Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa
File: 323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa (raw, json)
Hash identifier: gDsFMPdS1IaRtryZzewnAdvmRW5ZS5ZRqCXnqy0EfSc=
Subject key identifier: BA:1B:6A:14:90:E7:56:70:E8:81:8D:8C:05:22:45:F7:C6:50:20:6A
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 5740EEE5D50D01617C42EBE3BE90D3115C8DCA81
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa
Signing time: Sun 01 Sep 2024 07:00:02 +0000
ROA not before: Sun 01 Sep 2024 06:55:02 +0000
ROA not after: Sun 31 Aug 2025 07:00:02 +0000
asID: 140423
IP address blocks: 2406:20c0:2000::/35 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:40:ee:e5:d5:0d:01:61:7c:42:eb:e3:be:90:d3:11:5c:8d:ca:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Sep 1 06:55:02 2024 GMT
Not After : Aug 31 07:00:02 2025 GMT
Subject: CN=BA1B6A1490E75670E8818D8C052245F7C650206A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c6:b6:4a:97:ce:9f:88:90:b7:b4:57:19:ff:
3c:c7:50:f5:26:db:d5:f2:3d:11:e4:74:69:76:d6:
24:2b:0e:bd:2c:d8:13:7e:3f:d2:ee:83:94:72:d8:
c4:e1:c4:d7:58:96:8e:8a:40:ba:e6:9e:4c:25:7c:
3a:84:e4:2e:e7:76:5d:15:63:a6:3f:48:df:8c:1d:
e6:9f:70:d6:13:c5:08:43:b8:e2:f0:22:a2:9f:d3:
f1:bc:cb:eb:cf:e4:01:76:fb:05:ab:dd:16:43:b7:
ea:32:75:80:d5:d5:ff:62:5f:a7:a4:20:0e:85:73:
0e:ec:d7:31:7e:73:63:d9:41:7f:b1:7f:fb:de:52:
f3:47:3f:fc:6d:ac:74:58:72:7a:86:32:1e:ef:68:
29:56:69:24:ac:1a:f5:af:2d:0e:1a:d8:d2:c4:4d:
a9:8d:ab:d8:99:82:0e:84:1c:48:af:f5:ec:bc:ad:
dc:73:78:9f:6e:e0:85:73:f8:45:15:8b:9f:ab:b9:
36:f7:c6:b7:ff:b2:4f:9d:92:61:1d:79:95:bd:02:
8e:d8:1b:2e:6e:5f:72:2f:5e:fc:28:2d:76:5f:68:
e6:c6:34:89:55:dd:29:dc:d3:9b:bc:c0:13:56:77:
a4:d7:cc:0c:96:a3:db:49:4a:81:78:86:c7:aa:41:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1B:6A:14:90:E7:56:70:E8:81:8D:8C:05:22:45:F7:C6:50:20:6A
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:2000::/35
Signature Algorithm: sha256WithRSAEncryption
b3:81:62:10:1b:da:c3:d4:5e:cc:c7:3e:5b:c8:02:e1:f7:f3:
a1:96:97:68:52:52:80:44:24:75:40:72:74:bb:87:0a:6b:e9:
0e:ea:d8:2a:cf:e4:b9:29:b0:b9:d8:3e:b1:bf:3e:27:6e:b0:
3b:bf:13:c8:d3:2f:af:cb:6f:57:82:8e:70:a1:ca:19:d9:69:
3d:e0:c0:29:09:d4:72:a0:e4:f7:99:b5:32:79:1d:90:ba:ab:
82:c0:c7:9a:8d:92:80:77:32:53:72:b0:e0:42:14:5d:36:99:
d1:ae:19:db:b1:a5:e0:d8:db:b6:fe:96:50:11:39:78:6a:98:
e7:11:58:db:df:a4:73:0c:79:7b:65:95:11:19:26:36:bd:4b:
2c:51:00:ed:bd:0c:ea:c4:11:66:3a:9c:6e:f1:ee:6f:8b:31:
d7:0e:98:cf:68:f9:bd:6c:1d:dd:5c:8f:7a:34:ce:76:d6:b2:
e3:ee:3a:6e:68:1f:55:fd:d6:da:d8:58:dc:0d:41:cf:4f:16:
86:32:5e:65:98:c5:11:7e:ad:e3:e4:1f:e1:48:03:97:8a:6c:
61:49:54:58:c8:d2:a8:3c:07:9b:e8:a5:ff:ea:0a:5f:f3:58:
d6:3b:05:f5:de:b5:45:5f:89:6f:66:0f:8f:50:30:55:4c:b5:
ae:7a:35:23
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUV0Du5dUNAWF8QuvjvpDTEVyNyoEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz
NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDJaFw0yNTA4MzEwNzAwMDJaMDMxMTAvBgNV
BAMTKEJBMUI2QTE0OTBFNzU2NzBFODgxOEQ4QzA1MjI0NUY3QzY1MDIwNkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCxrZKl86fiJC3tFcZ/zzHUPUm
29XyPRHkdGl21iQrDr0s2BN+P9Lug5Ry2MThxNdYlo6KQLrmnkwlfDqE5C7ndl0V
Y6Y/SN+MHeafcNYTxQhDuOLwIqKf0/G8y+vP5AF2+wWr3RZDt+oydYDV1f9iX6ek
IA6Fcw7s1zF+c2PZQX+xf/veUvNHP/xtrHRYcnqGMh7vaClWaSSsGvWvLQ4a2NLE
TamNq9iZgg6EHEiv9ey8rdxzeJ9u4IVz+EUVi5+ruTb3xrf/sk+dkmEdeZW9Ao7Y
Gy5uX3IvXvwoLXZfaObGNIlV3Snc05u8wBNWd6TXzAyWo9tJSoF4hseqQT0jAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUuhtqFJDnVnDogY2MBSJF98ZQIGowHwYDVR0j
BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF
MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD
Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04
OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzIzMDMwMzAz
YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk
BiDAIDANBgkqhkiG9w0BAQsFAAOCAQEAs4FiEBvaw9RezMc+W8gC4ffzoZaXaFJS
gEQkdUBydLuHCmvpDurYKs/kuSmwudg+sb8+J26wO78TyNMvr8tvV4KOcKHKGdlp
PeDAKQnUcqDk95m1MnkdkLqrgsDHmo2SgHcyU3Kw4EIUXTaZ0a4Z27Gl4Njbtv6W
UBE5eGqY5xFY29+kcwx5e2WVERkmNr1LLFEA7b0M6sQRZjqcbvHub4sx1w6Yz2j5
vWwd3VyPejTOdtay4+46bmgfVf3W2thY3A1Bz08WhjJeZZjFEX6t4+Qf4UgDl4ps
YUlUWMjSqDwHm+il/+oKX/NY1jsF9d61RV+Jb2YPj1AwVUy1rno1Iw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:35 2025 by rpki-client