Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a313a3a2f34382d3438203d3e203338353233.roa
File: 323430313a326334303a313a3a2f34382d3438203d3e203338353233.roa (raw, json)
Hash identifier: kHlmhNS5gQ6WL5MaK2adKxGIlTTXW61wpUfSl5HlAJc=
Subject key identifier: 6D:45:BA:CC:F2:40:9A:5C:E4:97:FE:71:32:C0:C4:55:7E:B5:1F:AF
Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Certificate serial: 2178E6A12DB29DECB6769790B197E4D59DF5ED45
Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a313a3a2f34382d3438203d3e203338353233.roa
Signing time: Wed 11 Dec 2024 14:56:12 +0000
ROA not before: Wed 11 Dec 2024 14:51:12 +0000
ROA not after: Wed 10 Dec 2025 14:56:12 +0000
asID: 38523
IP address blocks: 2401:2c40:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:78:e6:a1:2d:b2:9d:ec:b6:76:97:90:b1:97:e4:d5:9d:f5:ed:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Validity
Not Before: Dec 11 14:51:12 2024 GMT
Not After : Dec 10 14:56:12 2025 GMT
Subject: CN=6D45BACCF2409A5CE497FE7132C0C4557EB51FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:02:67:98:8a:8c:37:d1:be:43:a7:31:7b:28:
d8:9b:37:d0:9d:6f:55:f6:d1:d8:31:ba:df:22:03:
42:21:da:ec:ab:ac:57:48:b7:0f:a6:a5:2d:ee:d1:
21:bb:f2:ad:b5:fe:40:03:78:02:ff:30:20:39:a7:
56:b8:59:7d:02:22:25:12:81:b3:bb:60:6e:c3:0f:
27:93:a3:f5:1c:b8:e8:48:96:a1:c1:bd:ef:79:ba:
41:64:c6:9d:47:4f:61:2a:27:28:4d:7e:2a:95:26:
82:e4:a0:49:13:6b:ee:f6:27:0a:51:b0:f8:b3:f1:
71:60:2d:78:5e:0d:92:a1:8e:9a:9c:5d:26:8f:0b:
4a:6e:43:65:9a:92:fe:35:47:73:74:26:d8:05:3a:
bd:d9:50:39:1f:04:bb:4f:44:2c:0c:19:e1:2b:cd:
3d:80:74:9f:28:8f:2e:33:fb:70:e0:a8:ff:b3:d6:
0b:6e:56:9f:c0:1f:7e:9c:6c:64:05:39:d2:f0:75:
e7:c2:53:6e:39:4d:57:25:12:36:3c:d4:90:65:a4:
a8:82:46:d2:73:9f:30:25:14:6e:cb:0c:91:8e:fa:
a9:bf:4b:00:75:9c:ab:f4:7d:40:98:e9:c9:2b:40:
bc:72:57:1d:c7:ae:eb:e2:7d:5a:f8:0d:f2:41:5c:
74:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:45:BA:CC:F2:40:9A:5C:E4:97:FE:71:32:C0:C4:55:7E:B5:1F:AF
X509v3 Authority Key Identifier:
keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a313a3a2f34382d3438203d3e203338353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2c40:1::/48
Signature Algorithm: sha256WithRSAEncryption
2d:bc:60:88:92:74:e7:36:09:09:c3:08:35:3b:e7:35:5e:08:
d0:c0:3c:56:64:39:be:30:fc:91:65:50:9e:e1:24:28:93:b4:
af:1e:fb:69:7b:07:32:d6:0f:ff:82:2b:66:32:3b:55:7d:62:
9b:7e:72:39:7a:62:9c:a7:6e:e7:13:fe:80:17:e7:03:69:8b:
e0:d7:1e:89:e3:36:d2:2b:f9:69:a9:52:56:7e:80:17:d1:86:
6d:b5:55:68:80:c6:f5:6c:00:4d:6f:a0:c8:07:88:67:92:fd:
95:ca:9e:33:ff:40:df:27:22:b5:0a:9e:69:3d:ce:a8:83:d3:
28:31:1d:48:a9:13:4b:38:02:2e:4e:d6:dc:48:8a:4a:d3:da:
1d:cd:cb:42:8c:72:1b:4b:14:73:ed:52:1e:64:9c:0a:34:d9:
e9:e9:22:24:d0:4e:46:df:cd:15:4a:1c:c1:95:f7:fb:69:e0:
0e:fd:1d:b4:99:b7:36:70:92:0f:59:a7:04:b7:fc:9f:91:6b:
a1:16:97:57:aa:04:bf:97:8a:e1:27:bf:95:a3:92:3f:78:ce:
af:2f:ad:7a:68:de:44:b7:48:e2:ed:00:e5:35:a2:7a:d0:51:
d2:fe:35:a1:85:10:ac:e9:a1:8e:a1:10:f6:41:7c:05:41:61:
67:ba:31:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:42:21 2025 by rpki-client