Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: 5FOODa+jw39iuMcoS36xDTFLBfsauVFBG/u0CcKkKWQ=
Subject key identifier: 22:FB:25:CC:14:A7:39:99:B0:B2:50:AD:B5:85:D4:17:C1:A1:7D:90
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 64783A3526E34040CAE1CC4FBA6687B281018BDA
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:59:28 +0000
ROA not before: Fri 02 Aug 2024 12:54:28 +0000
ROA not after: Fri 01 Aug 2025 12:59:28 +0000
asID: 153087
IP address blocks: 2404:97c0:334::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:78:3a:35:26:e3:40:40:ca:e1:cc:4f:ba:66:87:b2:81:01:8b:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:54:28 2024 GMT
Not After : Aug 1 12:59:28 2025 GMT
Subject: CN=22FB25CC14A73999B0B250ADB585D417C1A17D90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:21:0f:d2:b2:00:6a:ea:03:6e:b8:fb:2d:
be:84:51:0c:b0:fd:a5:9d:ed:29:10:65:0c:6d:a4:
ec:e3:4c:2b:b2:c0:bd:59:1a:d1:e4:76:26:36:b0:
2b:00:83:11:99:02:7c:97:42:4b:62:40:47:9d:6b:
fa:62:55:c6:59:08:82:62:4e:35:60:78:00:c9:7b:
29:88:be:e3:8c:c3:02:a0:b2:57:1f:8a:6e:e9:27:
05:da:30:21:5c:a0:4e:b1:63:30:a5:f6:c6:1c:a4:
57:a6:38:51:17:43:b8:1e:8d:54:fb:5b:71:77:1f:
2a:25:92:b6:92:6f:be:a7:0b:be:85:00:d1:97:a1:
1f:b5:6e:64:eb:22:2f:6c:2e:4b:4b:39:87:7e:15:
44:8e:e6:95:7d:f0:28:80:32:23:64:c3:64:9a:2f:
26:30:ff:95:45:7b:15:44:30:3d:9b:ef:be:bc:33:
d6:66:ce:b1:86:f6:52:d5:e8:cd:ae:b9:3b:ad:ee:
9d:c3:a3:b8:4a:f6:7b:d6:9e:3d:e2:4f:b8:25:8e:
db:50:c0:f6:82:d2:9e:4a:04:71:99:65:b1:95:10:
12:33:2e:09:11:04:7e:bb:cb:6e:9f:bd:40:20:79:
ef:d8:4a:08:a0:44:c1:6a:49:83:b0:7a:b1:bc:63:
b6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FB:25:CC:14:A7:39:99:B0:B2:50:AD:B5:85:D4:17:C1:A1:7D:90
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:334::/48
Signature Algorithm: sha256WithRSAEncryption
50:6e:83:c3:7a:a9:1b:69:a4:3d:a3:82:ab:e9:b2:a9:e3:d4:
ba:12:92:73:8b:cb:bc:ac:22:c6:58:60:17:77:20:0e:22:69:
02:a0:4e:20:e8:e0:66:2c:e7:7b:07:c7:09:85:8c:f6:f1:f8:
a2:f0:3c:2d:85:5b:63:e8:e2:c2:a5:1b:ad:11:b4:4d:51:ed:
ad:3a:67:a8:7f:b3:7a:c0:8c:7b:28:a1:d1:d7:2a:d0:8c:a6:
36:2e:d7:0e:13:80:8a:b8:71:78:24:5a:04:b8:5c:8a:72:b8:
40:bb:06:94:5b:d3:1a:fb:12:4d:fd:48:5c:76:e6:0d:d1:b9:
70:37:20:8a:ed:b7:db:63:71:7b:ab:c9:28:6d:1a:1e:c9:ae:
39:d4:50:b3:4d:1e:76:32:b5:35:38:f9:b1:1e:cb:ab:79:5a:
31:07:f8:bb:15:6c:23:b3:cf:27:65:e6:93:f3:ab:35:83:0d:
c8:30:7b:6d:03:cc:07:1c:95:a9:9d:4c:97:e2:10:c7:b9:72:
f6:7c:b7:0c:a3:43:9a:7b:72:b7:10:3e:4a:93:06:1a:e0:13:
53:71:5e:91:eb:bf:a7:f9:ed:df:b8:87:53:53:01:cd:bd:ef:
b2:e5:d7:2d:64:7d:60:68:00:52:db:fb:75:29:3e:8d:26:d9:
d0:e1:99:be
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZHg6NSbjQEDK4cxPumaHsoEBi9owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky
NzI5REVFRTAeFw0yNDA4MDIxMjU0MjhaFw0yNTA4MDExMjU5MjhaMDMxMTAvBgNV
BAMTKDIyRkIyNUNDMTRBNzM5OTlCMEIyNTBBREI1ODVENDE3QzFBMTdEOTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsJyEP0rIAauoDbrj7Lb6EUQyw
/aWd7SkQZQxtpOzjTCuywL1ZGtHkdiY2sCsAgxGZAnyXQktiQEeda/piVcZZCIJi
TjVgeADJeymIvuOMwwKgslcfim7pJwXaMCFcoE6xYzCl9sYcpFemOFEXQ7gejVT7
W3F3HyolkraSb76nC76FANGXoR+1bmTrIi9sLktLOYd+FUSO5pV98CiAMiNkw2Sa
LyYw/5VFexVEMD2b7768M9ZmzrGG9lLV6M2uuTut7p3Do7hK9nvWnj3iT7gljttQ
wPaC0p5KBHGZZbGVEBIzLgkRBH67y26fvUAgee/YSgigRMFqSYOwerG8Y7YjAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUIvslzBSnOZmwslCttYXUF8GhfZAwHwYDVR0j
BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC
MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5
REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04
MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX
wAM0MA0GCSqGSIb3DQEBCwUAA4IBAQBQboPDeqkbaaQ9o4Kr6bKp49S6EpJzi8u8
rCLGWGAXdyAOImkCoE4g6OBmLOd7B8cJhYz28fii8DwthVtj6OLCpRutEbRNUe2t
Omeof7N6wIx7KKHR1yrQjKY2LtcOE4CKuHF4JFoEuFyKcrhAuwaUW9Ma+xJN/Uhc
duYN0blwNyCK7bfbY3F7q8kobRoeya451FCzTR52MrU1OPmxHsureVoxB/i7FWwj
s88nZeaT86s1gw3IMHttA8wHHJWpnUyX4hDHuXL2fLcMo0Oae3K3ED5KkwYa4BNT
cV6R67+n+e3fuIdTUwHNve+y5dctZH1gaABS2/t1KT6NJtnQ4Zm+
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:12 2025 by rpki-client