Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa
File: 323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa (raw, json)
Hash identifier: e2hZqRmumwwjihIOo4NSyIcflDvxaVJmQVJkA8KGCsQ=
Subject key identifier: 8B:14:22:E9:26:ED:73:EF:40:5E:39:C7:B0:16:BC:3B:63:82:6E:F0
Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97
Certificate serial: 351FC1EEA7A73C0C8E290926EFCE8355BFA0A8F3
Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa
Signing time: Mon 01 Jul 2024 16:00:02 +0000
ROA not before: Mon 01 Jul 2024 15:55:02 +0000
ROA not after: Mon 30 Jun 2025 16:00:02 +0000
asID: 138866
IP address blocks: 2404:fec0:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1f:c1:ee:a7:a7:3c:0c:8e:29:09:26:ef:ce:83:55:bf:a0:a8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97
Validity
Not Before: Jul 1 15:55:02 2024 GMT
Not After : Jun 30 16:00:02 2025 GMT
Subject: CN=8B1422E926ED73EF405E39C7B016BC3B63826EF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:47:2e:15:49:25:69:88:4f:48:8a:86:03:ef:
f4:68:7c:b6:74:d0:c6:9d:fa:75:d1:63:23:12:51:
57:07:f5:0d:60:06:7f:bd:ae:aa:85:ee:ce:5f:1b:
96:d7:58:45:b8:70:f1:e3:b9:4c:d8:f2:f5:79:af:
80:c4:99:6e:31:86:91:df:92:f6:da:e9:8e:f4:d7:
d7:2f:64:a3:80:5c:10:d4:51:86:31:41:d2:00:c2:
fb:6b:80:91:52:88:0a:3d:39:b1:12:4f:8b:7b:a7:
55:06:e9:f3:b4:42:48:86:60:10:c3:91:b0:ed:a8:
59:63:ea:a2:c9:8a:e7:1e:e7:07:a4:07:dc:bd:7b:
fb:a0:47:ce:92:59:07:34:b0:ca:ba:0f:15:57:b4:
bb:6a:9f:ae:38:a4:a8:c1:82:9a:17:c0:88:d8:5d:
cc:81:46:3a:1b:5f:17:09:ce:c1:58:54:48:3c:41:
77:4c:15:57:3f:e7:bb:13:50:ab:1d:f8:ec:e0:06:
82:ab:31:3c:0e:60:01:50:7b:26:6b:45:1a:ba:7c:
14:47:3b:12:91:9a:6a:3a:54:49:05:1e:c4:33:69:
6f:30:77:58:3a:46:c3:53:63:25:fe:3d:e7:a1:28:
22:34:d0:a7:93:a3:53:bc:8c:d5:05:af:d7:a8:76:
63:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:14:22:E9:26:ED:73:EF:40:5E:39:C7:B0:16:BC:3B:63:82:6E:F0
X509v3 Authority Key Identifier:
keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fec0:2::/48
Signature Algorithm: sha256WithRSAEncryption
66:2f:b4:1e:a5:dd:ed:5b:ac:54:90:89:60:84:ec:c5:df:62:
18:1b:98:4e:8d:96:70:7b:13:97:bb:d7:d5:24:c2:26:2b:b4:
46:c2:80:e3:f0:9e:db:6b:55:a1:94:f5:84:1c:83:f3:34:94:
11:4b:46:9f:83:35:ef:e7:50:ac:ce:0c:7a:16:a7:85:c1:4b:
cf:8f:01:52:14:ca:6d:ad:14:8b:48:9f:53:8f:1d:bb:30:fd:
cc:95:1e:79:01:89:4e:da:f1:25:dc:62:2d:c2:ba:f8:7e:f4:
3a:15:25:bd:81:fb:30:3c:45:95:72:5d:1c:fd:2a:16:02:c7:
9a:0e:6e:2c:d1:9d:3c:34:f0:de:ea:5a:0b:ac:ed:f1:5d:c6:
b5:09:b5:b8:da:17:f3:88:6f:40:ea:25:a8:93:30:6d:f3:5c:
8d:fd:3f:26:04:b1:98:35:8e:0f:6a:ca:54:ac:15:72:07:46:
82:a6:c6:29:1f:1a:fd:7c:c2:82:bd:ba:a4:2a:41:f0:bc:0b:
4c:92:21:ed:09:43:5d:4d:bc:12:40:0e:53:b5:5f:f9:d5:ad:
02:a2:9c:4d:91:df:38:84:6d:63:b6:a3:f1:0a:2d:87:83:db:
09:3e:0c:49:8a:e0:e5:00:0e:aa:44:91:cc:1c:e6:53:c4:fa:
13:4c:5e:e8
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUNR/B7qenPAyOKQkm786DVb+gqPMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG
QzhBN0U5NzAeFw0yNDA3MDExNTU1MDJaFw0yNTA2MzAxNjAwMDJaMDMxMTAvBgNV
BAMTKDhCMTQyMkU5MjZFRDczRUY0MDVFMzlDN0IwMTZCQzNCNjM4MjZFRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRy4VSSVpiE9IioYD7/RofLZ0
0Mad+nXRYyMSUVcH9Q1gBn+9rqqF7s5fG5bXWEW4cPHjuUzY8vV5r4DEmW4xhpHf
kvba6Y7019cvZKOAXBDUUYYxQdIAwvtrgJFSiAo9ObEST4t7p1UG6fO0QkiGYBDD
kbDtqFlj6qLJiuce5wekB9y9e/ugR86SWQc0sMq6DxVXtLtqn644pKjBgpoXwIjY
XcyBRjobXxcJzsFYVEg8QXdMFVc/57sTUKsd+OzgBoKrMTwOYAFQeyZrRRq6fBRH
OxKRmmo6VEkFHsQzaW8wd1g6RsNTYyX+PeehKCI00KeTo1O8jNUFr9eodmPbAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUixQi6Sbtc+9AXjnHsBa8O2OCbvAwHwYDVR0j
BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF
MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB
N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05
NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAIw
DQYJKoZIhvcNAQELBQADggEBAGYvtB6l3e1brFSQiWCE7MXfYhgbmE6NlnB7E5e7
19UkwiYrtEbCgOPwnttrVaGU9YQcg/M0lBFLRp+DNe/nUKzODHoWp4XBS8+PAVIU
ym2tFItIn1OPHbsw/cyVHnkBiU7a8SXcYi3Cuvh+9DoVJb2B+zA8RZVyXRz9KhYC
x5oObizRnTw08N7qWgus7fFdxrUJtbjaF/OIb0DqJaiTMG3zXI39PyYEsZg1jg9q
ylSsFXIHRoKmxikfGv18woK9uqQqQfC8C0ySIe0JQ11NvBJADlO1X/nVrQKinE2R
3ziEbWO2o/EKLYeD2wk+DEmK4OUADqpEkcwc5lPE+hNMXug=
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:04:43 2025 by rpki-client