Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa
File: 323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa (raw, json)
Hash identifier: p2LmSRom1+ALbzIyY6UMyaBCsRycEfpY+T5lbdUMTIY=
Subject key identifier: EE:A8:56:AD:BF:D7:89:05:1C:8C:F0:8C:16:05:B4:E4:D9:F3:BF:AA
Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Certificate serial: 69457D54CB6812B133880AB6BA4735BD93BA98FC
Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa
Signing time: Thu 09 May 2024 03:00:01 +0000
ROA not before: Thu 09 May 2024 02:55:01 +0000
ROA not after: Thu 08 May 2025 03:00:01 +0000
asID: 137330
IP address blocks: 2402:aa40:15::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:45:7d:54:cb:68:12:b1:33:88:0a:b6:ba:47:35:bd:93:ba:98:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Validity
Not Before: May 9 02:55:01 2024 GMT
Not After : May 8 03:00:01 2025 GMT
Subject: CN=EEA856ADBFD789051C8CF08C1605B4E4D9F3BFAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:3c:b8:f6:3e:28:c3:b8:9e:ec:af:0d:ff:
6f:f3:8a:2f:7c:eb:00:bc:fa:00:c8:55:a4:5b:a9:
22:7e:21:3d:05:eb:36:0c:cd:d8:92:ea:af:87:06:
a0:c3:2e:15:01:c3:b0:a2:1e:d2:0d:54:47:bf:7d:
52:41:0b:67:6f:dc:18:02:29:b8:39:ff:f7:e5:26:
29:fe:17:4d:76:32:d1:ed:a9:6a:12:f3:fa:a9:77:
50:d1:2a:ff:c7:62:7d:8b:c6:07:d5:13:2f:88:e0:
38:ce:83:8e:76:f3:e9:7a:4f:0e:ef:f6:7c:26:d8:
0a:c0:c1:95:46:3f:fc:3f:a8:e1:70:6c:51:d9:16:
cf:40:12:85:ab:08:f6:4a:07:42:a3:a4:d4:cb:56:
5f:3e:c5:62:e0:4f:3d:07:58:4e:b5:6c:06:82:c2:
ae:67:43:05:d0:7e:48:2b:65:57:a7:0a:cd:e4:ef:
ef:6d:80:38:23:7d:dd:b4:cd:f5:db:8b:bd:c9:94:
df:2a:86:26:12:98:12:2c:73:58:f1:53:4c:b1:f0:
99:84:a7:d9:9f:93:32:e5:29:93:b9:b6:98:0b:1a:
ea:96:60:dc:64:e7:c2:c1:c7:d9:b1:87:25:b8:5b:
e6:d1:de:48:01:70:35:d9:15:09:2e:88:da:d4:a2:
39:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A8:56:AD:BF:D7:89:05:1C:8C:F0:8C:16:05:B4:E4:D9:F3:BF:AA
X509v3 Authority Key Identifier:
keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:aa40:15::/48
Signature Algorithm: sha256WithRSAEncryption
94:84:d0:d4:50:55:7c:3e:35:14:91:77:b3:c0:2d:5d:3c:c3:
00:a2:f8:8a:61:b4:df:b8:5c:e7:92:40:99:3b:00:4d:65:cb:
6f:24:2e:b3:dd:0f:48:17:fc:59:94:d8:a3:83:30:31:a4:3b:
e8:43:21:31:fa:47:c3:db:91:64:d0:d5:41:dc:02:b8:28:ff:
b1:80:8d:8d:77:8c:40:49:5b:af:1d:24:e1:0a:93:27:16:b8:
ac:e7:4c:af:ac:df:3e:46:50:e6:d5:d6:36:bf:08:0a:60:c3:
13:d3:05:57:fb:d0:65:81:0c:d0:b7:16:bd:00:ac:f5:e1:76:
66:71:99:e1:94:50:d3:f6:fc:b6:99:09:3b:5d:6e:44:3d:b8:
2a:fe:a3:ac:b2:23:f5:9c:4d:8a:e9:c4:ae:54:68:34:5f:61:
73:7e:51:c7:7b:07:06:47:19:d7:6f:56:26:6e:5c:7a:08:9e:
61:73:4a:65:53:4e:26:2a:03:ed:c0:9b:1f:5e:be:fe:40:2a:
e9:cf:76:56:c3:cd:be:95:8f:9b:3e:e5:6c:73:85:96:6a:bf:
1a:65:76:32:8f:3d:27:80:7a:3c:b1:5a:a2:5b:aa:bb:82:4e:
65:29:b9:34:16:1b:23:18:a9:2a:49:52:ed:1b:6e:79:6d:67:
56:d9:1c:21
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUaUV9VMtoErEziAq2ukc1vZO6mPwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF
NEMxRDAwMzAeFw0yNDA1MDkwMjU1MDFaFw0yNTA1MDgwMzAwMDFaMDMxMTAvBgNV
BAMTKEVFQTg1NkFEQkZENzg5MDUxQzhDRjA4QzE2MDVCNEU0RDlGM0JGQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCGjy49j4ow7ie7K8N/2/zii98
6wC8+gDIVaRbqSJ+IT0F6zYMzdiS6q+HBqDDLhUBw7CiHtINVEe/fVJBC2dv3BgC
Kbg5//flJin+F012MtHtqWoS8/qpd1DRKv/HYn2LxgfVEy+I4DjOg4528+l6Tw7v
9nwm2ArAwZVGP/w/qOFwbFHZFs9AEoWrCPZKB0KjpNTLVl8+xWLgTz0HWE61bAaC
wq5nQwXQfkgrZVenCs3k7+9tgDgjfd20zfXbi73JlN8qhiYSmBIsc1jxU0yx8JmE
p9mfkzLlKZO5tpgLGuqWYNxk58LBx9mxhyW4W+bR3kgBcDXZFQkuiNrUojnjAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU7qhWrb/XiQUcjPCMFgW05Nnzv6owHwYDVR0j
BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx
REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx
RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04
N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA
FTANBgkqhkiG9w0BAQsFAAOCAQEAlITQ1FBVfD41FJF3s8AtXTzDAKL4imG037hc
55JAmTsATWXLbyQus90PSBf8WZTYo4MwMaQ76EMhMfpHw9uRZNDVQdwCuCj/sYCN
jXeMQElbrx0k4QqTJxa4rOdMr6zfPkZQ5tXWNr8ICmDDE9MFV/vQZYEM0LcWvQCs
9eF2ZnGZ4ZRQ0/b8tpkJO11uRD24Kv6jrLIj9ZxNiunErlRoNF9hc35Rx3sHBkcZ
129WJm5cegieYXNKZVNOJioD7cCbH16+/kAq6c92VsPNvpWPmz7lbHOFlmq/GmV2
Mo89J4B6PLFaoluqu4JOZSm5NBYbIxipKklS7RtueW1nVtkcIQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:05:36 2025 by rpki-client