Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa
File: 323430343a653134303a3a2f33322d3438203d3e20313338383632.roa (raw, json)
Hash identifier: trDhhOMcGCRtpJzdR088aSo/+A0xOipuKhnFjYcx0HA=
Subject key identifier: E4:95:DC:E0:F4:14:96:E5:7B:A7:34:49:1A:32:86:01:44:14:DA:49
Certificate issuer: /CN=88D56B9372987974D75D5FEB6C48FA491B771DE6
Certificate serial: 2BFDE1AE69ABAECB4F7562ADDEDFCAF72A2D320D
Authority key identifier: 88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa
Signing time: Wed 25 Dec 2024 05:00:02 +0000
ROA not before: Wed 25 Dec 2024 04:55:02 +0000
ROA not after: Wed 24 Dec 2025 05:00:02 +0000
asID: 138862
IP address blocks: 2404:e140::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:fd:e1:ae:69:ab:ae:cb:4f:75:62:ad:de:df:ca:f7:2a:2d:32:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88D56B9372987974D75D5FEB6C48FA491B771DE6
Validity
Not Before: Dec 25 04:55:02 2024 GMT
Not After : Dec 24 05:00:02 2025 GMT
Subject: CN=E495DCE0F41496E57BA734491A3286014414DA49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:ea:f6:ae:89:7c:17:90:f9:0b:57:16:d0:
a8:aa:be:de:d9:ab:f7:a6:a8:fd:55:64:3f:1c:0d:
a7:4e:53:e1:de:b8:4f:aa:8c:ed:31:f8:5a:c6:f5:
aa:57:52:f7:14:3a:53:68:c9:88:b3:21:45:17:57:
4e:ea:f8:8e:90:a0:43:06:e0:23:32:52:63:0b:d8:
8a:52:bf:a6:1e:fc:34:8a:14:e6:13:00:6b:89:d5:
25:c8:ad:67:b3:6d:bb:05:67:95:19:6e:17:8d:25:
4d:14:71:5b:ee:eb:5f:0a:7e:88:83:f5:6c:6b:22:
3e:cb:c9:48:60:c2:32:27:34:a2:f4:76:66:a4:e0:
74:88:3d:d1:41:11:dc:a1:49:cf:6b:dd:86:66:71:
34:01:ef:8e:5c:67:ac:31:17:66:70:d9:35:4a:f3:
85:6d:36:5f:fe:c6:08:ab:2b:76:5b:a4:a6:83:66:
9b:f9:43:a2:6c:ba:15:fa:08:39:e9:c5:ef:ce:21:
45:a7:ba:9e:a6:67:1d:1a:73:e3:6f:bf:46:ad:50:
98:09:0e:a3:05:68:61:1a:80:58:77:56:af:11:31:
16:e6:1d:d5:c1:b6:07:81:32:14:3b:d2:ee:7c:ed:
e1:d1:15:4b:42:8e:71:5b:d4:95:1f:d2:7b:d3:09:
37:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:95:DC:E0:F4:14:96:E5:7B:A7:34:49:1A:32:86:01:44:14:DA:49
X509v3 Authority Key Identifier:
keyid:88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:e140::/32
Signature Algorithm: sha256WithRSAEncryption
a3:b2:0c:64:24:eb:0e:51:f3:ca:6f:7b:c1:4a:38:3a:5f:71:
3d:ca:98:66:39:3e:a5:8a:d9:81:dc:29:31:83:de:23:32:05:
9a:ea:35:d1:5a:8f:53:47:bd:31:1d:17:cf:c8:9c:11:85:a6:
