Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: k1lA9UBBcIJer7rcblI19CPeDJndUIgge0tg4WADooI=
Subject key identifier: 9A:3D:E0:BA:2E:8D:71:EA:80:83:B8:9B:DC:14:D7:39:D9:19:98:BA
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 1157DE04B26E4B45E053D7C02FCE0F5C0EBEA9DB
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa
Signing time: Thu 08 Aug 2024 19:06:03 +0000
ROA not before: Thu 08 Aug 2024 19:01:03 +0000
ROA not after: Thu 07 Aug 2025 19:06:03 +0000
asID: 147137
IP address blocks: 2400:46a0:13::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:57:de:04:b2:6e:4b:45:e0:53:d7:c0:2f:ce:0f:5c:0e:be:a9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 8 19:01:03 2024 GMT
Not After : Aug 7 19:06:03 2025 GMT
Subject: CN=9A3DE0BA2E8D71EA8083B89BDC14D739D91998BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8a:41:bf:35:d6:94:9d:30:ca:0f:1d:be:98:
bd:7f:f6:15:58:5d:41:e7:26:a6:24:40:36:cf:7f:
c1:09:7d:3f:a4:2b:a8:eb:30:e6:e6:c0:4a:86:a4:
9c:25:5a:ff:b3:6b:f5:3b:40:59:88:45:03:c7:d3:
1f:6e:80:28:6c:61:72:03:af:b0:b8:e9:b6:b9:cf:
0f:d1:42:8e:3a:6c:0c:0f:de:f9:3c:e2:b0:11:39:
dd:86:44:46:b7:f1:54:a9:4c:14:d2:87:32:90:79:
13:b4:8d:80:8e:68:48:72:36:da:59:c1:7f:42:a9:
12:0a:f1:dc:67:0b:63:f7:6b:6a:1d:5f:54:3a:dd:
42:b6:f3:90:76:54:e5:ea:9c:41:60:c9:15:3e:ac:
0b:ef:fe:11:4e:82:11:19:77:c9:f6:d7:60:bf:ec:
76:4e:06:82:3e:71:76:c5:23:15:46:e2:05:57:cd:
8e:f5:d7:22:e6:d0:99:a7:f5:df:01:df:b7:c7:85:
5e:2f:11:93:81:be:d0:87:27:4e:46:32:0d:44:15:
08:65:26:51:b3:a4:0d:1d:3c:57:b8:e7:f7:ab:63:
f7:c5:a6:61:4c:37:e9:6d:41:f4:79:49:19:2e:39:
aa:b6:65:a6:7d:da:b5:cf:21:46:01:de:ba:18:34:
cc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3D:E0:BA:2E:8D:71:EA:80:83:B8:9B:DC:14:D7:39:D9:19:98:BA
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:13::/48
Signature Algorithm: sha256WithRSAEncryption
a8:b0:72:fc:de:d9:0b:ba:6a:d9:54:e8:97:a7:e6:67:6a:e9:
dc:e4:32:26:b6:f7:96:37:de:ac:86:c0:46:1c:e3:4b:56:60:
db:9d:63:5e:f2:e4:2c:0d:04:08:eb:f9:c0:fc:cc:67:56:57:
53:64:88:0f:f1:cc:30:c1:bb:bd:ba:6c:c1:b2:8c:16:aa:30:
2d:f1:f6:e5:9b:39:39:20:aa:b3:7c:b4:2b:6e:2b:ac:9b:18:
eb:5c:a3:11:cb:22:cb:01:e5:e5:e3:72:10:cb:37:19:96:9c:
3a:a3:de:41:fc:ed:c3:7c:72:eb:f8:f6:e3:a6:80:36:83:6b:
41:13:01:84:42:1f:ad:06:16:47:cc:92:ca:76:66:2a:b5:ed:
9f:d0:d4:57:ad:5b:fa:73:13:45:47:97:88:c9:37:0b:6a:18:
0d:11:a9:a8:d9:e5:64:59:09:e0:d0:5e:4b:f0:71:d6:c7:f0:
01:22:00:b5:8d:b9:ed:2a:de:3a:ee:58:fa:10:0e:43:fc:b0:
95:45:a8:53:b3:d7:96:dc:c6:9a:ba:67:0d:42:39:b9:5e:e0:
d8:ba:b5:38:41:3a:0e:65:0a:87:dc:82:fc:01:3b:f1:f3:e0:
52:92:75:65:97:69:86:80:04:da:14:e1:36:c0:dc:b0:b4:e1:
61:11:eb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:07:55 2025 by rpki-client