Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa
File: 323430323a613030303a3a2f33342d3334203d3e203234323131.roa (raw, json)
Hash identifier: 2FlS11/c/x3Ynfk/ZVrKJLiDsOp9Gs66TvBDURO1NdY=
Subject key identifier: 9B:B9:B6:E3:41:C2:51:D5:02:2F:AA:F1:44:37:79:F4:96:B3:0A:79
Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B
Certificate serial: 7ACC6C02CBEEFDD480F696B3F85E05C57BBEAC0E
Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa
Signing time: Mon 01 Jul 2024 01:03:24 +0000
ROA not before: Mon 01 Jul 2024 00:58:24 +0000
ROA not after: Mon 30 Jun 2025 01:03:24 +0000
asID: 24211
IP address blocks: 2402:a000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:cc:6c:02:cb:ee:fd:d4:80:f6:96:b3:f8:5e:05:c5:7b:be:ac:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B
Validity
Not Before: Jul 1 00:58:24 2024 GMT
Not After : Jun 30 01:03:24 2025 GMT
Subject: CN=9BB9B6E341C251D5022FAAF1443779F496B30A79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6f:09:ac:85:73:62:f3:30:d3:79:96:34:c3:
d5:4f:0e:17:a2:56:e3:ff:88:30:b8:cd:a5:de:09:
33:cb:74:46:9e:d2:26:6d:b6:4c:b5:f5:9c:d5:4f:
ab:08:72:ae:4f:82:66:98:3f:48:b3:bf:55:ca:30:
12:a6:81:11:3f:22:c6:1f:c8:9a:a7:e3:3a:c1:72:
e3:b8:ae:d8:44:3d:a4:96:55:53:49:97:dd:21:7e:
e2:7d:ae:7b:a1:fa:f7:c7:59:0b:c1:db:3d:1e:8f:
5d:29:ac:e6:fb:a8:5e:93:8d:75:1e:3a:77:1a:86:
c9:6c:e2:3d:3e:84:7b:77:d4:86:0f:95:a8:e1:58:
19:91:f2:9f:02:d8:8f:17:21:90:60:66:a4:3e:a1:
ca:64:b6:00:3d:e7:75:bf:7e:28:91:d2:69:0a:30:
20:4d:8e:09:4b:6f:d1:31:72:a7:2a:9c:9f:a2:ce:
58:d1:6e:e6:02:42:c3:fc:56:c4:c4:31:77:f6:9b:
cb:af:93:88:ce:bc:e2:c5:9f:d9:41:64:98:f6:30:
e6:6a:28:4d:4f:d6:9a:2e:f6:06:38:52:cb:a1:41:
15:c6:bd:24:63:02:65:fa:f1:a8:df:f2:71:73:01:
93:34:7b:94:c9:a9:35:23:a1:8e:4f:9e:4e:f5:d4:
d5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B9:B6:E3:41:C2:51:D5:02:2F:AA:F1:44:37:79:F4:96:B3:0A:79
X509v3 Authority Key Identifier:
keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:a000::/34
Signature Algorithm: sha256WithRSAEncryption
35:ee:da:d0:18:fc:99:fd:94:db:76:5d:97:77:60:3d:26:b3:
00:bc:a8:4f:01:d5:6a:c7:79:e0:f1:41:ab:b6:0d:3f:99:c2:
c1:a4:1f:ac:db:15:dc:52:e6:2b:95:4e:cb:52:e9:b4:40:a8:
35:07:a9:bd:19:79:91:d7:1d:2a:db:6f:6f:89:6d:8f:6d:89:
d3:03:d7:9c:0c:70:f5:b2:e0:f2:5b:6b:ea:b3:76:fb:5a:80:
f9:76:0b:5f:cf:c9:51:ad:50:b4:3f:11:e9:c9:4d:1b:7e:19:
cd:ed:28:6c:79:de:1e:3f:4f:71:87:19:75:d3:16:dd:ab:4c:
d4:b2:43:76:9b:e3:2d:ea:57:58:8c:67:6d:72:c7:08:c3:82:
93:81:44:78:33:19:7b:9e:a6:be:5f:f2:42:05:a0:c5:fb:c5:
06:af:bc:1f:52:45:19:c5:6c:6f:62:55:d9:7f:41:11:90:0c:
62:79:98:00:cb:90:cd:f5:d8:c7:4d:9e:86:13:23:85:e1:34:
09:87:ae:40:fd:e9:29:30:42:64:5e:56:9e:10:ef:49:2f:db:
93:a8:76:53:2e:a4:79:24:42:65:3b:d0:ed:43:fa:9d:71:ce:
43:d2:49:35:78:41:83:5d:be:64:4c:d6:f0:67:6f:37:33:6e:
4d:1c:ea:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:19:07 2025 by rpki-client