Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa
File: 323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa (raw, json)
Hash identifier: pfJ/NGUUx1LM3aPRaWoeTvzW7WcK7Ad5seB5stsTsdI=
Subject key identifier: 29:8F:D9:16:7B:6C:FA:8E:77:37:58:CA:D8:8B:42:88:5A:77:4B:0A
Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Certificate serial: 1BE6E992C521D56728078803D29575594BD4664A
Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa
Signing time: Wed 01 Jan 2025 04:00:37 +0000
ROA not before: Wed 01 Jan 2025 03:55:37 +0000
ROA not after: Wed 31 Dec 2025 04:00:37 +0000
asID: 23679
IP address blocks: 2401:2900:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:e6:e9:92:c5:21:d5:67:28:07:88:03:d2:95:75:59:4b:d4:66:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Validity
Not Before: Jan 1 03:55:37 2025 GMT
Not After : Dec 31 04:00:37 2025 GMT
Subject: CN=298FD9167B6CFA8E773758CAD88B42885A774B0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:75:f2:4e:30:1c:f9:ac:22:d2:e4:21:ce:4f:
51:f4:02:7d:15:45:6d:0c:75:0b:e1:60:f6:3d:75:
0a:22:43:7c:c7:f9:3a:d0:9d:c8:bc:cb:2c:79:c2:
f5:db:22:c3:67:9d:53:35:bc:5d:ed:ba:8b:d1:53:
86:45:ac:1b:96:71:a7:67:dd:4f:8d:f2:05:6d:07:
7e:84:a2:92:31:48:fb:fb:53:57:06:56:e6:59:b9:
d2:d2:ad:e5:2f:86:d7:19:0d:60:73:cd:56:bf:5e:
86:39:d1:59:16:d8:13:0c:ba:e6:a6:ff:cc:5a:cb:
be:4d:cc:ea:cc:b5:4f:7b:4e:c4:8d:d0:ca:5d:8f:
1a:18:2d:b9:85:41:62:b0:a0:3d:06:c3:6b:c1:55:
c9:42:aa:d1:d2:00:5f:b0:c6:dd:72:7b:cb:47:3f:
e1:8c:bb:89:fe:02:4a:8a:6b:69:cf:aa:06:6e:ce:
b5:62:b3:a5:45:7e:c3:ae:58:6b:51:07:6e:7e:9c:
01:3e:34:c7:79:a4:57:b6:7e:a9:57:97:71:33:7f:
5d:c7:0b:41:57:cb:17:74:41:6a:dc:cd:c2:5e:bb:
78:76:72:e2:fd:b8:86:d3:a7:89:40:80:91:34:c2:
de:1a:50:22:51:f9:bc:a6:e2:04:be:98:9b:b8:52:
33:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8F:D9:16:7B:6C:FA:8E:77:37:58:CA:D8:8B:42:88:5A:77:4B:0A
X509v3 Authority Key Identifier:
keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2900:8000::/33
Signature Algorithm: sha256WithRSAEncryption
4e:1b:82:20:b4:54:ac:47:03:a7:6c:13:29:3e:be:06:01:94:
a8:da:40:86:f9:44:61:78:d7:aa:1b:31:f8:24:b8:e6:31:d5:
03:0d:35:dc:ba:ae:92:cd:f9:92:6a:e1:90:c4:e5:c7:2b:d6:
5c:7a:04:3f:e9:ea:84:d2:58:22:d8:34:39:02:12:c5:cb:05:
36:4b:87:65:80:54:d0:2a:5f:12:61:25:ad:e0:e5:c4:c4:f8:
a8:a4:bb:1c:1e:95:fd:58:97:ea:68:0d:fc:f6:64:4f:30:2a:
4d:85:b7:d8:38:65:17:d8:d4:07:18:3f:e0:e5:7c:4e:54:f4:
0f:dc:cb:c9:8f:07:51:7c:bf:16:ca:0f:21:2d:6a:90:db:99:
90:62:7c:81:33:8b:d2:03:35:ae:db:f6:bb:ca:30:8a:12:a3:
37:58:ab:36:32:ea:2d:ff:1d:51:cb:46:53:46:ac:dc:29:e1:
2c:0e:cf:48:b5:69:b6:7d:83:f0:36:d7:1d:a2:0f:f3:6c:7f:
15:6e:39:14:e7:da:87:d3:75:6c:8d:a6:47:78:2c:52:b8:b7:
e9:ad:21:8a:86:df:25:60:bb:cb:01:40:e1:96:65:52:ec:cd:
20:93:b2:24:0e:3f:3a:02:47:f0:8d:3b:99:16:ba:f6:b7:93:
9d:74:86:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:56:52 2025 by rpki-client