Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa
File: 323430323a333263303a3a2f33322d3332203d3e20313332363337.roa (raw, json)
Hash identifier: qUMTZOKqFJrYj5YAPgs121X9//L8rpIE4d8u+ioonEM=
Subject key identifier: B6:2F:67:00:B9:CB:6B:A6:86:4D:CA:A1:CB:B7:CD:B9:74:84:D0:DE
Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD
Certificate serial: 2EFDC32D7AA960C7C71DB370B9001C2E8BA5DA4C
Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa
Signing time: Thu 06 Jun 2024 02:19:05 +0000
ROA not before: Thu 06 Jun 2024 02:14:05 +0000
ROA not after: Thu 05 Jun 2025 02:19:05 +0000
asID: 132637
IP address blocks: 2402:32c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:fd:c3:2d:7a:a9:60:c7:c7:1d:b3:70:b9:00:1c:2e:8b:a5:da:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD
Validity
Not Before: Jun 6 02:14:05 2024 GMT
Not After : Jun 5 02:19:05 2025 GMT
Subject: CN=B62F6700B9CB6BA6864DCAA1CBB7CDB97484D0DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:05:15:25:55:0a:82:79:b8:c5:a7:e9:a4:
0e:4c:0d:a9:83:a7:34:d8:c8:be:f2:92:a4:b8:f8:
3a:4c:35:74:a5:9b:0c:5c:5c:46:e8:b0:b7:3f:2a:
f5:2f:16:fe:45:63:87:b3:0b:8e:af:6b:ba:06:7e:
71:13:c3:e2:8c:8e:ea:65:0f:5c:30:67:e7:c0:b3:
a8:33:54:4c:3b:e2:28:26:75:33:e3:66:a8:0e:dd:
07:d6:60:4f:c5:b7:43:96:a9:60:73:88:1a:9a:f1:
a5:be:1c:10:88:16:b6:89:8f:72:05:26:6d:35:3b:
28:01:b0:02:8b:7d:b1:20:0f:8e:99:62:ca:df:46:
30:db:96:85:bf:f6:c0:a7:15:43:9a:5f:18:85:a6:
cc:31:56:04:c5:12:07:41:22:33:54:cd:4a:5c:0a:
48:f6:e4:93:28:f4:fa:1f:d3:df:b6:bb:09:eb:fb:
3f:f5:55:4e:3b:77:6f:13:53:19:b2:39:8a:28:e0:
19:28:81:e2:11:07:a3:05:23:e6:0c:14:29:5d:9a:
f5:55:71:5b:0e:d3:14:c2:bf:b9:3c:9b:a7:d2:d3:
36:37:35:e9:6a:a0:c0:49:30:5c:3b:78:6b:5b:ea:
1a:f1:3d:d3:69:4e:a1:90:1c:0f:9e:22:cb:91:94:
1f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2F:67:00:B9:CB:6B:A6:86:4D:CA:A1:CB:B7:CD:B9:74:84:D0:DE
X509v3 Authority Key Identifier:
keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/323430323a333263303a3a2f33322d3332203d3e20313332363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:32c0::/32
Signature Algorithm: sha256WithRSAEncryption
aa:af:9e:83:d8:60:04:fd:64:33:2b:9f:b9:c3:3d:fb:f4:ee:
9b:86:ad:e2:ca:e1:92:0e:c0:78:e1:e0:80:34:0a:a6:6c:b7:
b1:19:37:5e:be:7a:b2:d6:88:3d:e7:b3:53:26:6d:29:f3:cd:
72:d6:7f:f3:ca:1d:eb:9d:89:7e:28:19:cb:4a:2c:54:e4:c8:
e3:cf:a8:39:f2:31:15:1f:c0:5a:64:d6:00:e3:2f:67:98:8a:
c9:ba:d3:66:d1:b7:96:5d:ff:9d:40:fb:ac:0f:18:90:dc:66:
5e:99:b5:96:02:a4:6b:8c:fe:20:47:11:6c:e9:6a:ca:63:6e:
75:95:e5:08:f1:c9:f8:7f:17:e4:f4:97:2c:fa:6d:7f:10:43:
65:0a:1a:46:21:aa:f9:6a:52:6a:af:c0:5f:77:5a:26:7e:96:
3f:78:13:85:44:7c:b3:19:0f:34:91:16:72:04:62:25:4c:42:
af:38:a7:b6:32:78:ea:ae:35:98:70:2d:c8:75:0b:b1:11:2a:
45:59:64:52:e9:4b:66:b4:09:42:14:19:f9:c8:93:54:51:1e:
3f:22:b6:d8:78:11:c3:1a:5f:b8:31:36:fc:ca:c5:3d:96:c4:
32:70:37:76:6e:b1:97:fb:97:b4:05:f7:c7:4b:db:64:a4:dc:
ab:e7:16:16
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIULv3DLXqpYMfHHbNwuQAcLoul2kwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC
OEMyMURCRDAeFw0yNDA2MDYwMjE0MDVaFw0yNTA2MDUwMjE5MDVaMDMxMTAvBgNV
BAMTKEI2MkY2NzAwQjlDQjZCQTY4NjREQ0FBMUNCQjdDREI5NzQ4NEQwREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI2QUVJVUKgnm4xafppA5MDamD
pzTYyL7ykqS4+DpMNXSlmwxcXEbosLc/KvUvFv5FY4ezC46va7oGfnETw+KMjupl
D1wwZ+fAs6gzVEw74igmdTPjZqgO3QfWYE/Ft0OWqWBziBqa8aW+HBCIFraJj3IF
Jm01OygBsAKLfbEgD46ZYsrfRjDbloW/9sCnFUOaXxiFpswxVgTFEgdBIjNUzUpc
Ckj25JMo9Pof09+2uwnr+z/1VU47d28TUxmyOYoo4BkogeIRB6MFI+YMFCldmvVV
cVsO0xTCv7k8m6fS0zY3NelqoMBJMFw7eGtb6hrxPdNpTqGQHA+eIsuRlB8hAgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQUti9nALnLa6aGTcqhy7fNuXSE0N4wHwYDVR0j
BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1
NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy
MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04
OTY5LTlmYjlkNjk0Mzk3Yy8wLzMyMzQzMDMyM2EzMzMyNjMzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCMsAwDQYJKoZI
hvcNAQELBQADggEBAKqvnoPYYAT9ZDMrn7nDPfv07puGreLK4ZIOwHjh4IA0CqZs
t7EZN16+erLWiD3ns1MmbSnzzXLWf/PKHeudiX4oGctKLFTkyOPPqDnyMRUfwFpk
1gDjL2eYism602bRt5Zd/51A+6wPGJDcZl6ZtZYCpGuM/iBHEWzpaspjbnWV5Qjx
yfh/F+T0lyz6bX8QQ2UKGkYhqvlqUmqvwF93WiZ+lj94E4VEfLMZDzSRFnIEYiVM
Qq84p7YyeOquNZhwLch1C7ERKkVZZFLpS2a0CUIUGfnIk1RRHj8itth4EcMaX7gx
NvzKxT2WxDJwN3ZusZf7l7QF98dL22Sk3KvnFhY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:57:06 2025 by rpki-client