8:87:37:98:1c:42:81:38:72:48:
0c:43:99:68:77:45:86:59:86:c7:87:66:76:91:98:3b:b2:c8:
60:76:f2:30:c6:01:51:e9:2b:1c:5b:b3:89:64:97:ed:fd:33:
01:e4:e3:79:4d:be:ff:05:0a:a5:96:65:bc:c6:28:3f:60:50:
67:b5:5a:78:ce:e6:ab:37:b5:75:c6:fa:55:e2:e7:04:9f:22:
38:bf:84:48:6e:d5:0d:1b:d0:57:63:c4:59:eb:5b:ed:3b:6d:
51:4f:77:16:77:72:b3:ef:b9:85:48:7a:23:77:da:1f:41:f2:
9d:1b:b5:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:25 2025 by rpki-client