Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa
File: 323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa (raw, json)
Hash identifier: cxeG/IrThDVcrJLqiR+F8PkUnxZgE0ih3pJLKwrnxgw=
Subject key identifier: 65:18:1C:86:82:96:EE:70:7D:DA:EA:C4:BF:62:AA:1C:06:64:98:37
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 01B3699BDA325833893B59457B80FE55178A2C7F
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa
Signing time: Fri 10 Jan 2025 12:00:02 +0000
ROA not before: Fri 10 Jan 2025 11:55:02 +0000
ROA not after: Fri 09 Jan 2026 12:00:02 +0000
asID: 140423
IP address blocks: 2406:20c0:c000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:b3:69:9b:da:32:58:33:89:3b:59:45:7b:80:fe:55:17:8a:2c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Jan 10 11:55:02 2025 GMT
Not After : Jan 9 12:00:02 2026 GMT
Subject: CN=65181C868296EE707DDAEAC4BF62AA1C06649837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:07:d8:ed:bd:ed:8a:d2:a7:5a:f5:51:9b:47:
02:4f:7d:09:bc:27:79:8a:b0:ca:08:27:41:86:9c:
c7:85:29:f1:94:c6:1d:5a:e1:33:15:4d:f3:e9:f5:
92:aa:63:26:dc:ab:a6:3f:ea:87:41:c4:69:a0:34:
29:9b:03:fc:5f:a9:bb:d2:d0:20:92:3e:61:f4:99:
79:f6:ab:90:28:fc:71:80:73:39:82:e0:39:34:bb:
5e:bf:66:d1:5f:8c:8f:e8:ef:3c:90:c5:0e:41:92:
b9:23:12:9c:ea:7e:65:2a:a6:ec:c7:77:ab:48:58:
b2:08:7b:8e:9c:a8:79:54:02:d3:6b:f8:3c:7b:fe:
47:90:d3:0e:c1:91:95:2b:09:c4:45:92:c6:e0:c0:
59:75:c8:84:7d:67:5b:69:b7:a1:f0:1f:3b:85:3a:
5c:d3:47:f0:f6:43:2f:36:c9:d5:78:84:60:7f:4a:
77:e0:7c:27:61:e8:49:cf:bd:5d:7f:d0:55:42:36:
92:22:36:1c:ad:89:06:50:db:51:93:16:bd:46:7d:
7e:fe:86:9c:ec:fa:30:0e:30:9d:98:b8:01:f2:93:
2f:62:b5:92:f9:57:b8:7a:2c:5f:5f:12:b6:90:c0:
f9:01:0c:ec:93:0d:9a:41:b9:d4:64:95:14:23:f9:
5b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:18:1C:86:82:96:EE:70:7D:DA:EA:C4:BF:62:AA:1C:06:64:98:37
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:c000::/36
Signature Algorithm: sha256WithRSAEncryption
7b:73:d5:12:f3:95:26:1d:f0:89:af:30:9c:73:44:7f:d5:c3:
07:c0:ed:21:91:c6:b3:0e:e9:8e:96:6a:da:8a:0f:55:06:d8:
34:3c:a2:76:5c:45:26:3b:e0:b6:fb:e3:9e:93:91:62:64:5e:
d2:0b:3c:a3:e6:fc:a0:51:b1:ad:22:9b:ed:98:75:1f:0b:34:
94:46:71:e9:f0:35:2c:13:68:eb:2a:9f:fc:2a:cb:68:bb:05:
11:da:8c:9e:01:6a:15:1f:9e:d8:6d:04:60:a7:5b:22:22:80:
1a:87:fa:73:b5:85:62:b4:10:07:28:5c:2f:23:4c:8c:be:eb:
bb:96:38:c0:cc:43:db:12:2d:0b:11:e4:3e:43:6a:90:6a:98:
e3:69:86:fb:06:46:5a:94:e7:a9:da:c9:3c:75:a4:e9:da:97:
7b:ec:01:a6:84:8c:ea:42:4b:c9:28:49:07:d9:4c:d2:e2:aa:
22:67:8a:c5:fc:df:77:b5:61:66:67:8a:e0:d6:cb:b7:fb:5d:
90:05:67:91:53:43:d1:a7:85:c0:de:65:ae:f7:b2:f8:d6:48:
f6:f8:e7:73:7b:ac:d3:f7:86:1d:4b:bc:4a:73:04:58:dd:fb:
1c:8c:a6:01:dc:d5:33:1b:76:bb:58:f2:92:a6:1e:e4:5a:57:
f8:c4:a9:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:01 2025 by rpki-client