Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa
File: 323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa (raw, json)
Hash identifier: r5ISPP8o2HPfHpTYeKJqTMHFk0FOHbid87VW1uUq8a8=
Subject key identifier: 1B:BC:BD:60:97:3D:7E:ED:D1:22:88:48:CC:8C:90:77:27:52:CF:51
Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF
Certificate serial: 3CFCE24D376809AE80B02163584E079C2A6853C1
Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa
Signing time: Sat 19 Oct 2024 19:00:00 +0000
ROA not before: Sat 19 Oct 2024 18:55:00 +0000
ROA not after: Sat 18 Oct 2025 19:00:00 +0000
asID: 139949
IP address blocks: 2405:aac0:100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:fc:e2:4d:37:68:09:ae:80:b0:21:63:58:4e:07:9c:2a:68:53:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF
Validity
Not Before: Oct 19 18:55:00 2024 GMT
Not After : Oct 18 19:00:00 2025 GMT
Subject: CN=1BBCBD60973D7EEDD1228848CC8C90772752CF51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:27:18:90:62:1d:a7:78:2d:fa:df:81:92:b6:
79:4e:24:d8:4f:9c:a4:17:c4:1d:dd:38:71:18:40:
8e:56:d8:4f:c9:22:cc:b4:2e:26:1d:2f:00:6a:66:
fe:15:05:02:9a:e9:6e:39:22:36:84:a4:11:11:3d:
fd:0d:e2:93:87:f2:d1:05:e5:a9:20:b8:a1:af:0f:
69:79:94:2e:ee:2d:3b:c2:f2:f5:31:2c:ea:07:83:
d2:1d:45:8a:3d:c3:87:90:87:8f:47:da:40:5c:b2:
8c:b3:68:b1:5e:ce:e0:79:54:d9:cf:de:dd:65:86:
71:d1:a8:6f:a0:c1:66:6d:df:1e:45:92:dd:1a:af:
a6:22:d4:19:fc:0b:8e:30:34:93:2f:69:30:89:25:
74:d4:70:6c:fc:00:6d:f0:78:89:df:95:c0:81:bc:
28:aa:b4:00:c0:2d:47:f8:3c:7d:12:3a:e4:55:29:
dc:5f:26:1b:ea:8f:f2:2c:74:28:5c:54:7c:d5:51:
9a:13:69:4e:7b:84:c6:d4:2e:6c:a6:c8:8e:57:63:
e7:d6:dd:dc:51:56:1c:4b:70:95:27:e7:35:96:cc:
5a:86:52:bc:dd:3d:63:31:c6:30:c8:dc:12:c1:26:
2c:a2:0c:09:5a:71:1b:4a:b2:62:7c:00:bd:d8:0d:
ff:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BC:BD:60:97:3D:7E:ED:D1:22:88:48:CC:8C:90:77:27:52:CF:51
X509v3 Authority Key Identifier:
keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:aac0:100::/48
Signature Algorithm: sha256WithRSAEncryption
d9:a4:ff:f9:05:63:13:73:7a:5b:2d:a8:d9:af:51:7f:39:ea:
6b:25:e2:f6:46:e6:27:7c:aa:5e:67:ab:81:02:77:63:10:ec:
b0:1d:e7:09:c2:28:c3:a6:fe:d2:09:ed:82:81:0b:0a:8a:ef:
96:01:15:80:bc:69:a7:3e:f7:c4:33:26:44:e0:39:98:94:69:
cc:13:52:1f:8a:5f:79:9d:6c:98:86:e4:e1:cb:47:d2:a6:0a:
c2:38:aa:ed:82:cf:c9:94:8e:45:51:72:ed:cd:a2:0a:4f:b8:
95:54:91:32:e5:9f:47:2f:f9:ba:b3:bc:cf:a2:5b:74:67:97:
61:1d:c8:c7:0c:22:23:7e:79:db:ae:21:15:25:2f:35:fe:e4:
be:c1:cf:0f:31:2a:8a:69:a8:d2:ea:20:1c:fd:df:de:88:42:
ed:08:65:4a:19:a1:5b:f3:8c:22:3a:cd:b8:d7:32:cf:2b:93:
a5:52:19:1b:89:07:d4:cb:34:d8:2e:91:1b:8f:47:11:c2:99:
9b:27:d4:8f:d4:68:0f:b3:d7:46:95:8e:c1:4b:88:d1:85:ed:
76:cf:9d:f8:66:64:a3:da:de:ae:9b:30:bb:05:96:c7:19:45:
da:72:21:3d:f9:74:16:a0:f0:5a:e9:00:01:7b:c3:e6:f4:36:
bf:c6:93:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:04:16 2025 by rpki-client