Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa
File: 323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa (raw, json)
Hash identifier: u2Q/ANttrVEJH/MjzVXyD7Myag3Br9h/iBWMPEiN/s4=
Subject key identifier: 2A:88:3C:51:5F:97:BC:BD:6D:48:C5:0F:AD:45:00:F2:64:DD:9A:9F
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 6840036C2B34D4AB764B6C36A556FECDC5657FC4
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa
Signing time: Fri 10 Jan 2025 12:00:02 +0000
ROA not before: Fri 10 Jan 2025 11:55:02 +0000
ROA not after: Fri 09 Jan 2026 12:00:02 +0000
asID: 140423
IP address blocks: 2406:20c0:6000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:40:03:6c:2b:34:d4:ab:76:4b:6c:36:a5:56:fe:cd:c5:65:7f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Jan 10 11:55:02 2025 GMT
Not After : Jan 9 12:00:02 2026 GMT
Subject: CN=2A883C515F97BCBD6D48C50FAD4500F264DD9A9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:78:4d:3c:92:c3:92:0e:4f:1c:16:55:35:49:
1e:b4:5d:e0:99:91:67:40:63:6c:c1:c2:aa:1d:4f:
e0:d2:80:9c:b2:0b:24:6e:1b:4e:ec:e7:80:72:b6:
44:db:f4:a4:2a:19:6d:df:d3:ab:0a:c3:d5:f3:63:
a3:73:b1:cf:ce:e6:09:ae:3c:ae:14:09:4c:32:63:
f3:0c:25:46:f2:5f:62:f3:f4:86:a1:8a:34:66:50:
74:a2:d8:ab:15:7c:ab:53:8d:0c:20:af:67:e5:8e:
52:85:b7:87:00:b7:c8:69:c3:cf:63:5a:89:66:5b:
3d:09:17:d3:07:3f:a9:e6:3d:36:9d:d0:1b:b5:1e:
dc:bb:7c:8e:2c:33:ba:4f:18:6a:86:d1:47:86:b0:
ac:0c:b0:26:a0:8a:2b:25:40:58:3c:66:76:bb:b6:
84:97:02:b0:12:e1:fd:63:17:2b:90:f3:fa:74:85:
3e:cb:7d:d5:e3:1c:9f:71:1a:c7:2e:f0:b3:35:57:
b7:76:50:40:83:38:08:6d:e4:e0:b1:53:6b:e4:e4:
26:d3:ab:48:ce:0c:49:36:1d:55:2e:a3:cd:67:10:
01:f9:80:32:b4:02:49:05:fb:b7:e7:29:7c:50:c5:
0f:05:83:7d:21:d5:2e:34:52:d7:f0:8e:2a:2d:e3:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:88:3C:51:5F:97:BC:BD:6D:48:C5:0F:AD:45:00:F2:64:DD:9A:9F
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
86:59:29:0c:0f:18:38:c0:d5:f6:db:3d:92:6b:88:ff:f1:25:
6b:ec:57:56:77:c2:d0:83:5f:33:71:e7:95:32:72:14:4d:53:
c2:cf:3a:b5:b5:17:50:b3:27:8f:2b:44:8f:76:99:30:1e:c8:
1e:6c:30:db:8d:fe:ac:81:22:78:a3:95:55:37:2c:2a:10:96:
eb:84:57:19:38:86:46:50:5e:cc:cc:9a:78:c0:3d:61:9f:83:
d1:48:e0:ca:3c:a2:c0:85:6d:5c:c0:5f:36:b7:36:fb:c8:70:
87:6d:c4:cc:84:3d:be:ec:01:42:1d:df:89:58:b1:5e:11:d5:
20:b2:c4:43:07:21:fc:80:8a:4c:f7:d8:7a:c0:54:9f:c6:e4:
d3:d5:db:9c:70:3f:88:fb:e6:58:b6:79:54:44:79:cd:35:42:
1f:5c:48:5f:6d:21:66:20:55:fe:15:df:ce:32:96:aa:58:4d:
cb:53:56:18:c1:56:fe:1a:e1:5c:61:f6:17:c3:4f:0a:a3:36:
84:f3:64:92:8a:11:81:f4:e7:b6:f6:bb:8b:08:e2:a1:b7:94:
d9:a1:c0:5c:87:e4:d8:d8:f6:82:79:05:da:34:37:c9:e5:14:
de:87:7a:a7:28:59:59:11:5b:7f:10:8f:87:c3:69:17:5b:ea:
a7:3d:3d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:35:47 2025 by rpki-client