Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a3a2f33322d3332203d3e20313334363337.roa
File: 323430333a653338303a3a2f33322d3332203d3e20313334363337.roa (raw, json)
Hash identifier: U7L8CMVLZEavXmnK/mp5PFEjMg9cgSL8vuQSoK3hk4M=
Subject key identifier: F6:35:14:00:67:23:DB:B5:CC:A2:EA:3F:4E:81:23:25:73:73:08:81
Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987
Certificate serial: 2316ECF1A8ADBEF5C61D02929CE0F0DDF802DF17
Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a3a2f33322d3332203d3e20313334363337.roa
Signing time: Tue 21 Jan 2025 09:00:01 +0000
ROA not before: Tue 21 Jan 2025 08:55:01 +0000
ROA not after: Tue 20 Jan 2026 09:00:01 +0000
asID: 134637
IP address blocks: 2403:e380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:16:ec:f1:a8:ad:be:f5:c6:1d:02:92:9c:e0:f0:dd:f8:02:df:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=027DBEC91021154263BB0CF1565833705023D987
Validity
Not Before: Jan 21 08:55:01 2025 GMT
Not After : Jan 20 09:00:01 2026 GMT
Subject: CN=F63514006723DBB5CCA2EA3F4E81232573730881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9d:7f:20:76:f8:11:78:65:3f:fb:06:74:58:
09:a2:2a:2d:83:aa:50:f0:cc:66:8a:0c:7f:eb:b5:
b1:00:fc:56:44:dd:4f:36:d4:04:b2:8e:b6:b0:02:
a5:16:1e:78:a9:00:b3:e2:5d:a9:10:18:d9:63:06:
9b:3e:9c:00:b1:e2:fc:b1:6a:8a:f5:b8:48:3a:3c:
a8:41:c0:c8:14:74:f9:c4:37:b0:8f:60:e6:5a:27:
f1:14:7c:6f:9b:c6:07:d6:72:fa:9b:7d:2e:d8:9a:
96:fd:6b:88:90:b8:66:4e:db:d4:53:83:fd:b4:30:
e1:33:30:eb:51:e2:cc:62:cc:6c:b6:cf:49:7f:49:
35:57:2f:b4:d7:ec:69:26:6d:85:78:71:7a:ba:42:
46:82:85:4d:03:10:5d:26:54:7d:a0:50:97:44:b6:
31:9f:c7:e6:83:72:15:ef:85:5d:ac:8b:40:a6:f8:
e3:3b:74:aa:d1:e3:88:01:f1:4d:d0:34:6c:a9:d9:
d7:30:49:2b:75:d5:06:42:42:9c:89:a4:a8:01:92:
f5:58:7b:74:a2:8b:16:fe:6e:c8:fc:4a:84:ad:c0:
fb:5b:1e:94:62:d3:61:d5:c7:63:df:41:4d:49:66:
45:77:7b:16:d7:29:dc:63:6a:85:0a:17:82:3e:7d:
21:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:35:14:00:67:23:DB:B5:CC:A2:EA:3F:4E:81:23:25:73:73:08:81
X509v3 Authority Key Identifier:
keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a3a2f33322d3332203d3e20313334363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:e380::/32
Signature Algorithm: sha256WithRSAEncryption
c9:45:69:8a:f1:80:1e:91:7d:61:da:83:df:0e:d6:6d:80:fe:
9e:7a:9c:64:04:0c:0f:40:c4:a4:f9:0a:ec:b7:6b:e1:f7:f2:
87:7f:09:8b:09:a0:6f:bf:3f:83:36:8d:93:04:6d:fd:5b:bb:
be:e6:45:67:51:46:cc:8d:d3:e9:62:7c:c7:a7:68:ad:75:01:
ad:a0:04:86:88:e2:6e:06:4e:bf:7f:0a:18:71:6f:fa:3e:49:
96:8d:6a:07:e0:f6:4c:52:89:40:dd:6f:ff:80:b5:ae:2d:98:
b0:21:6e:b0:1c:6c:bf:4d:ff:ee:fb:b7:4d:a3:48:64:f4:31:
02:f5:39:9d:55:5c:e5:62:90:b5:c2:76:32:e1:bc:92:ae:0c:
fc:a0:e8:ba:f3:8a:19:3b:33:36:f3:c8:0f:a7:e4:ec:4d:22:
de:fb:81:2d:0c:16:86:0f:6b:27:c4:5e:0c:01:c9:48:c2:60:
57:11:49:b7:1e:63:b2:40:87:12:a7:63:2c:63:14:02:9d:1e:
71:24:7d:94:67:e9:fc:f6:02:03:ca:19:77:87:14:c9:22:0c:
a1:83:b8:0a:fe:91:f1:da:08:fe:d1:4e:9b:76:6c:aa:47:03:
46:a5:55:1d:e8:8d:60:84:48:a6:72:ea:67:c7:42:a3:71:d1:
e4:79:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:31 2025 by rpki-client