Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: RZRIfu7hIEL17cFuFhojw+mwD8XXm8LHa1u4Mw7Wbwk=
Subject key identifier: C4:C8:09:F6:0D:DF:91:2B:2D:7F:12:33:9A:9F:6A:08:D8:79:D3:BD
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 2A7ED078F83295B213B52D0263A51C88377FEF20
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa
Signing time: Thu 08 Aug 2024 19:00:21 +0000
ROA not before: Thu 08 Aug 2024 18:55:21 +0000
ROA not after: Thu 07 Aug 2025 19:00:21 +0000
asID: 147137
IP address blocks: 2400:46a0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:7e:d0:78:f8:32:95:b2:13:b5:2d:02:63:a5:1c:88:37:7f:ef:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 8 18:55:21 2024 GMT
Not After : Aug 7 19:00:21 2025 GMT
Subject: CN=C4C809F60DDF912B2D7F12339A9F6A08D879D3BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:31:c8:ed:85:30:0b:01:a0:37:ed:43:ed:
06:b2:a1:8f:b8:99:88:28:35:47:41:85:8f:1f:f6:
39:ee:78:ba:93:9d:dc:76:d1:23:24:bc:d4:98:d5:
fc:77:45:fc:88:4c:ce:f4:03:2f:09:71:16:d0:b6:
48:3b:97:ab:70:0d:0a:7b:be:d4:70:55:2e:53:f8:
ea:2a:c4:cf:25:fe:20:7f:7d:9f:ce:80:74:1a:2a:
e0:82:1a:f6:7d:c3:e9:0d:df:4e:2a:4e:81:c8:c2:
e1:0f:51:dc:ab:21:7b:d6:d5:44:91:72:53:a4:7f:
12:5b:49:e9:05:ab:11:fb:be:12:d2:70:51:b4:5a:
e8:88:a7:58:84:db:33:da:cc:ce:6e:18:f7:e8:06:
c9:f4:06:70:1d:ed:e0:88:49:d3:44:2e:e0:c0:63:
43:ba:3e:00:b8:d4:69:9b:13:a5:8c:10:6f:b8:34:
ce:7f:3a:fb:0a:a6:8d:e9:70:35:cd:ab:fc:d5:b7:
4a:3c:c7:3b:74:0f:db:23:8f:c6:23:bd:f4:da:ef:
7f:e9:e3:b8:18:21:2f:16:b4:ec:3f:2c:dc:c4:93:
a5:a3:0d:df:da:2a:55:2b:80:f9:85:b2:7a:f6:01:
a1:e9:57:a2:6f:df:d4:fd:86:da:a1:e6:bc:c0:b7:
67:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C8:09:F6:0D:DF:91:2B:2D:7F:12:33:9A:9F:6A:08:D8:79:D3:BD
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:1::/48
Signature Algorithm: sha256WithRSAEncryption
a1:d4:bf:d6:9e:f2:9f:f4:6c:f6:3b:27:60:7e:fa:c0:5f:0b:
96:da:c8:f9:cd:4c:58:2c:f8:d8:23:3a:79:fc:fe:67:9a:b2:
e2:db:1c:cd:d7:aa:da:ce:20:96:9d:39:fa:d2:5c:37:ca:a9:
a9:3a:0c:75:f7:a8:8a:1e:86:b4:37:98:d4:39:69:8d:74:cb:
6b:6e:9d:8c:25:70:cd:0b:d5:97:df:2d:0f:5b:09:79:56:21:
f5:bd:c4:bc:87:3a:4a:9a:5f:d3:ac:88:96:97:f0:a1:c5:32:
34:56:72:a0:27:c2:f3:29:51:3e:6b:9f:b4:cd:e6:3d:cc:77:
74:d8:70:1e:e9:83:21:0c:a4:d8:01:0f:16:12:48:8b:91:a2:
6b:29:6d:5f:db:d2:bc:5e:e2:7b:04:b9:9a:99:2c:be:c9:d9:
3f:84:5a:77:0e:c1:d2:29:60:42:09:c4:eb:d9:0f:96:1e:f9:
87:90:95:11:c0:d3:8e:39:15:43:59:a3:fc:09:1a:64:7f:f0:
48:c1:84:c6:b4:56:e4:30:27:e4:9f:0c:47:97:dc:9c:1c:84:
60:f2:0a:0b:42:12:f0:ad:52:d0:16:8f:4a:31:f3:56:73:8a:
a4:ec:0b:b5:25:98:51:85:6b:4f:fe:e6:d3:24:1e:15:f7:5f:
0b:cb:66:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:07 2025 by rpki-client