Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa
File: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (raw, json)
Hash identifier: e59wQms8v5jMBeQnHJR3rPXGniQiJS1tDMckcJ4pEwQ=
Subject key identifier: 33:5B:EB:DD:30:40:44:BC:CF:77:A3:06:F3:10:3B:DD:DC:28:51:46
Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Certificate serial: 19600C165D35524B71B5D9129736E41F23D40034
Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa
Signing time: Thu 05 Dec 2024 11:00:01 +0000
ROA not before: Thu 05 Dec 2024 10:55:01 +0000
ROA not after: Thu 04 Dec 2025 11:00:01 +0000
asID: 24534
IP address blocks: 2404:9580:30::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:60:0c:16:5d:35:52:4b:71:b5:d9:12:97:36:e4:1f:23:d4:00:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Validity
Not Before: Dec 5 10:55:01 2024 GMT
Not After : Dec 4 11:00:01 2025 GMT
Subject: CN=335BEBDD304044BCCF77A306F3103BDDDC285146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:26:0b:2a:0e:eb:f9:44:d5:d9:06:4f:02:
8a:b8:e7:c4:89:3c:de:95:e8:42:21:af:49:86:d9:
03:e9:b5:39:21:d2:01:f0:7c:d7:d8:e0:b0:9a:d2:
e5:28:bb:ee:d9:27:81:78:2b:3f:1f:d8:2a:b9:b8:
e0:03:36:c7:7b:55:9e:f4:15:00:2b:7d:9d:64:4e:
ce:1b:4a:0b:0b:03:f3:0e:19:3b:f1:5b:37:7e:c7:
20:39:8f:97:6a:4c:49:69:10:18:d7:8e:e5:27:bb:
54:d2:56:52:01:af:51:a3:d1:44:02:77:c2:08:53:
f4:47:5a:4e:f1:00:49:71:46:a5:88:db:5b:1d:f4:
20:8c:59:66:0f:d0:f9:e1:c4:06:b0:4c:f1:3e:cb:
c0:00:8b:b6:56:d7:a3:02:a8:1f:67:63:7f:a3:66:
6e:ee:7a:9d:9b:cf:3f:de:48:c9:c2:04:e1:cf:75:
83:6d:b4:5c:93:23:52:85:76:63:49:a8:09:e9:38:
e2:48:fb:4f:79:97:85:1e:88:33:44:c8:2b:08:e6:
fa:c2:2c:a2:1d:2e:3a:58:74:aa:1e:31:0f:9b:c1:
2d:b9:42:ac:3b:15:1d:8a:74:cb:cb:98:3b:76:fc:
7e:3c:6b:73:2e:36:d3:c7:fa:40:bb:4f:04:4c:19:
8e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5B:EB:DD:30:40:44:BC:CF:77:A3:06:F3:10:3B:DD:DC:28:51:46
X509v3 Authority Key Identifier:
keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:9580:30::/48
Signature Algorithm: sha256WithRSAEncryption
82:ad:01:1a:1b:06:5b:6b:fa:18:52:34:cc:a5:c9:ac:4a:b7:
4f:9c:b9:77:bd:16:96:56:b8:7b:12:6f:05:d6:7b:91:49:fb:
cb:82:79:f4:40:56:3f:1f:20:0c:27:25:73:00:aa:9e:46:0e:
1d:90:06:52:91:17:cc:87:c2:77:6b:67:da:00:1e:0f:3d:f7:
0d:06:63:e9:65:f5:a4:02:d5:c7:c2:09:c9:ef:93:7d:a8:bf:
46:53:ca:b9:25:b0:7d:60:74:1d:30:4b:2f:fe:12:cd:3f:18:
6e:de:6a:46:ee:06:db:60:a3:b3:a3:0d:ed:5e:c7:c8:21:83:
4b:31:cb:2e:ae:fa:42:b1:2d:3f:22:53:71:59:65:76:50:59:
34:e6:01:c3:b1:6a:34:ab:15:9d:98:e6:c2:d2:15:0c:08:c3:
a2:75:13:d5:07:65:1d:d5:48:d0:0f:75:48:e5:cb:c7:0a:f6:
cb:5d:66:a5:85:f8:a4:bc:94:b1:f5:92:d3:97:33:c3:54:a6:
51:af:48:24:a9:42:61:37:7c:13:ae:fc:8d:6f:3a:58:1a:53:
b3:10:49:d0:c5:d3:dc:27:6e:8b:74:44:3c:59:68:0e:d5:81:
8a:a3:94:23:b6:f1:db:7f:08:d0:77:96:f6:e8:e0:31:3d:9a:
6d:e5:50:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:20 2025 by rpki-client