Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: QqiSWBa4cQPkhva0zktvNdhcuB+F5cnAA6IKvIWMEoo=
Subject key identifier: 30:5E:37:37:FF:5C:EE:71:AA:FC:56:FC:EA:94:60:F0:B3:6E:53:21
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 0852F4B493CED6C9114BACD0266E44B4ABD74042
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa
Signing time: Fri 09 Aug 2024 08:47:43 +0000
ROA not before: Fri 09 Aug 2024 08:42:43 +0000
ROA not after: Fri 08 Aug 2025 08:47:43 +0000
asID: 147137
IP address blocks: 2400:46a0:29::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:52:f4:b4:93:ce:d6:c9:11:4b:ac:d0:26:6e:44:b4:ab:d7:40:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 9 08:42:43 2024 GMT
Not After : Aug 8 08:47:43 2025 GMT
Subject: CN=305E3737FF5CEE71AAFC56FCEA9460F0B36E5321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c7:b0:5a:df:33:df:6a:2f:72:ed:1b:7c:c6:
2e:25:80:80:f3:62:eb:ad:67:af:75:48:29:a5:f9:
c4:cc:13:b4:49:64:4a:72:75:0c:f0:83:92:32:88:
7e:26:65:15:ab:5c:ec:cc:1d:0f:c9:3c:57:79:a3:
96:74:1d:74:c7:ed:44:ef:f1:ae:35:0e:45:d7:64:
df:02:80:68:0c:e6:57:1a:57:97:6b:9e:ae:8c:51:
22:50:14:d3:05:ec:50:35:0e:56:94:89:b1:32:86:
75:e2:84:4c:2c:16:a4:e1:d4:31:b9:65:7e:7c:ec:
f0:57:d2:9a:73:76:19:3e:41:1b:3b:d2:e7:e6:38:
32:cd:66:92:c6:d0:de:fd:1b:09:10:c0:c7:97:33:
0b:09:f4:05:e6:7a:72:49:b1:5c:a0:b7:32:f7:35:
96:07:77:39:e1:58:3b:37:60:e4:b2:7e:24:2c:24:
52:0d:2f:b3:0f:b5:87:a5:16:2c:89:82:b6:e9:c0:
ff:35:e5:e6:42:8b:c5:a6:3a:56:95:8f:59:b5:23:
08:67:b4:25:a5:58:cb:4e:f8:95:7b:c0:50:35:1f:
0d:77:af:6e:2f:c1:e6:58:80:e3:cc:c5:17:24:01:
30:17:f2:f3:65:88:66:99:c6:52:6e:19:a7:5c:db:
69:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5E:37:37:FF:5C:EE:71:AA:FC:56:FC:EA:94:60:F0:B3:6E:53:21
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:29::/48
Signature Algorithm: sha256WithRSAEncryption
7a:7e:08:73:69:47:02:dc:6f:5d:b1:5a:c0:07:83:2a:1b:78:
2e:1a:cc:93:cd:15:a8:72:42:9e:d2:9a:fe:b2:98:70:34:2a:
2c:e4:c5:2f:2f:24:97:3d:ec:8b:73:24:8f:f0:b9:87:4f:d7:
d6:83:d6:e3:f4:f4:df:7c:a7:1a:17:a1:50:97:ba:4d:c5:72:
6e:07:35:08:41:e8:07:8e:2c:f0:b0:2f:ec:20:77:15:f9:b9:
6b:cf:65:9d:da:e3:a3:bb:49:6a:55:b8:72:a9:83:8c:30:c6:
b1:04:eb:14:d8:e9:db:97:85:fb:e2:f5:24:8d:17:01:02:b8:
56:62:30:7d:cc:7f:c5:75:fd:13:d6:be:06:29:27:1d:d3:e1:
81:a7:bc:2b:02:79:3c:01:0c:a9:13:32:15:22:5a:67:c8:8b:
1c:6b:cd:90:a2:3b:e1:36:08:c7:47:8e:f2:03:2e:1a:c2:55:
bf:29:b3:38:46:e8:cb:7b:d2:29:20:84:c7:30:bf:f8:e3:d5:
c8:22:73:47:67:b7:2c:cd:4c:1b:a5:8a:6d:1e:31:a8:b8:a1:
16:46:60:ad:be:0e:1a:07:98:46:9a:00:4d:d9:78:4c:31:b3:
83:a4:b1:a0:42:5a:b2:d8:27:ee:86:d7:29:b4:d1:36:fd:c2:
9a:ce:49:87
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUCFL0tJPO1skRS6zQJm5EtKvXQEIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz
NzI4Mjk4MDAeFw0yNDA4MDkwODQyNDNaFw0yNTA4MDgwODQ3NDNaMDMxMTAvBgNV
BAMTKDMwNUUzNzM3RkY1Q0VFNzFBQUZDNTZGQ0VBOTQ2MEYwQjM2RTUzMjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXx7Ba3zPfai9y7Rt8xi4lgIDz
YuutZ691SCml+cTME7RJZEpydQzwg5IyiH4mZRWrXOzMHQ/JPFd5o5Z0HXTH7UTv
8a41DkXXZN8CgGgM5lcaV5drnq6MUSJQFNMF7FA1DlaUibEyhnXihEwsFqTh1DG5
ZX587PBX0ppzdhk+QRs70ufmODLNZpLG0N79GwkQwMeXMwsJ9AXmenJJsVygtzL3
NZYHdznhWDs3YOSyfiQsJFINL7MPtYelFiyJgrbpwP815eZCi8WmOlaVj1m1Iwhn
tCWlWMtO+JV7wFA1Hw13r24vweZYgOPMxRckATAX8vNliGaZxlJuGadc22kFAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUMF43N/9c7nGq/Fb86pRg8LNuUyEwHwYDVR0j
BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF
RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4
Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i
Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzOTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA
KTANBgkqhkiG9w0BAQsFAAOCAQEAen4Ic2lHAtxvXbFawAeDKht4LhrMk80VqHJC
ntKa/rKYcDQqLOTFLy8klz3si3Mkj/C5h0/X1oPW4/T033ynGhehUJe6TcVybgc1
CEHoB44s8LAv7CB3Ffm5a89lndrjo7tJalW4cqmDjDDGsQTrFNjp25eF++L1JI0X
AQK4VmIwfcx/xXX9E9a+BiknHdPhgae8KwJ5PAEMqRMyFSJaZ8iLHGvNkKI74TYI
x0eO8gMuGsJVvymzOEboy3vSKSCExzC/+OPVyCJzR2e3LM1MG6WKbR4xqLihFkZg
rb4OGgeYRpoATdl4TDGzg6SxoEJastgn7obXKbTRNv3Cms5Jhw==
-----END CERTIFICATE-----
Generated at Thu Apr 10 10:26:48 2025 by rpki-client