Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa
File: 323430303a343661303a3a2f34382d3438203d3e20313437313337.roa (raw, json)
Hash identifier: vD1rKWYrNQCYKYtc+ffCxoQOpL21hp0x2RFpOmC7IhE=
Subject key identifier: 98:2D:A1:7C:CE:11:8B:9F:93:CB:05:68:94:74:9D:26:1F:5D:08:EA
Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Certificate serial: 68F79ABCBDA6DBFEB2EF2A3262A80EDFD195BE42
Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa
Signing time: Thu 08 Aug 2024 18:59:52 +0000
ROA not before: Thu 08 Aug 2024 18:54:52 +0000
ROA not after: Thu 07 Aug 2025 18:59:52 +0000
asID: 147137
IP address blocks: 2400:46a0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:f7:9a:bc:bd:a6:db:fe:b2:ef:2a:32:62:a8:0e:df:d1:95:be:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980
Validity
Not Before: Aug 8 18:54:52 2024 GMT
Not After : Aug 7 18:59:52 2025 GMT
Subject: CN=982DA17CCE118B9F93CB056894749D261F5D08EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:70:26:69:29:b5:88:2f:44:46:61:44:7a:22:
7f:9d:15:8d:fa:77:ac:32:6b:1f:c1:be:7c:b8:32:
ac:44:e1:5b:63:16:b2:03:50:9d:86:b1:ee:2a:58:
a1:bd:26:14:d4:c2:75:a8:39:0c:d5:8a:e5:4d:ab:
7d:9f:c7:6d:14:a8:29:92:93:49:eb:fd:18:df:e2:
9c:23:5b:7e:9a:00:50:6f:62:60:7b:23:b5:a4:e1:
7f:c7:b3:a7:06:b8:5b:71:6f:db:a0:25:57:27:f6:
21:fe:9c:6e:17:61:bb:3e:c7:b5:0e:21:ef:26:ef:
cd:b7:1b:ed:7f:d4:b4:95:83:12:f4:a5:e1:aa:3f:
94:30:67:dc:56:23:f7:16:fe:26:c5:41:64:2b:ab:
1a:9e:2f:b3:05:60:50:4f:01:81:e9:45:13:e2:1e:
33:3a:d7:4c:d5:6e:02:a0:de:83:21:da:ff:a6:7d:
4b:6c:14:dd:8f:7b:c0:1a:e0:55:08:69:46:54:07:
6c:73:14:65:c8:2c:80:4f:71:01:ef:7b:84:28:82:
de:7c:49:0a:fd:16:3e:21:33:7d:fc:46:16:4a:05:
a9:db:bf:40:48:e6:f9:72:2d:f7:42:a8:21:7a:cb:
84:56:16:7a:c6:1a:02:45:5a:fc:4f:cf:2b:a9:4a:
89:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2D:A1:7C:CE:11:8B:9F:93:CB:05:68:94:74:9D:26:1F:5D:08:EA
X509v3 Authority Key Identifier:
keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:46a0::/48
Signature Algorithm: sha256WithRSAEncryption
81:bf:4e:65:9e:93:7f:89:99:8b:02:10:5d:fa:bb:e4:ec:4c:
02:b4:54:8f:95:d2:59:be:ae:a6:6c:1e:33:14:e2:a7:31:4b:
02:d2:5d:d8:b3:07:19:23:b6:d3:82:db:48:91:20:df:ea:11:
b4:fa:4d:90:1f:af:b0:14:23:ca:db:8f:64:9b:28:cb:8b:e1:
d1:08:4d:62:6b:40:0b:ce:19:96:d9:f3:af:fb:c2:4c:de:3e:
fa:f5:32:4b:5a:6f:28:fe:13:0d:31:9f:b3:54:4d:80:a1:67:
ac:9e:c7:45:d4:4e:6f:17:01:f7:cc:77:64:ae:00:b6:66:31:
f4:f1:77:c1:9c:78:ad:74:56:52:1a:f4:8a:35:e2:54:33:a5:
39:29:b1:fd:05:ee:54:32:d9:61:b6:9c:f3:17:25:b2:1f:5c:
38:46:0e:60:13:54:f8:ec:d4:22:76:0e:3b:74:1e:f3:03:fa:
00:d2:52:41:e6:69:56:f7:19:a3:eb:7f:09:b8:15:94:ec:04:
f6:7c:34:d5:da:f6:39:be:10:05:81:99:6d:6f:33:14:fb:e1:
7f:15:19:26:27:f9:4c:e2:a7:03:f9:e1:03:3a:3a:5e:59:06:
58:98:fc:e5:12:0a:9a:91:c1:74:0d:fd:2f:12:8f:9f:b2:61:
5f:0f:9a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:12:31 2025 by rpki-client