Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa
File: 323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa (raw, json)
Hash identifier: 7urOwCjdO2YZyXJHO3LKXR7humjd9mLf0bELAOmhNtc=
Subject key identifier: 3C:9F:7C:BE:0F:1C:0F:03:8D:1B:AB:DC:20:A7:3C:6E:FF:DC:56:6A
Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Certificate serial: 33FF10B5505E00BE36BF199954613D1A1E858E95
Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa
Signing time: Fri 20 Dec 2024 07:02:59 +0000
ROA not before: Fri 20 Dec 2024 06:57:59 +0000
ROA not after: Fri 19 Dec 2025 07:02:59 +0000
asID: 24530
IP address blocks: 2401:d940:e0ff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:ff:10:b5:50:5e:00:be:36:bf:19:99:54:61:3d:1a:1e:85:8e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Validity
Not Before: Dec 20 06:57:59 2024 GMT
Not After : Dec 19 07:02:59 2025 GMT
Subject: CN=3C9F7CBE0F1C0F038D1BABDC20A73C6EFFDC566A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:e4:a2:9a:42:19:f8:f0:03:a8:68:f0:2b:
b6:ac:89:c3:0b:46:28:54:10:b4:8b:33:a1:db:17:
82:ad:6f:95:83:a8:8d:1a:43:98:79:20:35:65:14:
84:de:42:15:7e:b2:ac:5d:bb:db:11:a2:6f:d5:cb:
32:75:13:f6:7b:00:18:00:7c:9d:c4:bb:4d:3b:ee:
36:ce:5f:5e:66:3c:f5:9b:01:95:ad:e9:a2:c2:63:
cd:f6:c8:5e:0c:38:5a:19:ed:53:2f:04:31:a6:2c:
87:e7:75:ab:6f:f1:5b:27:43:b3:d5:a4:11:a5:c5:
6c:a5:31:40:98:98:93:72:52:66:84:33:dd:b0:96:
1e:16:e7:80:1a:f8:b3:2b:bf:0c:24:34:b7:5f:7f:
9b:21:a4:ef:72:a4:27:26:e7:7f:d9:90:8f:ab:56:
cc:e6:2f:ca:65:3d:2b:6d:f6:7a:5d:a4:e5:d6:47:
16:b5:8b:0f:62:4c:25:8f:0f:8d:5a:34:0b:59:51:
a8:1d:58:22:87:c9:1c:7a:a3:45:e9:46:23:ad:27:
eb:89:a7:a4:8f:9f:ee:d8:99:7c:38:0f:7d:04:aa:
20:39:e8:f7:45:85:12:63:4e:56:34:27:7e:94:26:
a6:38:03:10:0f:3a:5c:c1:c2:82:5a:75:0a:bb:e5:
ad:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9F:7C:BE:0F:1C:0F:03:8D:1B:AB:DC:20:A7:3C:6E:FF:DC:56:6A
X509v3 Authority Key Identifier:
keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:d940:e0ff::/48
Signature Algorithm: sha256WithRSAEncryption
0e:38:50:f3:8c:10:c3:91:a4:06:6a:8a:43:65:fd:7c:74:20:
59:4b:6c:5b:d8:04:e1:f7:fb:7e:80:c8:1b:c4:e8:01:d6:f8:
b6:51:62:4f:69:79:e4:21:cf:57:83:de:e2:a1:dd:58:38:8d:
2f:6a:84:6e:69:e0:d4:23:11:4b:2e:3b:a9:3e:ae:95:83:d2:
4d:e7:a1:d5:53:69:39:c3:74:32:7f:59:d4:05:e3:a7:1e:dd:
59:ac:60:88:84:84:59:a9:d6:ac:3b:88:c4:cc:00:23:82:a4:
f4:6f:ff:5b:e4:74:7f:6e:96:60:2c:89:e3:91:f7:04:87:6c:
0d:d1:db:d4:c2:0b:bc:3a:2d:c2:e7:fa:31:45:c9:8a:ab:4c:
9d:d7:e8:07:7e:f2:ca:51:ef:59:cb:11:27:23:cd:99:c7:43:
0a:c4:05:d2:cb:46:62:d0:96:d6:57:d3:02:c4:1a:78:32:ff:
39:a6:a7:57:21:04:91:e5:6b:f1:90:28:8d:cb:23:f7:e5:ac:
67:f6:29:da:bb:3f:23:8d:db:7a:eb:dd:f0:50:99:08:23:19:
01:9d:8b:dc:c1:60:b8:55:dd:be:b1:55:78:9a:82:9b:6a:30:
90:6e:88:87:5d:b4:ca:96:42:2a:9e:6d:88:24:b1:3c:e8:9c:
23:b9:29:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:16:32 2025 by rpki-client