Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa
File: 323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa (raw, json)
Hash identifier: 1JC9FyMkLbjMnYmgtX2+wmyCS3HXOHrjLSp6vYgJBsA=
Subject key identifier: C0:4B:85:38:76:B8:D9:65:9B:6D:51:DA:BD:0B:78:2C:64:F4:73:B6
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 2CFB5C058B51107995B1EB893F1E5E16A3D5B0FB
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa
Signing time: Sun 01 Sep 2024 07:00:00 +0000
ROA not before: Sun 01 Sep 2024 06:55:00 +0000
ROA not after: Sun 31 Aug 2025 07:00:00 +0000
asID: 140423
IP address blocks: 2406:20c0:4000::/35 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:fb:5c:05:8b:51:10:79:95:b1:eb:89:3f:1e:5e:16:a3:d5:b0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Sep 1 06:55:00 2024 GMT
Not After : Aug 31 07:00:00 2025 GMT
Subject: CN=C04B853876B8D9659B6D51DABD0B782C64F473B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:88:6b:0b:85:b5:ca:fc:06:1c:a7:0e:e1:65:
ca:81:04:59:4c:e3:9a:bf:c7:15:5f:7e:f5:21:fa:
84:e0:27:4a:11:da:6b:c5:0d:83:39:4d:bf:a7:15:
45:60:c9:bf:9c:94:58:fd:b1:b7:0e:58:67:35:44:
56:72:21:3d:82:5b:19:82:ae:b2:23:db:cc:cc:c7:
c5:bd:1d:b8:86:3f:77:bb:7a:5c:e4:d6:53:a4:54:
10:96:cf:fa:fa:ee:0a:5a:6d:41:fa:a3:a7:55:37:
92:69:a0:6b:90:2c:51:51:75:2b:9a:b5:2d:16:1b:
9d:dc:9a:5a:3a:b7:bb:ed:40:2a:05:54:0e:53:0b:
3d:2c:43:91:9d:02:d1:c9:dc:1d:61:03:05:e9:31:
d5:d2:4a:29:b8:29:4d:7e:5f:56:1d:4b:88:3e:51:
87:e4:ab:e4:49:ff:87:71:8c:77:9a:58:ff:5f:ef:
43:87:05:94:df:4a:d4:8d:c5:86:71:2a:11:8c:dc:
7e:d3:ec:ae:d8:34:36:98:5c:8d:2d:ee:2d:f9:7d:
7e:45:71:27:2c:2a:55:51:86:b1:7b:6a:59:32:3a:
c7:38:53:7e:fa:5d:10:c6:e5:81:34:10:97:73:06:
03:ce:55:31:95:5f:86:6a:de:32:de:43:f3:51:60:
62:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4B:85:38:76:B8:D9:65:9B:6D:51:DA:BD:0B:78:2C:64:F4:73:B6
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:4000::/35
Signature Algorithm: sha256WithRSAEncryption
c9:82:c8:59:99:24:f0:24:3f:36:cb:d5:d0:89:e9:ea:6f:6a:
40:88:3b:66:e2:3f:52:b5:4b:b4:55:70:bc:ef:2b:ee:df:03:
1d:28:89:26:09:c7:ea:49:e8:23:c3:0c:a7:62:61:a2:9c:fe:
c4:67:97:76:86:7e:de:d6:14:ce:cf:d7:bb:48:63:97:39:e3:
09:0d:9e:28:7f:19:1b:45:60:03:5e:70:28:c4:b6:20:7f:7c:
c0:ba:d0:09:14:e9:57:82:d7:6f:00:ab:5c:fb:d0:fc:77:f6:
f7:c9:bf:f2:70:63:cf:62:35:e2:9a:d1:35:27:db:2f:d5:96:
98:ab:ce:a6:7f:e2:57:16:0e:b5:4f:3e:10:d5:e4:0f:c7:f8:
ef:40:25:e1:14:97:d9:e2:fb:28:d2:99:9b:2c:d2:61:15:41:
23:4e:2c:f7:6a:7d:2b:f8:87:cb:f5:65:e2:cf:bc:7a:75:b8:
4e:4d:14:38:4d:b5:57:dc:a1:08:40:6e:ed:92:0b:df:da:e6:
f3:46:59:b5:57:58:ed:90:45:c3:87:23:43:f9:13:2d:9d:a0:
c6:5a:f0:3a:f9:a0:47:13:8d:97:f7:89:2d:c8:b5:97:ea:ee:
57:d9:55:82:e1:c1:23:74:50:96:de:f9:36:51:f7:a7:da:4a:
8c:dc:2a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:39 2025 by rpki-client