Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: ms/+veea90pHO58QQD0+6hhN8lxc0odG2zYFaTfbQN4=
Subject key identifier: C4:E2:BB:7A:FD:E3:49:3C:B0:4A:5E:62:A6:B6:38:4D:33:90:94:A4
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 404E4656107481EA0DD76F87CBF0D8C4A99DF6F5
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa
Signing time: Thu 08 Aug 2024 19:05:51 +0000
ROA not before: Thu 08 Aug 2024 19:00:51 +0000
ROA not after: Thu 07 Aug 2025 19:05:51 +0000
asID: 147137
IP address blocks: 2400:46a0:12::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:4e:46:56:10:74:81:ea:0d:d7:6f:87:cb:f0:d8:c4:a9:9d:f6:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 8 19:00:51 2024 GMT
Not After : Aug 7 19:05:51 2025 GMT
Subject: CN=C4E2BB7AFDE3493CB04A5E62A6B6384D339094A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1e:6b:8f:f2:7f:cf:5b:2b:c3:03:f9:11:74:
7e:18:74:a1:67:93:49:7e:b3:7d:ee:27:50:9e:38:
aa:bb:b3:65:d0:33:1d:77:53:d8:52:e2:2e:6d:24:
c7:32:19:f2:f6:17:f7:53:e1:d9:0d:ce:bf:47:5a:
f0:c1:df:fa:ec:bf:04:2d:1f:24:29:3a:ab:5d:46:
9d:f1:c7:73:64:82:b0:9c:27:de:c2:c7:e5:be:29:
0c:98:6c:a4:02:bc:d7:81:0e:d6:38:13:82:c4:73:
d4:c8:09:4f:fc:a5:6f:c7:b3:cf:21:a9:6d:98:81:
06:4a:b5:21:a0:d7:d8:66:9b:50:67:dc:96:d7:79:
45:ee:23:fa:05:0a:79:2a:4e:2d:f5:0f:b2:99:9a:
83:d6:a4:96:91:9d:86:b5:80:12:e2:6f:27:74:c9:
a7:9a:34:74:85:60:c7:75:56:e0:f7:1a:28:81:91:
82:79:1f:02:d2:1f:13:71:52:ac:5a:6d:45:f3:3f:
a9:68:2e:8d:76:cd:37:ea:8b:79:bf:ac:33:ab:4f:
b5:01:e2:dc:72:eb:4e:d8:f7:94:e0:33:42:eb:2a:
50:12:07:7b:69:e0:e1:bf:89:00:a6:09:31:0d:19:
df:6e:2e:3b:19:8f:e8:fd:6f:49:08:14:d2:f7:f8:
08:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E2:BB:7A:FD:E3:49:3C:B0:4A:5E:62:A6:B6:38:4D:33:90:94:A4
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31323a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:12::/48
Signature Algorithm: sha256WithRSAEncryption
57:ac:04:d1:b8:b8:17:fc:2f:63:9f:04:49:91:80:1e:89:fb:
63:56:ad:93:15:99:3e:3d:1f:ba:d9:3a:99:76:37:a7:38:af:
e5:f6:ee:97:e8:b9:84:53:25:8f:10:c0:56:7a:a2:14:72:5f:
8a:89:07:35:50:71:b3:91:14:bc:18:e3:1a:fc:b9:f4:67:48:
12:39:a7:13:c7:4f:3a:62:05:7d:1a:da:82:94:f6:59:30:48:
8a:71:d5:a1:d6:05:ed:22:03:99:d5:fe:da:42:b4:37:f1:5f:
99:54:25:e7:b2:39:2b:50:0f:86:13:f1:cc:33:ce:52:dc:4a:
d3:ac:2a:e8:78:85:d4:cf:89:b5:0e:9e:06:97:66:77:fb:d9:
83:d5:ee:16:80:b4:33:4a:9c:86:fd:e0:73:df:0a:73:06:9a:
21:f2:0c:0c:83:ee:42:c9:b9:2e:8a:bd:9d:c8:fb:d2:0d:8f:
bd:26:9d:21:c3:6e:9b:5f:dc:df:f3:dd:e4:c7:07:40:ae:8d:
f5:8c:6c:f0:96:b6:42:20:fe:3c:ad:29:de:c8:54:bf:5d:5b:
64:5b:ff:5d:a3:90:4e:df:b0:56:8c:f2:e0:3a:1b:c5:e0:39:
d7:1e:03:fc:d9:c4:2e:ee:9e:20:95:fc:10:a0:9e:05:a7:6c:
f1:59:99:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:05:33 2025 by rpki-client