Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: BZ/lyg71WgRvCE2lpFgxsybnVq37c0txC0FrpeabIZE=
Subject key identifier: 0B:53:9A:1B:BC:35:BE:77:A6:FF:BA:F2:11:08:65:57:5D:77:98:A5
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 61727B3533714B93E4EF214849AF873032045171
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa
Signing time: Fri 09 Aug 2024 08:56:20 +0000
ROA not before: Fri 09 Aug 2024 08:51:20 +0000
ROA not after: Fri 08 Aug 2025 08:56:20 +0000
asID: 147137
IP address blocks: 2400:46a0:32::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:72:7b:35:33:71:4b:93:e4:ef:21:48:49:af:87:30:32:04:51:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 9 08:51:20 2024 GMT
Not After : Aug 8 08:56:20 2025 GMT
Subject: CN=0B539A1BBC35BE77A6FFBAF2110865575D7798A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:31:55:62:62:b9:69:a3:9c:8b:b1:8c:48:e5:
7b:78:cd:00:98:07:39:f8:9f:10:62:33:35:3e:a6:
73:f4:82:08:8f:49:9c:2f:41:de:ab:a4:e4:16:41:
bc:66:63:ac:74:20:cb:17:bb:ea:3c:80:be:14:ac:
6d:a9:e6:8d:c3:3f:7d:89:c3:65:cc:3a:98:15:e1:
6b:28:7d:00:b0:8d:e4:5e:76:48:1b:1d:64:b1:91:
39:9c:a8:6a:ef:c1:b9:46:81:9f:f7:65:d9:c2:1b:
39:31:78:6e:c3:08:0c:63:24:6e:5f:10:74:fc:f3:
9c:e0:38:74:b0:99:53:b7:95:8c:84:1d:40:08:28:
0b:7c:3f:c0:60:8f:ba:e6:cd:82:58:de:5c:85:e2:
47:a5:7e:e1:41:60:9c:b0:93:d3:6a:10:5e:27:b4:
06:cb:cd:11:3d:64:49:b6:e9:a6:a2:12:33:a5:d2:
c5:b2:c2:ff:ba:77:5e:3c:9b:de:2b:70:92:19:87:
29:51:77:fc:fc:49:08:5b:96:c5:69:df:54:96:f1:
29:40:a2:2f:02:41:ee:64:de:85:94:4c:ae:43:74:
33:a4:c7:16:6f:45:db:ea:b2:9c:be:98:bc:df:39:
f6:74:b6:89:d9:65:45:b3:5a:5e:6f:a0:9d:a2:f1:
f3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:53:9A:1B:BC:35:BE:77:A6:FF:BA:F2:11:08:65:57:5D:77:98:A5
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0:32::/48
Signature Algorithm: sha256WithRSAEncryption
4b:cb:41:44:fc:05:12:d6:4a:3a:b7:0d:94:fb:96:10:95:50:
68:52:d2:9f:1e:46:24:dc:e5:46:12:99:d7:8e:9d:83:ce:d1:
23:d4:f6:f3:4d:3c:c2:8e:e1:08:50:18:6c:ed:b0:9f:c6:39:
03:87:64:40:a1:2e:ac:94:f5:9b:2b:c1:5a:a6:3e:44:e3:e6:
12:c4:ef:a6:66:fd:c8:24:fe:f4:d4:dc:f8:78:4a:9a:04:8e:
d7:e5:8d:dc:cb:70:3a:9c:05:7a:91:cd:66:ed:fa:f9:10:1d:
5b:dd:43:a3:3b:86:bb:0d:4b:d5:60:74:f0:aa:c5:83:3d:2a:
79:33:7c:39:33:57:df:64:03:76:7e:4a:ea:0d:a1:67:e0:86:
41:33:aa:5c:cd:aa:90:c0:ed:18:e6:10:71:9e:ba:e1:3b:1b:
6f:87:85:8d:e5:e4:66:b1:2f:19:99:78:81:5f:4d:37:d1:08:
5b:90:c9:9d:4a:84:94:5e:1b:07:ed:aa:e2:9c:9a:b1:03:12:
62:df:c3:01:b4:86:dc:c7:ab:f6:c7:37:94:51:c0:f6:39:0a:
c3:ef:41:cd:52:fb:f6:8b:79:55:f1:6d:aa:cc:a4:f6:3e:49:
45:00:52:9b:38:39:25:ca:78:6c:83:c8:0e:9a:47:61:14:be:
e1:3d:e6:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:12:53 2025 by rpki-client