Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: EEceHQMW7Hc/vIUIIpKDdAPfHeSFK386Bosfd05qY/A=
Subject key identifier: EF:E1:56:A8:94:7B:EB:E7:C8:18:0A:97:DB:1D:64:7B:6C:7C:E6:D5
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 73602D2CE8992748175E007F00592600C87DFF80
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa
Signing time: Thu 08 Aug 2024 19:05:33 +0000
ROA not before: Thu 08 Aug 2024 19:00:33 +0000
ROA not after: Thu 07 Aug 2025 19:05:33 +0000
asID: 147137
IP address blocks: 2400:46a0:11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:60:2d:2c:e8:99:27:48:17:5e:00:7f:00:59:26:00:c8:7d:ff:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 8 19:00:33 2024 GMT
Not After : Aug 7 19:05:33 2025 GMT
Subject: CN=EFE156A8947BEBE7C8180A97DB1D647B6C7CE6D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6e:bc:66:cb:21:6b:56:a0:fc:79:fe:fa:f6:
b7:6c:bb:71:04:c6:e1:eb:40:77:6e:14:5b:e2:b8:
2b:12:47:48:7f:81:02:c9:67:c7:1f:21:a9:de:1d:
6e:80:e7:ba:59:15:e0:a2:fb:3b:52:4a:9d:83:08:
e5:a2:4d:ae:b1:cd:bd:77:5b:bf:45:54:ad:f9:c0:
c2:75:f4:2b:af:67:4d:06:25:1c:27:0e:96:3f:c1:
64:c4:4c:01:18:d5:00:b0:ae:15:b3:85:17:73:b4:
f0:dc:4f:71:f1:37:52:7d:09:32:c5:19:d3:44:d7:
54:8e:9f:65:b8:f8:6f:a4:f4:1c:07:da:b4:98:0c:
f2:b4:da:d4:7c:b5:1b:c1:f3:35:fb:15:ec:e9:84:
f1:ba:6d:fc:dc:37:86:14:4c:e2:84:06:f8:e8:c8:
35:dd:9d:3b:c8:6a:d2:9c:43:13:25:97:1d:df:6b:
61:b6:50:99:29:f4:9e:05:0a:e1:27:e9:89:c7:a3:
c3:cd:c9:8d:85:a4:81:46:6b:8e:65:34:b7:0d:88:
1b:50:3f:78:0d:a1:12:84:7c:9d:d0:fa:88:8b:29:
ea:89:77:6e:18:d5:33:30:50:01:4c:99:5b:9f:b2:
b2:d8:26:70:0e:03:93:e8:84:f4:68:74:8a:d6:db:
8e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E1:56:A8:94:7B:EB:E7:C8:18:0A:97:DB:1D:64:7B:6C:7C:E6:D5
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:11::/48
Signature Algorithm: sha256WithRSAEncryption
2c:1a:09:55:c3:58:7a:43:54:17:1b:ac:d6:39:14:e8:d5:41:
51:ee:e9:db:a7:c2:4c:20:b0:09:d1:3c:7d:25:aa:f4:79:a5:
41:23:f0:a1:6c:cb:ac:7d:a0:5e:fa:3c:5f:d7:b9:74:93:ff:
8a:15:d8:73:31:2f:66:f1:91:a0:27:0b:cd:f1:b2:ac:57:a5:
2b:b9:d7:a2:8c:aa:78:82:be:16:d7:1d:59:30:26:90:11:eb:
3a:c6:d0:2e:5f:42:0c:dc:0b:a1:e9:b6:b5:45:db:2e:7d:af:
68:02:3c:4a:69:2a:0a:6f:2d:4f:d6:50:86:68:55:45:29:5a:
09:ef:c5:2a:95:10:07:bf:d0:b8:15:da:ae:8e:0e:d1:b1:1c:
d2:1b:2d:e8:bc:9b:b6:51:9d:64:5e:61:2f:54:0d:3d:83:90:
5d:b9:a7:d8:8c:ca:25:12:f1:fa:dc:09:40:b2:e9:ad:50:aa:
8c:2d:3b:ad:89:7d:77:00:40:8a:58:7e:43:82:ac:c2:5c:7f:
f6:06:17:1c:24:63:89:f3:0b:eb:84:7c:56:35:8b:d4:61:7d:
b7:d1:4e:76:0e:9f:60:0e:93:af:46:9c:76:8d:1d:5e:99:a6:
ce:26:44:9f:05:47:4a:61:b2:b8:90:cf:76:c2:b6:db:e6:51:
4a:8f:96:95
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUc2AtLOiZJ0gXXgB/AFkmAMh9/4AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz
NzI4Mjk4MDAeFw0yNDA4MDgxOTAwMzNaFw0yNTA4MDcxOTA1MzNaMDMxMTAvBgNV
BAMTKEVGRTE1NkE4OTQ3QkVCRTdDODE4MEE5N0RCMUQ2NDdCNkM3Q0U2RDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEbrxmyyFrVqD8ef769rdsu3EE
xuHrQHduFFviuCsSR0h/gQLJZ8cfIaneHW6A57pZFeCi+ztSSp2DCOWiTa6xzb13
W79FVK35wMJ19CuvZ00GJRwnDpY/wWTETAEY1QCwrhWzhRdztPDcT3HxN1J9CTLF
GdNE11SOn2W4+G+k9BwH2rSYDPK02tR8tRvB8zX7FezphPG6bfzcN4YUTOKEBvjo
yDXdnTvIatKcQxMllx3fa2G2UJkp9J4FCuEn6YnHo8PNyY2FpIFGa45lNLcNiBtQ
P3gNoRKEfJ3Q+oiLKeqJd24Y1TMwUAFMmVufsrLYJnAOA5PohPRodIrW244rAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU7+FWqJR76+fIGAqX2x1ke2x85tUwHwYDVR0j
BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF
RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4
Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i
Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA
ETANBgkqhkiG9w0BAQsFAAOCAQEALBoJVcNYekNUFxus1jkU6NVBUe7p26fCTCCw
CdE8fSWq9HmlQSPwoWzLrH2gXvo8X9e5dJP/ihXYczEvZvGRoCcLzfGyrFelK7nX
ooyqeIK+FtcdWTAmkBHrOsbQLl9CDNwLoem2tUXbLn2vaAI8SmkqCm8tT9ZQhmhV
RSlaCe/FKpUQB7/QuBXaro4O0bEc0hst6LybtlGdZF5hL1QNPYOQXbmn2IzKJRLx
+twJQLLprVCqjC07rYl9dwBAilh+Q4Kswlx/9gYXHCRjifML64R8VjWL1GF9t9FO
dg6fYA6Tr0acdo0dXpmmziZEnwVHSmGyuJDPdsK22+ZRSo+WlQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:37 2025 by rpki-client