Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa
File: 323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa (raw, json)
Hash identifier: r6mE1hwqe5AJWkOHIz2I388PWuZTnmkeKpmw8+YPM38=
Subject key identifier: 80:26:8B:D9:E9:1B:E3:24:53:42:8F:F2:E6:14:3D:F5:3F:0B:31:2E
Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987
Certificate serial: 1AB1AEDD0DC0FBFB3A067D720624EBC9B6D7146D
Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa
Signing time: Tue 21 Jan 2025 09:00:01 +0000
ROA not before: Tue 21 Jan 2025 08:55:01 +0000
ROA not after: Tue 20 Jan 2026 09:00:01 +0000
asID: 134637
IP address blocks: 2403:e380:1001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:b1:ae:dd:0d:c0:fb:fb:3a:06:7d:72:06:24:eb:c9:b6:d7:14:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=027DBEC91021154263BB0CF1565833705023D987
Validity
Not Before: Jan 21 08:55:01 2025 GMT
Not After : Jan 20 09:00:01 2026 GMT
Subject: CN=80268BD9E91BE32453428FF2E6143DF53F0B312E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b2:1a:23:68:43:17:06:79:c3:76:68:6a:de:
ab:15:7a:59:ab:06:4b:8f:4a:08:3f:c3:ab:16:b6:
1b:6e:53:01:ba:d1:1a:1b:16:c1:cf:ae:09:28:71:
ec:f9:08:20:00:43:d0:70:26:79:d2:79:75:6f:ee:
9b:35:27:b6:b8:17:44:54:54:f4:83:1f:38:84:84:
11:3e:a2:23:53:b4:21:37:38:87:6e:76:c5:88:85:
cb:17:8a:30:db:b7:69:12:0b:28:13:65:25:fb:f8:
c3:7d:f0:5e:f1:c3:16:fa:b8:92:15:dd:af:c0:a0:
78:1c:7a:3f:96:9f:f1:7a:e6:e7:6b:06:ee:78:a7:
d0:4d:7a:6b:ca:6e:56:c5:45:8f:ee:d0:a1:ad:90:
26:c9:26:60:f5:3f:9a:39:3c:c4:31:de:3a:57:d8:
d3:bc:af:83:8c:b3:4c:be:f1:ac:21:a3:6f:60:92:
95:14:f7:e2:41:99:e1:08:8d:9e:83:99:ca:b0:73:
50:d4:d4:2c:95:60:aa:67:1c:97:c3:d1:32:c6:19:
23:ff:56:5f:ed:d0:da:89:f9:60:ba:6f:10:74:fd:
fa:9b:d1:c2:db:6a:c7:64:b6:cd:0f:12:1c:ad:07:
ff:1e:c7:bc:e1:8f:19:a4:36:1c:50:9c:aa:64:18:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:26:8B:D9:E9:1B:E3:24:53:42:8F:F2:E6:14:3D:F5:3F:0B:31:2E
X509v3 Authority Key Identifier:
keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:e380:1001::/48
Signature Algorithm: sha256WithRSAEncryption
b1:26:5f:ca:ef:fa:8b:81:54:4e:4f:58:25:81:64:71:ff:c0:
9b:fc:63:de:c9:c4:1a:49:1d:fd:37:95:56:ff:e6:83:86:41:
1e:f5:eb:f8:7d:e8:c6:62:62:74:94:11:cb:9e:f6:cb:24:ea:
06:19:9f:b9:28:2d:35:04:aa:83:58:aa:e6:2c:92:b8:10:c4:
a1:34:ba:00:3c:5e:1f:08:f0:09:d8:6f:eb:72:e4:ae:b9:e5:
7b:3b:5b:da:f4:11:ab:60:cf:31:d1:a7:ab:5b:db:ef:50:1e:
d9:b7:76:11:22:24:45:17:3e:91:e0:9b:07:ce:fa:aa:ef:50:
07:38:82:fc:2c:cc:a3:d2:82:bd:6d:ae:84:46:0e:e0:cd:d0:
de:be:6d:fb:78:ff:f4:ac:c4:36:36:38:79:a5:b3:f1:07:35:
8d:53:ce:ba:8e:eb:c2:d8:ef:3d:52:7b:5d:7b:be:87:0c:d8:
61:79:e1:41:f5:81:fe:3a:8f:d5:d2:d8:fa:82:77:a6:60:c2:
cb:e8:79:31:dc:96:a1:25:81:54:4a:c2:3c:ab:a1:93:36:20:
e4:9b:bc:b1:46:68:ff:88:9f:3e:49:4c:1c:23:e5:44:f8:fb:
0b:64:42:c1:18:84:e6:fc:5e:92:af:d6:f0:50:06:67:a0:d5:
69:3e:ff:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:18 2025 by rpki-client