Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
File: 323430313a633432303a3a2f33322d3438203d3e20313431303538.roa (raw, json)
Hash identifier: /agLGw0c81cHF8Topn/a9INtTEJnrvSh7/oHynB8qR0=
Subject key identifier: 5A:C4:42:30:1C:40:7D:5E:04:5F:41:DA:EB:6D:F3:8E:EE:85:07:C9
Certificate issuer: /CN=90317E269FFE9F713F20CFBACE642A6F60F78FCA
Certificate serial: 6EDF98E05EF75865E0E79911FD52950E77B2265D
Authority key identifier: 90:31:7E:26:9F:FE:9F:71:3F:20:CF:BA:CE:64:2A:6F:60:F7:8F:CA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90317E269FFE9F713F20CFBACE642A6F60F78FCA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
Signing time: Mon 20 Jan 2025 14:02:21 +0000
ROA not before: Mon 20 Jan 2025 13:57:21 +0000
ROA not after: Mon 19 Jan 2026 14:02:21 +0000
asID: 141058
IP address blocks: 2401:c420::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:df:98:e0:5e:f7:58:65:e0:e7:99:11:fd:52:95:0e:77:b2:26:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90317E269FFE9F713F20CFBACE642A6F60F78FCA
Validity
Not Before: Jan 20 13:57:21 2025 GMT
Not After : Jan 19 14:02:21 2026 GMT
Subject: CN=5AC442301C407D5E045F41DAEB6DF38EEE8507C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b3:99:36:42:01:75:f6:10:90:20:1e:33:3b:
d1:38:a9:65:8f:a9:7a:f0:b6:01:15:c8:d4:98:39:
78:61:dd:db:b4:e4:e7:31:63:17:40:3c:ab:31:64:
10:e8:29:9e:d5:b6:8d:6c:00:bd:ac:71:d7:d3:28:
41:ec:d9:4e:c0:39:33:3e:67:de:1f:bb:39:1a:34:
c4:83:2c:a5:a6:5a:ec:43:85:c2:56:f5:fa:ac:56:
1c:67:a6:c9:db:ff:71:dd:37:74:b9:fa:58:38:ce:
c1:8a:cf:7c:8a:13:04:0a:ff:5d:31:e1:d6:97:27:
46:3b:43:80:d1:58:2d:55:01:52:a9:2b:9f:5d:db:
44:cd:69:20:aa:e5:38:75:b9:72:12:87:15:12:90:
fe:c5:1c:83:f5:21:6e:b9:cb:b2:41:93:a9:cf:46:
4e:a7:5d:10:99:95:a7:5c:99:0a:04:7f:a6:d6:a3:
ef:49:93:17:62:8c:50:6e:1d:c9:ce:28:bb:d0:4f:
79:8e:32:13:d1:c8:6a:99:80:98:a8:f9:a8:c9:40:
fc:51:96:6b:93:97:62:c7:a4:34:6f:73:e6:cb:98:
5d:cf:6a:aa:b9:71:72:28:b1:7a:70:70:65:81:e9:
0f:8d:e9:91:26:94:43:b3:8d:8d:7e:50:82:95:d1:
1a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C4:42:30:1C:40:7D:5E:04:5F:41:DA:EB:6D:F3:8E:EE:85:07:C9
X509v3 Authority Key Identifier:
keyid:90:31:7E:26:9F:FE:9F:71:3F:20:CF:BA:CE:64:2A:6F:60:F7:8F:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/90317E269FFE9F713F20CFBACE642A6F60F78FCA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90317E269FFE9F713F20CFBACE642A6F60F78FCA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53b858f6-de20-4121-bcea-9076edccc097/0/323430313a633432303a3a2f33322d3438203d3e20313431303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:c420::/32
Signature Algorithm: sha256WithRSAEncryption
7b:e6:7a:eb:b8:ea:d9:9f:2a:6b:dc:48:2d:7d:73:7a:f7:5b:
c1:b5:b4:34:32:c3:45:a1:16:3d:07:2b:19:30:ab:76:24:6a:
56:2d:7f:6c:6b:7f:c1:2e:36:57:b4:2c:83:7b:19:4c:8e:01:
be:4e:d1:ee:83:d8:9d:66:80:62:95:7b:fa:bd:07:d8:72:70:
28:77:f4:a0:c8:b9:ed:f9:65:f4:d2:48:9d:b7:d8:ba:0a:4e:
8e:53:1c:1a:62:09:bc:51:9f:a7:7e:88:01:9b:cb:47:db:31:
cb:00:76:f6:26:88:5c:60:72:fc:aa:31:79:1e:b6:0c:6f:e9:
16:d2:44:a5:4c:13:7a:01:45:98:76:94:c8:7b:27:6a:72:d5:
4f:3a:60:2f:88:81:64:1f:39:33:79:9d:a5:0f:db:71:5c:66:
74:7e:e4:d4:f6:3e:33:1f:b6:d6:c1:46:c7:5d:5d:e9:08:94:
a0:13:76:84:b9:3e:a5:f1:87:86:c6:c6:a8:49:72:c6:40:31:
ab:dd:c8:e7:46:90:04:d9:eb:ca:38:cb:b0:04:a8:b5:8a:7d:
4a:5b:b6:46:e2:85:44:70:df:43:a5:eb:27:c2:2d:bf:b4:22:
3b:aa:7c:6e:32:97:f5:54:af:5c:42:08:67:85:e9:83:50:5b:
94:94:1c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:04:07 2025 by rpki-client