Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa
File: 323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa (raw, json)
Hash identifier: RGEqeow39tgdeXUNI6+lQkX6kyizfiwRAIICEchQEvw=
Subject key identifier: 45:68:E0:FF:4F:32:9F:AF:C5:5C:E9:FF:ED:56:D2:F7:B5:22:12:BC
Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Certificate serial: 0C5ACF820493C068D0B8B239768564A4B40F7A1C
Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa
Signing time: Sun 02 Jun 2024 14:00:02 +0000
ROA not before: Sun 02 Jun 2024 13:55:02 +0000
ROA not after: Sun 01 Jun 2025 14:00:02 +0000
asID: 140413
IP address blocks: 2406:13c0:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:5a:cf:82:04:93:c0:68:d0:b8:b2:39:76:85:64:a4:b4:0f:7a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Validity
Not Before: Jun 2 13:55:02 2024 GMT
Not After : Jun 1 14:00:02 2025 GMT
Subject: CN=4568E0FF4F329FAFC55CE9FFED56D2F7B52212BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:34:d8:1f:0f:a6:d1:f1:af:76:55:4c:b9:f5:
63:87:f7:b6:b8:9a:05:26:fe:12:89:cc:5c:e1:4e:
f9:2f:62:c7:3b:d3:24:82:ea:8c:4c:36:14:d9:f3:
c1:65:91:b9:73:6e:a1:e3:50:27:7e:0c:7f:22:0a:
9f:50:d4:61:80:ce:6b:cd:b7:89:92:46:c8:8e:ac:
f4:ac:5c:cc:24:44:33:62:61:c9:da:fa:39:db:af:
8d:15:1b:63:aa:b3:a0:b9:59:a0:ad:06:6a:30:85:
d5:53:d8:29:9f:f9:7b:e2:06:00:fe:b0:d8:ad:3b:
1a:09:59:93:c7:71:1d:29:b2:53:26:c2:29:a2:50:
b9:c9:b5:e8:f6:cf:d0:01:15:4b:4e:14:1e:b1:b2:
9f:e9:a7:47:66:41:46:c0:e5:95:59:f0:69:33:5f:
79:1f:84:a6:fd:a4:87:80:18:3c:6e:1a:56:2d:22:
97:8f:fb:43:69:17:5e:40:e5:ac:d3:9d:27:4a:ed:
ce:56:8d:27:66:dd:59:64:f4:ef:56:0a:3f:89:f1:
d8:0a:7a:84:6b:5d:c1:43:df:b6:8b:d7:50:5f:47:
de:0d:c8:43:84:22:fe:89:65:3d:4d:30:86:cd:d5:
4a:7d:45:91:6e:6c:b4:57:c9:04:d8:f5:57:27:b1:
9b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:68:E0:FF:4F:32:9F:AF:C5:5C:E9:FF:ED:56:D2:F7:B5:22:12:BC
X509v3 Authority Key Identifier:
keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:13c0:5::/48
Signature Algorithm: sha256WithRSAEncryption
3e:4c:01:c1:60:4f:96:84:ad:7d:0c:56:5b:ca:a8:7b:54:92:
a1:f4:04:4b:e5:e9:da:9c:db:78:77:bc:67:74:6c:b3:1f:9a:
f7:34:24:4b:cd:60:5d:14:3f:77:5a:05:55:2c:42:c4:1a:d6:
bc:95:09:45:69:05:0f:f3:e2:ae:84:9e:82:b6:05:de:df:8a:
35:2f:1e:6c:02:4b:43:91:4d:7c:80:4b:58:49:95:58:af:8e:
ad:66:9a:ef:9d:21:86:81:ef:cb:7b:dd:e0:cc:d7:db:8d:51:
cd:01:1f:03:9e:d4:b0:72:c1:1c:20:08:9f:db:27:64:57:8a:
dd:a6:4d:63:5d:6d:34:af:66:11:78:09:26:21:5c:d5:2a:94:
d7:08:19:14:b8:c0:bb:53:e7:3d:cb:cd:8b:9a:f3:9b:3f:b0:
31:49:aa:2c:ea:68:d3:a4:51:ca:64:49:96:41:c4:db:67:89:
03:d8:60:fc:05:83:73:4b:08:47:b8:f1:4f:1d:95:32:4f:54:
32:a2:25:e9:fb:3d:8e:72:7c:16:1f:b3:68:07:ab:73:a0:6b:
d2:3f:a0:db:a5:6a:88:fb:a2:7a:71:c7:a0:14:43:92:4b:8a:
67:b1:ae:ff:59:18:f1:97:c8:71:68:6c:c4:ba:72:fa:97:3e:
7e:3a:7e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:23 2025 by rpki-client