Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa
File: 323430333a343334303a3a2f33322d3332203d3e20313337333738.roa (raw, json)
Hash identifier: Mb0v9h1dQ2fzKimG/dnv0t/MA1EgX4nopy7o63/fKic=
Subject key identifier: E9:B5:DA:FA:1B:19:62:85:1B:6C:A7:E8:6D:78:A5:C1:80:9C:72:2C
Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Certificate serial: 05AA4AECBE833C400162E083302B7C636DBEBC41
Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa
Signing time: Mon 01 Jul 2024 01:03:26 +0000
ROA not before: Mon 01 Jul 2024 00:58:26 +0000
ROA not after: Mon 30 Jun 2025 01:03:26 +0000
asID: 137378
IP address blocks: 2403:4340::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:aa:4a:ec:be:83:3c:40:01:62:e0:83:30:2b:7c:63:6d:be:bc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Validity
Not Before: Jul 1 00:58:26 2024 GMT
Not After : Jun 30 01:03:26 2025 GMT
Subject: CN=E9B5DAFA1B1962851B6CA7E86D78A5C1809C722C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:08:5a:a8:5e:c8:0f:b0:52:b6:f2:f4:d6:
2a:df:ba:e4:de:11:eb:71:9e:a5:bd:f0:62:24:dc:
15:49:8d:41:1a:37:a4:c6:30:96:02:88:be:42:03:
72:9f:e6:3f:87:a4:b3:e1:ab:88:19:b7:27:ee:88:
af:4a:4f:03:fa:57:a4:0e:ff:17:63:29:3c:e6:01:
01:0d:3c:30:b8:0d:ac:70:68:e9:b7:2c:3b:c9:ab:
72:d8:5c:c8:10:4b:2b:e8:ca:9a:0e:78:4e:71:6f:
85:c5:ae:d9:2e:b9:09:b5:ee:bf:05:35:64:f2:22:
f9:fb:37:c7:b7:3c:a6:73:50:12:12:03:33:40:5d:
a1:60:56:64:17:08:3c:3b:2a:7e:06:73:c5:94:f8:
14:de:a2:96:fd:ec:76:b6:4e:72:08:b6:4c:7f:67:
16:27:94:26:55:6d:38:07:db:f5:86:fb:23:17:fa:
12:bc:d0:83:ac:52:d9:f7:44:39:a0:16:d1:26:a1:
84:43:b7:0e:2b:db:49:f3:92:b8:6d:a1:a2:05:a0:
43:a1:7c:80:eb:dd:91:64:8b:00:d6:43:85:c9:6d:
a3:20:41:14:e1:4c:bd:c1:47:b9:0c:c5:a6:3a:ff:
0b:40:57:46:f7:7d:8d:9c:13:da:08:8c:96:dc:3c:
70:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B5:DA:FA:1B:19:62:85:1B:6C:A7:E8:6D:78:A5:C1:80:9C:72:2C
X509v3 Authority Key Identifier:
keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:4340::/32
Signature Algorithm: sha256WithRSAEncryption
3b:58:4a:c3:cc:61:88:9a:22:eb:2c:9c:36:93:89:f2:10:35:
ec:f6:28:94:9e:d0:bb:fe:83:01:cc:aa:6a:81:4f:3e:d9:59:
68:71:96:25:a5:f3:f8:6d:7c:f6:8e:d0:7d:9f:b2:c7:bd:62:
68:e2:18:77:b9:93:d1:04:ee:fa:41:a2:7e:10:07:23:ea:ce:
ff:37:2a:0f:12:3d:31:e0:3e:53:90:67:d9:92:de:56:97:d8:
0c:f1:b7:46:31:a6:52:36:2c:ba:b5:bb:9e:52:3f:c1:e9:b3:
df:b7:e9:fe:82:12:91:c3:62:c3:f0:ca:ad:e2:b5:c3:78:d4:
33:db:f4:70:10:5c:5d:73:26:4a:43:19:eb:a0:54:5a:7b:18:
41:fb:57:6d:d0:7f:6f:4b:63:b0:15:0e:bd:5f:50:0e:88:d4:
0c:28:74:71:bb:18:fa:5f:c1:7a:c1:44:9e:0c:1c:3c:10:71:
d9:32:5e:f1:b7:60:2c:c3:28:94:b2:60:2e:0f:1d:27:f2:34:
d5:40:f2:9c:e5:38:99:25:86:01:79:53:c5:4d:57:b7:2b:4c:
a0:12:5d:c9:23:45:7b:f4:b7:37:eb:70:fc:4f:a9:96:70:b9:
6e:0d:c7:b4:62:fe:3c:5b:07:e3:f6:22:bb:4f:8d:dc:dc:7a:
a2:a2:3e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:03:01 2025 by rpki-client