Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa
File: 323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa (raw, json)
Hash identifier: f+QA2MdOH3pD5wnFB0dGm2Zrsg4T8gtTfRmGOdNWdhQ=
Subject key identifier: 69:20:0F:D0:8E:94:B1:64:0D:FD:86:6F:82:7F:D3:14:93:1E:13:62
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 24FA4A437286D30EA694648A43B6FF8B6B7E2A12
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa
Signing time: Thu 26 Dec 2024 08:58:58 +0000
ROA not before: Thu 26 Dec 2024 08:53:58 +0000
ROA not after: Thu 25 Dec 2025 08:58:58 +0000
asID: 153087
IP address blocks: 2404:97c0:220::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:fa:4a:43:72:86:d3:0e:a6:94:64:8a:43:b6:ff:8b:6b:7e:2a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Dec 26 08:53:58 2024 GMT
Not After : Dec 25 08:58:58 2025 GMT
Subject: CN=69200FD08E94B1640DFD866F827FD314931E1362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:69:db:3d:2e:b1:0a:6e:db:e3:90:59:30:99:
76:1e:1a:00:14:ae:6a:d5:e9:dd:96:bd:aa:7c:db:
9c:73:f1:70:5a:f8:02:48:c8:1e:28:d5:2b:61:48:
e9:9c:b8:0f:29:48:1f:77:fb:e2:32:79:de:ea:9c:
0a:ec:38:c1:c7:00:8a:ac:47:d9:08:f1:f5:a9:d3:
40:b9:c8:c3:68:cd:08:aa:59:45:5d:82:f7:43:93:
c3:bf:9d:a7:82:a8:a8:2c:13:b4:40:e9:49:cc:f8:
fe:b0:cd:fa:71:27:08:78:7d:30:6b:bb:89:49:bc:
f3:fb:d5:c9:f7:16:e6:39:e4:f4:06:9f:b5:5d:66:
ba:05:9d:e7:42:22:13:da:2f:7d:9b:87:e6:cb:c1:
f0:a7:21:9a:af:da:b6:32:9c:6f:9e:97:b1:e4:0a:
35:8a:d5:1d:cf:79:89:29:d2:85:e5:b3:ba:6d:07:
99:27:57:73:99:73:e8:fd:50:60:90:95:04:bb:fe:
fb:49:14:ca:51:9b:50:72:28:ac:42:be:7e:2e:f9:
97:18:14:2f:28:5f:8f:08:13:b5:0a:23:ec:2b:85:
83:6c:ce:69:30:cf:dc:d8:c0:d5:f9:e6:54:e6:24:
37:8c:eb:bf:65:6b:f5:24:cd:1f:ae:a5:b0:8b:0e:
20:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:20:0F:D0:8E:94:B1:64:0D:FD:86:6F:82:7F:D3:14:93:1E:13:62
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:220::/44
Signature Algorithm: sha256WithRSAEncryption
71:46:97:a8:b8:e5:ba:94:18:97:8c:93:02:19:9a:46:f8:0f:
3e:68:b8:78:87:2d:ad:73:05:eb:d4:72:f1:e1:b4:51:8c:a9:
53:8f:c8:47:86:90:43:1b:e5:bc:e0:00:94:65:87:2f:e0:93:
b1:5a:21:91:a6:cf:29:16:57:21:58:bb:1f:0c:80:47:d7:12:
69:b1:a1:67:36:6f:0d:ae:66:17:cf:5d:c7:20:cd:17:98:10:
15:44:56:cb:0f:72:2c:f2:cd:61:3c:21:6a:30:d8:95:39:17:
cf:5c:3d:f2:3a:28:dd:a6:b6:68:8e:28:90:45:f0:2b:10:fb:
23:0d:c2:3e:aa:65:31:12:e8:3a:56:bb:0b:bf:3e:20:0f:47:
da:ee:73:93:92:2e:ab:a0:24:e2:35:70:0c:5e:e6:c8:43:cc:
2f:49:05:94:83:25:9c:4a:42:fe:ff:63:d9:37:4d:25:13:4b:
7d:b6:74:f0:e4:5d:e6:ae:c1:7d:61:e8:17:b1:c1:59:b9:ca:
1e:ed:50:a5:47:4e:b3:24:03:58:b2:10:b5:d3:71:e8:2a:1e:
5d:0b:8c:0a:50:b5:61:d5:5a:b5:0b:ea:73:2b:f4:c5:3a:93:
63:a4:48:95:89:0d:d8:ff:2c:29:e9:b8:ca:a6:b2:f6:97:5d:
8a:85:1e:0a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUJPpKQ3KG0w6mlGSKQ7b/i2t+KhIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4
QzFENTE1ODAeFw0yNDEyMjYwODUzNThaFw0yNTEyMjUwODU4NThaMDMxMTAvBgNV
BAMTKDY5MjAwRkQwOEU5NEIxNjQwREZEODY2RjgyN0ZEMzE0OTMxRTEzNjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXads9LrEKbtvjkFkwmXYeGgAU
rmrV6d2Wvap825xz8XBa+AJIyB4o1SthSOmcuA8pSB93++Iyed7qnArsOMHHAIqs
R9kI8fWp00C5yMNozQiqWUVdgvdDk8O/naeCqKgsE7RA6UnM+P6wzfpxJwh4fTBr
u4lJvPP71cn3FuY55PQGn7VdZroFnedCIhPaL32bh+bLwfCnIZqv2rYynG+el7Hk
CjWK1R3PeYkp0oXls7ptB5knV3OZc+j9UGCQlQS7/vtJFMpRm1ByKKxCvn4u+ZcY
FC8oX48IE7UKI+wrhYNszmkwz9zYwNX55lTmJDeM679la/UkzR+upbCLDiB5AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUaSAP0I6UsWQN/YZvgn/TFJMeE2IwHwYDVR0j
BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy
MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE
NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05
Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwM2Ez
YTJmMzQzNDJkMzQzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJASX
wAIgMA0GCSqGSIb3DQEBCwUAA4IBAQBxRpeouOW6lBiXjJMCGZpG+A8+aLh4hy2t
cwXr1HLx4bRRjKlTj8hHhpBDG+W84ACUZYcv4JOxWiGRps8pFlchWLsfDIBH1xJp
saFnNm8NrmYXz13HIM0XmBAVRFbLD3Is8s1hPCFqMNiVORfPXD3yOijdprZojiiQ
RfArEPsjDcI+qmUxEug6VrsLvz4gD0fa7nOTki6roCTiNXAMXubIQ8wvSQWUgyWc
SkL+/2PZN00lE0t9tnTw5F3mrsF9YegXscFZucoe7VClR06zJANYshC103HoKh5d
C4wKULVh1Vq1C+pzK/TFOpNjpEiViQ3Y/ywp6bjKprL2l12KhR4K
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:51:20 2025 by rpki-client