Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa
File: 323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa (raw, json)
Hash identifier: Ketrz/J8f8AAk0/U1Pdx/6YBxlFbuGP5tM7vrclBTuI=
Subject key identifier: D1:AF:F9:76:4B:AF:F1:C1:42:27:12:DD:12:96:63:84:05:C3:80:6D
Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1
Certificate serial: 30764609B90A7CE97502EC202BA94C066D5C10D3
Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa
Signing time: Mon 27 Jan 2025 07:00:00 +0000
ROA not before: Mon 27 Jan 2025 06:55:00 +0000
ROA not after: Mon 26 Jan 2026 07:00:00 +0000
asID: 38320
IP address blocks: 2404:3900:a92::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:76:46:09:b9:0a:7c:e9:75:02:ec:20:2b:a9:4c:06:6d:5c:10:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1
Validity
Not Before: Jan 27 06:55:00 2025 GMT
Not After : Jan 26 07:00:00 2026 GMT
Subject: CN=D1AFF9764BAFF1C1422712DD1296638405C3806D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:a2:f3:60:fb:6c:7d:95:49:51:e3:a0:ab:
e1:92:fd:a4:fd:62:48:3a:08:5e:00:1c:b1:94:c4:
70:8d:ce:cd:e6:07:6a:ce:66:39:05:58:46:14:68:
33:ec:c1:a2:04:dc:ad:b9:35:12:56:ac:2a:53:c7:
ed:fd:0b:ca:90:29:b2:ba:fc:ec:73:19:2a:c1:b7:
fa:2f:77:32:c3:58:2c:5f:6d:cd:2b:fa:76:2f:73:
73:c5:5d:64:a4:2f:fa:49:bd:1d:40:fc:41:47:9d:
33:4a:42:e4:83:cc:9a:0b:ba:cc:16:90:d2:07:de:
64:4b:e0:3d:cb:d6:40:75:fd:63:75:e5:58:7a:fa:
de:9e:bc:64:21:a3:60:8a:26:82:7f:79:4a:29:ac:
29:fe:4e:07:65:18:33:15:22:8d:b9:ac:f0:0f:49:
79:d2:8a:02:f4:21:c9:ca:39:b1:0a:b7:62:0f:7d:
28:89:f9:61:5c:ec:02:04:9c:14:98:1a:46:f2:e2:
55:66:5f:85:c0:e5:a7:e7:e4:6e:03:6f:11:ef:85:
b3:eb:b7:21:3e:bc:ef:c1:9f:1d:da:5e:14:e8:79:
68:da:9b:db:e1:a2:10:35:1b:0c:be:10:1e:c5:1c:
e0:7b:5e:78:0c:7b:c6:db:7a:5d:26:8f:2f:32:65:
d4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AF:F9:76:4B:AF:F1:C1:42:27:12:DD:12:96:63:84:05:C3:80:6D
X509v3 Authority Key Identifier:
keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:3900:a92::/48
Signature Algorithm: sha256WithRSAEncryption
b7:c9:bf:4e:50:25:28:c2:02:8d:e1:02:9d:87:f0:43:49:7c:
4b:10:ec:b9:c1:8a:3f:be:76:eb:72:dc:92:4a:24:03:89:41:
dc:eb:dc:f2:d5:08:b4:99:84:36:f9:0b:30:b9:f3:1f:a8:20:
d0:75:50:e6:c4:4d:1a:b8:ef:68:cd:ea:37:0e:cc:e5:76:3c:
a5:3b:3e:6d:10:3b:95:fb:09:c4:05:a8:c5:f4:69:f8:d7:e5:
6b:cf:2c:2f:99:fa:92:5d:fb:33:e1:9c:39:d5:2d:0f:67:53:
31:b4:b7:e5:43:69:66:fb:e9:10:49:a4:35:ab:f7:9e:4e:10:
bf:ed:16:5e:74:ae:a9:ef:45:01:07:7c:45:4c:20:ed:9b:43:
27:f3:80:c6:02:17:1f:8f:6d:26:d7:62:5a:cf:d7:0f:72:f7:
dd:55:50:a8:6e:76:dd:6c:09:65:3b:50:f8:8a:04:be:cc:b0:
9c:b8:69:3b:4e:c6:ec:80:20:8b:00:fe:cd:4d:e5:6f:df:49:
9f:03:ae:06:92:c5:0e:2a:35:b2:7a:c4:06:2f:de:2f:cd:31:
76:fe:f2:0a:eb:d8:10:73:e1:73:a9:1d:99:98:e3:06:d7:1c:
05:35:65:c6:6d:ad:3b:5b:62:42:74:6e:e4:14:9e:e3:ba:f2:
e4:bb:cc:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:17 2025 by rpki-client