Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa
File: 323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa (raw, json)
Hash identifier: cFUzi273SYArAUsUFdIqNgQFTFMOnTlJq02/dC40bZE=
Subject key identifier: F0:AC:C2:87:43:5E:20:DA:9C:DB:70:F5:84:78:CB:CB:63:EF:3D:14
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 469F363A739C3263EDF33A95B24FFCBCF41C791E
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa
Signing time: Tue 10 Dec 2024 05:56:32 +0000
ROA not before: Tue 10 Dec 2024 05:51:32 +0000
ROA not after: Tue 09 Dec 2025 05:56:32 +0000
asID: 153087
IP address blocks: 2404:97c0:a000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:9f:36:3a:73:9c:32:63:ed:f3:3a:95:b2:4f:fc:bc:f4:1c:79:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Dec 10 05:51:32 2024 GMT
Not After : Dec 9 05:56:32 2025 GMT
Subject: CN=F0ACC287435E20DA9CDB70F58478CBCB63EF3D14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:2d:e4:92:80:32:ad:4b:a7:e7:a3:ed:6a:
b7:02:d8:59:44:b4:fa:a2:c0:e2:92:1b:03:63:f7:
48:6e:3e:27:b9:b4:67:e1:88:f9:b5:b4:f2:d0:e9:
ba:66:30:21:72:ec:79:95:b7:cc:93:80:f4:be:d9:
6c:ab:1d:1d:e4:80:0a:a1:3b:92:0a:f5:59:14:8c:
55:b0:27:df:2c:da:47:34:a7:be:59:b4:b8:41:74:
f4:3c:80:4b:50:5f:ab:c6:42:39:03:82:7e:7e:98:
65:08:80:9f:2e:ea:ef:60:2a:c3:b1:20:8f:5f:30:
64:0c:36:8f:29:11:2e:00:8c:77:d3:58:e2:3b:fd:
c3:18:57:9a:75:75:e5:df:d2:01:71:ac:99:52:5d:
67:b1:ee:15:ac:11:9c:6f:c8:da:b5:19:fc:a3:fd:
13:4c:ef:b3:a2:06:e2:34:09:35:fc:4e:ef:04:0e:
12:85:1c:a5:b3:be:71:4b:69:49:a9:68:33:49:19:
3c:a6:26:31:d4:7b:a1:2f:3f:1f:44:b7:72:e4:8f:
fa:5d:37:59:cb:05:75:d2:be:4e:3d:7b:cf:72:1f:
bf:9d:fd:89:1f:38:23:6e:bf:d8:6c:7a:bf:8d:22:
23:6e:71:64:c1:01:ac:de:b0:b1:52:0f:89:66:2d:
4c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:AC:C2:87:43:5E:20:DA:9C:DB:70:F5:84:78:CB:CB:63:EF:3D:14
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:a000::/36
Signature Algorithm: sha256WithRSAEncryption
63:26:e5:43:26:32:1c:1c:6f:26:76:94:ec:54:e2:c6:7c:72:
84:56:50:cf:ad:9d:dd:ed:8c:84:0a:fb:b5:b5:8c:87:05:22:
58:3d:f8:42:59:f6:ac:63:7b:90:ee:90:21:ef:95:e4:4d:41:
07:30:ab:09:6c:9c:2d:34:b1:b7:97:39:70:cb:1f:a5:cb:44:
4a:9d:e2:c0:74:3b:39:53:c7:9b:d6:c0:85:12:07:88:96:2d:
42:b9:53:2b:af:a5:fb:c5:1b:2b:aa:de:66:07:39:19:a7:dd:
9b:8b:dd:eb:7d:98:01:17:33:9c:e8:cf:ae:cd:b1:36:77:bc:
46:b9:a0:fb:9b:c7:ee:c3:1c:dc:08:76:fa:95:00:93:e9:91:
2c:8b:41:33:63:13:d8:8e:78:91:97:6d:4d:89:63:47:d0:a5:
2d:46:3c:14:c1:9d:90:cb:81:15:61:33:a7:64:0f:a4:cd:1a:
6d:0f:41:ea:fe:e9:b3:f9:0a:65:49:a1:a7:4a:97:72:38:0c:
7b:c3:86:3e:90:6c:62:65:f1:1d:22:32:3a:62:93:b0:f8:c5:
d9:96:07:1f:01:d8:e3:56:6f:6e:4c:66:c2:20:fb:fd:ee:e7:
3c:ad:c9:2c:de:80:28:33:ce:cd:8d:22:ad:e2:88:e2:b8:e4:
cf:6f:35:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:54:38 2025 by rpki-client