ff:a8:38:ce:2c:70:fd:d4:7f:47:7c:ed:a3:0e:99:e8:27:f5:
41:77:5f:de:12:15:a0:0f:57:85:eb:af:ed:68:f4:6d:12:c8:
62:81:e4:78:89:2b:a5:b8:dd:be:d6:b2:33:84:a4:13:21:a1:
ab:f4:08:76:60:d4:6e:9e:97:ce:fa:36:78:d3:51:08:98:cd:
ef:af:92:e6:4e:de:d4:72:66:ff:60:2e:9c:1b:e5:d5:2d:48:
7b:40:35:68:54:fb:b9:34:53:83:4f:db:dd:f4:f5:06:d3:d2:
38:6e:97:57:fe:37:f5:ce:6c:56:a0:b6:e4:b8:67:e0:89:34:
03:f4:19:d1:1b:fc:17:e9:53:b9:e9:95:0d:5f:f1:ba:ae:1a:
6f:ee:eb:d9:68:f9:51:70:3d:1a:9a:72:e0:c0:e7:2e:82:2c:
fb:d7:bd:11:65:2c:30:10:a2:07:d7:a8:e8:77:c2:2a:27:8d:
d8:97:c6:29:29:6c:47:8c:59:d1:8d:1c:20:59:23:f2:28:10:
af:27:1c:04
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIUK/3hrmmrrstPdWKt3t/K9yotMg0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkx
Qjc3MURFNjAeFw0yNDEyMjUwNDU1MDJaFw0yNTEyMjQwNTAwMDJaMDMxMTAvBgNV
BAMTKEU0OTVEQ0UwRjQxNDk2RTU3QkE3MzQ0OTFBMzI4NjAxNDQxNERBNDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXper2rol8F5D5C1cW0Kiqvt7Z
q/emqP1VZD8cDadOU+HeuE+qjO0x+FrG9apXUvcUOlNoyYizIUUXV07q+I6QoEMG
4CMyUmML2IpSv6Ye/DSKFOYTAGuJ1SXIrWezbbsFZ5UZbheNJU0UcVvu618KfoiD
9WxrIj7LyUhgwjInNKL0dmak4HSIPdFBEdyhSc9r3YZmcTQB745cZ6wxF2Zw2TVK
84VtNl/+xgirK3ZbpKaDZpv5Q6JsuhX6CDnpxe/OIUWnup6mZx0ac+Nvv0atUJgJ
DqMFaGEagFh3Vq8RMRbmHdXBtgeBMhQ70u587eHRFUtCjnFb1JUf0nvTCTfnAgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQU5JXc4PQUluV7pzRJGjKGAUQU2kkwHwYDVR0j
BBgwFoAUiNVrk3KYeXTXXV/rbEj6SRt3HeYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
NTA2MzNmYy1mZTIzLTRkODItYmE2NC1iYjdlZTZkZDZlMDYvMC84OEQ1NkI5Mzcy
OTg3OTc0RDc1RDVGRUI2QzQ4RkE0OTFCNzcxREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkxQjc3
MURFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MDYzM2ZjLWZlMjMtNGQ4Mi1i
YTY0LWJiN2VlNmRkNmUwNi8wLzMyMzQzMDM0M2E2NTMxMzQzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE4UAwDQYJKoZI
hvcNAQELBQADggEBAKOyDGQk6w5R88pve8FKODpfcT3KmGY5PqWK2YHcKTGD3iMy
BZrqNdFaj1NHvTEdF8/InBGFpv+oOM4scP3Uf0d87aMOmegn9UF3X94SFaAPV4Xr
r+1o9G0SyGKB5HiJK6W43b7WsjOEpBMhoav0CHZg1G6el876NnjTUQiYze+vkuZO
3tRyZv9gLpwb5dUtSHtANWhU+7k0U4NP29309QbT0jhul1f+N/XObFagtuS4Z+CJ
NAP0GdEb/BfpU7nplQ1f8bquGm/u69lo+VFwPRqacuDA5y6CLPvXvRFlLDAQogfX
qOh3wionjdiXxikpbEeMWdGNHCBZI/IoEK8nHAQ=
-----END CERTIFICATE-----
Generated at Sun Apr 6 21:30:38 2025 by rpki-client