Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/323430313a396230303a3a2f33322d3438203d3e203338313438.roa
File: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (raw, json)
Hash identifier: hc6ECrtKO1f8LRbUaOngruzuLZGjjKMcrVpSYHLGH+4=
Subject key identifier: 94:47:65:7A:12:A8:A4:E4:00:C9:04:55:65:A0:6F:1F:DA:D8:73:A1
Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial: 0BFE1CD74EDDA276024EFE073693CA600766A8D7
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/323430313a396230303a3a2f33322d3438203d3e203338313438.roa
Signing time: Wed 16 Oct 2024 04:02:05 +0000
ROA not before: Wed 16 Oct 2024 03:57:05 +0000
ROA not after: Wed 15 Oct 2025 04:02:05 +0000
asID: 38148
IP address blocks: 2401:9b00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:fe:1c:d7:4e:dd:a2:76:02:4e:fe:07:36:93:ca:60:07:66:a8:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Validity
Not Before: Oct 16 03:57:05 2024 GMT
Not After : Oct 15 04:02:05 2025 GMT
Subject: CN=9447657A12A8A4E400C9045565A06F1FDAD873A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:2c:f6:5b:00:8e:cd:64:01:de:70:f5:99:
b0:ab:11:b4:7c:f1:ee:fd:55:b5:26:a6:64:4d:80:
a0:69:d0:5c:05:71:ca:3f:30:a9:3e:27:22:a6:77:
85:dc:07:aa:f7:e6:1c:f3:5e:cc:01:a3:4a:d3:51:
41:a2:12:9a:77:91:e1:58:a8:6b:05:b7:1c:32:a3:
ec:19:9a:91:ad:41:66:5e:b6:ed:f7:5a:c5:63:61:
2d:f4:ac:09:3c:18:e9:ac:bb:57:2e:a1:72:2d:d0:
ff:ea:2a:01:f3:1b:21:8d:5e:d7:a1:ed:59:13:99:
2d:19:ee:2b:41:de:e5:48:a6:4f:85:74:d6:71:bd:
07:4e:dd:10:1f:68:f5:b7:51:d0:70:10:b3:1a:ac:
87:58:f7:41:47:05:9a:ec:4e:9e:d2:fd:2f:84:dd:
57:62:19:14:0d:65:65:fa:8b:4e:34:b7:33:fa:6c:
b4:3c:27:33:4d:b8:e7:9d:43:65:66:cb:a5:bd:39:
fa:04:bd:20:2a:6e:44:fd:98:93:7e:40:4b:d1:21:
58:42:3f:12:c8:ca:3e:bc:29:d7:95:43:fb:cd:23:
3e:81:f2:eb:1b:2b:5c:a0:d4:5c:ac:a4:30:e0:bf:
62:ca:96:be:f0:1c:10:9f:51:a0:b2:3d:24:f5:01:
25:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:47:65:7A:12:A8:A4:E4:00:C9:04:55:65:A0:6F:1F:DA:D8:73:A1
X509v3 Authority Key Identifier:
keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/323430313a396230303a3a2f33322d3438203d3e203338313438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:9b00::/32
Signature Algorithm: sha256WithRSAEncryption
59:56:a4:ed:9f:b4:94:17:8f:46:37:e3:7d:05:9e:d7:da:2c:
f0:d2:66:9e:6b:8c:ae:72:95:bf:61:da:f1:6d:3a:63:61:57:
1e:c7:61:ef:91:0d:be:bb:74:29:62:96:74:a2:23:2b:34:51:
0f:a0:51:06:1f:ed:25:dc:b2:c1:6a:d7:6d:e2:11:bc:cf:ac:
4b:86:57:3e:54:59:07:cc:13:dc:29:03:09:71:0f:99:16:0a:
3e:97:1b:4f:92:f5:e7:51:7f:be:9d:ab:19:0c:ef:7f:84:b4:
e4:55:a1:ec:c5:e4:aa:17:d3:b1:3c:7b:50:db:f2:75:36:7a:
f1:e8:a9:9c:c4:f4:5b:c7:ba:b9:a5:3e:52:df:69:47:7a:d2:
6e:6c:05:df:f5:0e:10:48:87:37:78:3f:f1:40:ed:68:7d:f4:
25:78:09:b2:8f:35:24:37:a8:67:cb:2a:f4:4c:eb:a8:45:d3:
01:81:0f:67:33:de:e8:4e:64:d9:ac:17:5a:66:f8:5a:df:6a:
31:10:a4:22:02:8b:28:43:0c:2a:93:7f:f5:d7:30:0d:76:c3:
ca:34:d7:5e:11:c0:80:97:70:be:28:70:58:d9:e5:e1:52:aa:
6f:2a:41:54:7c:39:c2:99:4b:50:6c:ae:9e:b0:d5:3e:35:a8:
fd:b1:de:1d
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUC/4c107donYCTv4HNpPKYAdmqNcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw
RUIzODRFMTAeFw0yNDEwMTYwMzU3MDVaFw0yNTEwMTUwNDAyMDVaMDMxMTAvBgNV
BAMTKDk0NDc2NTdBMTJBOEE0RTQwMEM5MDQ1NTY1QTA2RjFGREFEODczQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGGCz2WwCOzWQB3nD1mbCrEbR8
8e79VbUmpmRNgKBp0FwFcco/MKk+JyKmd4XcB6r35hzzXswBo0rTUUGiEpp3keFY
qGsFtxwyo+wZmpGtQWZetu33WsVjYS30rAk8GOmsu1cuoXIt0P/qKgHzGyGNXteh
7VkTmS0Z7itB3uVIpk+FdNZxvQdO3RAfaPW3UdBwELMarIdY90FHBZrsTp7S/S+E
3VdiGRQNZWX6i040tzP6bLQ8JzNNuOedQ2Vmy6W9OfoEvSAqbkT9mJN+QEvRIVhC
PxLIyj68KdeVQ/vNIz6B8usbK1yg1FyspDDgv2LKlr7wHBCfUaCyPST1ASW5AgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUlEdlehKopOQAyQRVZaBvH9rYc6EwHwYDVR0j
BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4
NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz
ODRFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1OTJjMjc0LTExZGItNDEyNy1i
YWJiLWFlYWU5OTI4NGIwMC8wLzMyMzQzMDMxM2EzOTYyMzAzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMzMzgzMTM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAZsAMA0GCSqGSIb3
DQEBCwUAA4IBAQBZVqTtn7SUF49GN+N9BZ7X2izw0maea4yucpW/YdrxbTpjYVce
x2HvkQ2+u3QpYpZ0oiMrNFEPoFEGH+0l3LLBatdt4hG8z6xLhlc+VFkHzBPcKQMJ
cQ+ZFgo+lxtPkvXnUX++nasZDO9/hLTkVaHsxeSqF9OxPHtQ2/J1Nnrx6KmcxPRb
x7q5pT5S32lHetJubAXf9Q4QSIc3eD/xQO1offQleAmyjzUkN6hnyyr0TOuoRdMB
gQ9nM97oTmTZrBdaZvha32oxEKQiAosoQwwqk3/11zANdsPKNNdeEcCAl3C+KHBY
2eXhUqpvKkFUfDnCmUtQbK6esNU+Naj9sd4d
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:38:55 2025 by rpki-client