Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa
File: 323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa (raw, json)
Hash identifier: Nb4Fc+15jIpaI+MGgLgLtVk5YCQoNLLi90DaZNrzqmk=
Subject key identifier: F4:1D:22:4E:C6:17:E2:DB:4B:0C:C3:49:FF:41:A2:14:8D:F6:BB:F9
Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Certificate serial: 0BE167CE41E5DFA72F61CF1AE796A0BCD746BCDA
Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa
Signing time: Wed 01 Jan 2025 04:00:39 +0000
ROA not before: Wed 01 Jan 2025 03:55:39 +0000
ROA not after: Wed 31 Dec 2025 04:00:39 +0000
asID: 23679
IP address blocks: 2401:2900:8007::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:e1:67:ce:41:e5:df:a7:2f:61:cf:1a:e7:96:a0:bc:d7:46:bc:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Validity
Not Before: Jan 1 03:55:39 2025 GMT
Not After : Dec 31 04:00:39 2025 GMT
Subject: CN=F41D224EC617E2DB4B0CC349FF41A2148DF6BBF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b4:f5:00:a5:ba:eb:b4:61:fd:6e:49:16:75:
35:db:29:18:11:d9:db:dd:89:0b:ad:07:9f:46:b6:
16:d0:ef:a6:66:71:69:61:21:41:1e:66:27:6b:fe:
7f:d9:13:66:b9:ac:71:b6:88:51:9f:d4:c7:ff:7b:
4a:61:1f:91:5b:41:82:be:2d:37:cc:5c:fe:22:4f:
d1:92:ef:55:cd:d5:6f:fa:b2:df:70:f8:13:b4:0d:
a2:92:5a:cd:45:c8:6d:3a:68:70:03:5c:5f:22:c0:
78:8b:ba:8e:c4:f7:44:a1:e9:40:d0:f8:3c:a6:8f:
6e:15:0d:fe:a5:25:6c:d7:6f:a3:e0:2c:6d:a6:52:
9b:c0:ff:2b:1c:3d:fc:2a:6e:55:e3:d9:8f:d5:23:
35:d5:a7:aa:f9:d2:c2:28:cb:5f:ab:1e:c0:af:96:
c1:ef:49:7b:86:54:eb:ae:89:2e:9b:dc:dc:52:7d:
1a:f4:0b:9a:c3:96:6d:b1:a7:2b:e8:3e:ba:32:b1:
4d:9b:bb:2c:de:d1:12:46:5c:17:77:93:00:86:75:
ab:32:41:36:f8:40:d8:6d:6a:8c:d7:2c:d0:b2:63:
ad:b7:06:6e:41:52:19:9b:bd:8b:8c:53:2f:3e:e2:
56:1f:61:65:cc:63:c3:9f:71:86:01:01:9f:36:4d:
7c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1D:22:4E:C6:17:E2:DB:4B:0C:C3:49:FF:41:A2:14:8D:F6:BB:F9
X509v3 Authority Key Identifier:
keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2900:8007::/48
Signature Algorithm: sha256WithRSAEncryption
ad:b4:fb:c4:37:2b:05:b7:8d:1b:1e:23:75:82:4c:e5:58:fe:
32:21:cf:4a:8c:28:16:1a:25:f8:26:34:b6:21:68:b3:88:4b:
e9:56:d2:1a:59:45:e0:2a:d5:24:97:c6:b2:83:da:b0:c4:4f:
4c:78:73:21:8e:5d:12:eb:48:d6:1b:f5:a0:75:fd:94:b7:31:
13:5e:77:af:92:8c:dd:ed:4a:19:7e:89:9f:29:58:50:57:cc:
7e:5e:cc:e7:63:6f:2b:9d:45:ef:3c:d1:a2:b8:16:38:a3:5e:
5e:64:41:a0:9d:aa:48:bb:45:17:13:de:a6:86:98:35:92:6b:
5f:cc:ee:76:21:dc:9e:72:01:6f:d2:f0:7f:47:cc:17:db:db:
d3:70:94:08:79:9e:bb:cf:2c:71:57:ec:6a:12:19:75:7e:e1:
dc:80:99:a0:20:99:64:c9:84:41:83:27:ab:35:d8:9b:48:58:
ce:f7:dc:7b:f6:d9:29:cf:0a:a6:6a:cf:ed:9a:2c:7e:83:98:
94:92:e7:81:de:84:10:bb:a4:bd:91:0d:55:1d:00:48:65:3d:
f7:46:d0:05:c4:5f:28:b0:57:9b:5e:1d:9d:7f:04:cc:9c:2f:
88:8a:18:a8:4c:7c:47:d0:cb:42:96:0e:5e:2f:19:7e:ed:33:
67:e1:db:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:40 2025 by rpki-client