Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a3a2f33322d3332203d3e203538333639.roa
File: 323430333a666438303a3a2f33322d3332203d3e203538333639.roa (raw, json)
Hash identifier: 7ZzYsNf1dTNiVmzEQCFdg7nvsYCPWD0dgzrDgwff6G8=
Subject key identifier: 9C:71:05:A3:7F:4E:E7:5A:78:89:43:1F:C2:60:76:5E:30:AA:71:B8
Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8
Certificate serial: 565F92A83D7121CCD25F23FF206E09CBF16795A7
Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a3a2f33322d3332203d3e203538333639.roa
Signing time: Mon 01 Jul 2024 01:04:31 +0000
ROA not before: Mon 01 Jul 2024 00:59:31 +0000
ROA not after: Mon 30 Jun 2025 01:04:31 +0000
asID: 58369
IP address blocks: 2403:fd80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:5f:92:a8:3d:71:21:cc:d2:5f:23:ff:20:6e:09:cb:f1:67:95:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8
Validity
Not Before: Jul 1 00:59:31 2024 GMT
Not After : Jun 30 01:04:31 2025 GMT
Subject: CN=9C7105A37F4EE75A7889431FC260765E30AA71B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:67:15:23:54:d9:a6:72:dc:0c:ed:02:47:57:
01:25:29:05:a9:40:f4:d4:bf:8f:46:3b:1d:90:91:
dd:83:da:7d:60:6d:87:a3:a2:79:87:0a:81:7a:f6:
aa:1a:58:f2:79:28:e7:d5:84:07:14:18:d9:d7:6b:
ba:6f:8a:1c:bb:74:e7:d0:cd:7c:17:b1:d8:92:34:
07:1e:32:e9:f8:c2:27:62:b7:44:2a:76:9c:fd:fd:
81:ca:5c:46:4a:20:e2:6f:05:d0:fa:fd:e0:a5:84:
3d:e3:22:eb:de:dc:17:d7:6e:0e:ad:6f:90:1b:4d:
ac:0d:bb:2c:0b:d5:31:6f:55:2e:54:ea:92:6c:8b:
db:de:5d:0e:34:35:27:da:ae:40:98:04:81:bb:5c:
cd:a1:ea:15:9c:1c:9f:98:a9:d0:0a:74:4e:80:5a:
70:7c:d9:04:44:7b:a0:4e:13:6e:6b:39:52:ef:a5:
d9:d6:3c:77:75:76:0a:1d:bf:2a:ed:05:29:55:ec:
35:aa:fc:c8:1a:87:95:34:f6:55:b2:37:0f:23:32:
25:6f:2d:6b:0c:ba:97:21:f5:6b:f5:07:cf:53:04:
fd:d3:da:be:39:05:cc:ef:10:f1:ff:4f:3d:e7:c2:
0d:ae:7c:f7:30:d7:2d:d5:71:19:42:85:ce:4c:15:
a0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:71:05:A3:7F:4E:E7:5A:78:89:43:1F:C2:60:76:5E:30:AA:71:B8
X509v3 Authority Key Identifier:
keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a3a2f33322d3332203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:fd80::/32
Signature Algorithm: sha256WithRSAEncryption
a7:f2:5a:51:d1:31:ec:dd:a7:d0:f3:71:04:2a:3a:4f:fb:d0:
e9:8f:14:73:b1:12:86:23:f5:99:1e:e0:43:61:2d:72:85:6a:
03:b6:b9:92:e3:9b:5a:8d:9d:28:73:4d:b7:ed:4f:47:fb:a8:
f4:f1:30:f4:2c:2a:4e:9f:0c:9d:3a:25:fb:81:af:43:4b:4a:
09:e6:71:d1:13:3e:3e:52:3a:bc:79:eb:8b:b2:e9:9c:4a:c0:
3f:8f:65:eb:f6:d6:b8:57:bc:23:3b:6e:4c:3b:75:a0:ea:fb:
81:51:2c:b6:b5:39:76:44:2b:f4:2e:e1:27:02:97:3e:21:b5:
82:cd:8d:5c:ba:d0:38:33:a1:3d:1f:32:98:35:08:43:bc:38:
cf:f3:1b:7d:44:eb:eb:ac:9b:75:6a:59:7e:84:7f:6b:64:c0:
ed:66:88:14:91:1e:b1:39:58:16:66:ae:ed:18:02:40:64:a3:
f8:07:f5:05:24:97:cb:ed:c3:b9:e6:44:aa:51:00:2d:55:47:
bf:a7:e3:74:06:89:e0:4f:3c:2a:cf:84:b0:aa:10:1f:13:89:
f6:9c:5a:a1:15:0c:c8:fa:17:f1:a2:51:a3:3d:2a:20:4b:ff:
bb:7a:af:f1:a7:45:a0:58:c8:98:6f:f2:8b:c4:31:c1:f6:1d:
05:70:40:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:07:58 2025 by rpki-client