Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa
File: 323430303a636438303a3a2f33322d3438203d3e203536323432.roa (raw, json)
Hash identifier: lejxupJB/ypozilIjk9IOKEOtlHup4PnPlCfI+BqLVI=
Subject key identifier: 31:F3:0D:5C:3B:45:0A:67:24:7E:7B:6A:C9:BC:C5:E2:2C:E1:D5:8C
Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E
Certificate serial: 51D3DCB2472746AF4E8D8932027BD688B9FC9EA4
Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa
Signing time: Fri 27 Dec 2024 07:00:00 +0000
ROA not before: Fri 27 Dec 2024 06:55:00 +0000
ROA not after: Fri 26 Dec 2025 07:00:00 +0000
asID: 56242
IP address blocks: 2400:cd80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:d3:dc:b2:47:27:46:af:4e:8d:89:32:02:7b:d6:88:b9:fc:9e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E
Validity
Not Before: Dec 27 06:55:00 2024 GMT
Not After : Dec 26 07:00:00 2025 GMT
Subject: CN=31F30D5C3B450A67247E7B6AC9BCC5E22CE1D58C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5b:4d:c2:41:47:20:fc:f5:8b:99:40:0c:2d:
62:f0:ce:78:b5:44:f4:ab:4c:38:3c:c6:f3:00:ad:
19:c2:a7:62:ee:f7:df:37:5a:ec:58:44:4e:d1:3b:
f9:38:9a:fc:45:6a:4c:bf:59:ae:cd:8d:52:db:29:
4a:42:5d:12:b3:98:a6:fe:f6:60:63:a9:69:d0:d8:
cc:06:c1:62:6a:1a:6e:90:6a:d6:3f:c8:16:27:f9:
15:e1:52:35:20:4e:6b:ec:46:33:c5:16:6d:fa:fd:
59:04:1a:80:50:b6:ad:09:91:5a:9f:ee:77:a0:02:
1a:c5:d4:93:96:17:b6:0e:a2:bf:a3:a5:53:78:59:
fe:e5:2f:d5:1e:b9:af:5d:0a:a0:29:f3:ed:37:7c:
d5:ed:4e:3a:81:e5:7b:f8:f1:b9:23:6e:46:da:16:
1d:69:77:f5:34:41:f0:79:30:34:ed:07:29:5f:61:
68:4e:45:5c:d8:2a:39:a0:fe:90:21:f7:f3:03:e1:
8f:ea:80:33:f1:3f:39:2d:cc:dc:2b:b5:39:8e:88:
5a:82:40:07:7b:cf:55:66:3e:f2:e4:cd:61:13:d8:
44:8f:4d:08:3d:99:97:4c:10:6f:06:ea:d3:80:9e:
7e:df:86:db:08:bb:8d:d6:4b:51:bc:74:60:50:f4:
d7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F3:0D:5C:3B:45:0A:67:24:7E:7B:6A:C9:BC:C5:E2:2C:E1:D5:8C
X509v3 Authority Key Identifier:
keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:cd80::/32
Signature Algorithm: sha256WithRSAEncryption
d3:da:0c:aa:79:6a:b1:aa:1d:48:4a:49:f4:73:be:b3:75:c7:
e4:a4:42:84:56:f8:9b:9a:d3:fc:62:74:76:12:ef:73:6e:26:
6a:4e:11:5b:30:af:37:98:61:ce:5b:31:b7:a8:c7:45:84:8d:
20:e7:bb:7e:ef:ec:a7:00:b7:d5:aa:c8:f6:ad:a1:9d:5d:db:
b7:13:41:b3:55:6d:d1:81:e6:d4:6a:c6:48:72:c0:b7:02:86:
ad:f2:d2:1b:2b:4a:df:33:e7:18:8b:53:cb:ee:28:80:36:8b:
41:21:6b:b1:1e:61:67:d9:67:3c:32:17:66:9e:8c:9d:d3:0c:
0f:75:07:06:22:3e:92:27:a3:0d:2c:43:cc:20:91:c5:7d:4c:
6c:30:77:56:e8:15:ff:f4:b5:d0:b3:e5:0e:58:48:96:c1:16:
37:0e:68:ca:dc:8e:5e:11:77:bf:0c:44:2e:04:55:b9:c5:5d:
db:8c:9f:4f:03:a7:69:44:14:0c:90:2e:d4:cd:29:e1:c5:13:
e5:8f:cc:71:a6:22:e4:fc:1a:58:48:1d:f8:52:69:ab:1e:c7:
6a:f4:0e:01:b5:ad:cd:ae:cc:69:c0:10:25:83:70:93:dc:f7:
90:1b:5d:16:e4:ba:ac:4c:0d:9f:8a:b1:d0:79:b7:fe:d0:4c:
43:ee:89:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 10:11:22 2025 by rpki-client