Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa
File: 323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa (raw, json)
Hash identifier: yuxuROpR3UsRLPoFKCRswWmsub5LhfKgUbndSMMOdp4=
Subject key identifier: 34:1C:1E:4C:73:7A:3B:EA:CB:A4:DF:E7:2C:50:64:83:83:D6:8B:B9
Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF
Certificate serial: 0C4F349012EF6E47C729BB341D7A4A80B6CF47D3
Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa
Signing time: Fri 31 Jan 2025 13:00:00 +0000
ROA not before: Fri 31 Jan 2025 12:55:00 +0000
ROA not after: Fri 30 Jan 2026 13:00:00 +0000
asID: 139949
IP address blocks: 2405:aac0:55::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:4f:34:90:12:ef:6e:47:c7:29:bb:34:1d:7a:4a:80:b6:cf:47:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF
Validity
Not Before: Jan 31 12:55:00 2025 GMT
Not After : Jan 30 13:00:00 2026 GMT
Subject: CN=341C1E4C737A3BEACBA4DFE72C50648383D68BB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:21:aa:7b:15:1d:6a:ca:e4:71:d9:54:14:2f:
07:b9:65:31:52:77:64:f1:d3:86:fb:f6:c8:53:31:
51:71:95:9c:90:42:12:ff:c1:8c:3c:79:28:91:a7:
e1:19:2b:a5:b5:69:70:1b:78:8c:f1:57:db:22:ba:
db:81:a1:c2:98:c1:33:93:63:b0:e7:05:68:55:5a:
27:d9:31:f5:c5:a6:81:b0:ba:5d:ac:08:f0:ff:20:
f3:14:eb:f0:83:47:82:8f:44:79:b2:75:82:9d:de:
c9:4f:1a:4b:bc:2e:bb:6b:4a:91:11:99:b0:fa:8e:
4e:86:f8:b8:63:ad:62:e4:18:89:7e:dc:29:7f:49:
12:f1:6d:0d:21:ce:f9:fb:50:9a:76:bf:3a:27:ba:
45:01:2b:96:c4:65:98:cd:86:91:63:a9:85:90:b7:
87:25:4b:6e:bc:43:1b:df:72:b5:94:ec:be:ec:9c:
c5:82:e4:0a:f5:8d:60:24:d3:c4:bf:dc:be:aa:f4:
3b:c4:6e:8b:17:75:b3:a0:88:74:97:7b:ce:ed:83:
26:9f:75:ac:52:95:79:0b:bb:ce:13:5b:ed:0c:4a:
2f:d0:ee:cf:57:06:23:c8:59:5d:e7:0d:2c:9a:76:
39:f5:0b:87:a2:d6:76:e5:fb:ba:da:e8:a3:5f:cf:
b1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1C:1E:4C:73:7A:3B:EA:CB:A4:DF:E7:2C:50:64:83:83:D6:8B:B9
X509v3 Authority Key Identifier:
keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:aac0:55::/48
Signature Algorithm: sha256WithRSAEncryption
93:b9:e7:d0:82:81:b0:3a:af:be:f8:98:54:48:ac:4a:3d:72:
96:20:11:f2:a9:0d:77:24:95:15:cd:87:57:6c:09:1c:9e:36:
e2:e0:92:dd:0d:c1:38:f3:24:6e:68:04:a5:d1:2c:74:57:6f:
02:88:4d:04:83:ef:7c:6d:87:54:04:e7:42:91:4f:1f:f3:96:
a0:55:30:19:81:cc:0f:43:5f:78:40:c3:37:82:c9:20:91:f5:
cf:68:84:fc:e9:d6:5d:63:a0:f1:ba:e6:fc:02:bf:0f:f0:ca:
fc:01:c4:72:d3:20:eb:db:67:b6:21:f3:03:6e:c4:00:f3:54:
8a:05:cf:df:75:68:a7:b7:08:df:61:d5:06:60:80:6c:76:18:
4d:b9:cd:e4:cf:3e:69:5b:f6:cf:54:56:f4:16:e1:4a:6d:78:
b5:2e:4e:e5:1f:ac:4c:c8:42:31:5e:b3:62:e9:05:e9:8d:f9:
0d:bc:0c:0f:7b:09:5b:5d:e0:3c:cf:cc:13:07:7f:bb:b8:b6:
3f:24:84:87:0b:02:31:8c:c7:1c:77:7f:14:6e:f2:e0:6b:72:
68:86:26:40:dc:e7:a5:b0:32:67:6d:67:fa:1f:9f:50:3d:7b:
7e:73:89:93:cb:dc:41:a2:99:4c:be:3c:aa:5f:83:57:ab:47:
30:02:9a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:04:43 2025 by rpki-client