Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa
File: 323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa (raw, json)
Hash identifier: jBGgrMGnibBJ35+neDfX4MwBNDGqqmS27hN6Fi2jltI=
Subject key identifier: 3B:5F:64:05:B2:12:FA:D6:58:3F:57:56:CF:34:6D:EC:D6:93:E1:96
Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F
Certificate serial: 34CD05DD7A0D2AEF1492777EDEF138332134A8F1
Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa
Signing time: Mon 13 Jan 2025 22:00:02 +0000
ROA not before: Mon 13 Jan 2025 21:55:02 +0000
ROA not after: Mon 12 Jan 2026 22:00:02 +0000
asID: 133827
IP address blocks: 2404:a640:62::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:cd:05:dd:7a:0d:2a:ef:14:92:77:7e:de:f1:38:33:21:34:a8:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F
Validity
Not Before: Jan 13 21:55:02 2025 GMT
Not After : Jan 12 22:00:02 2026 GMT
Subject: CN=3B5F6405B212FAD6583F5756CF346DECD693E196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:26:db:a0:68:be:a0:70:71:25:cd:27:19:90:
0b:9f:7d:d6:73:13:de:95:58:69:59:96:94:c6:20:
87:61:e9:06:e4:4b:33:90:dd:6a:22:75:e3:2f:1d:
61:dc:4b:b0:3c:d1:fa:1a:d2:d8:44:a9:bf:0a:6f:
08:41:de:f2:b0:4e:33:c6:08:84:ab:25:28:5c:1d:
17:61:15:b1:78:e2:24:33:8a:bb:f8:0b:67:6e:ef:
37:69:de:1c:de:c2:f6:b0:69:14:9a:f9:aa:48:bd:
ea:2e:91:b5:55:b7:17:a1:34:02:d6:95:f4:dd:2f:
35:de:d7:47:3e:24:5b:8a:00:64:81:e2:4c:9b:3e:
17:c2:f2:b2:91:4f:7e:2d:ed:c6:8e:75:c8:50:bc:
c3:b5:ad:d4:3d:00:ea:d7:d5:de:93:fc:42:81:cd:
fb:3b:99:d6:5e:86:2c:90:54:0a:b1:65:05:0f:92:
e0:d9:88:03:1e:11:23:18:82:81:09:3c:c2:8b:44:
05:cd:8c:44:da:e1:d5:ca:ec:08:42:b3:7e:60:dd:
8e:ab:92:f3:f8:b5:c5:c2:cc:09:97:d6:2e:b7:b8:
72:06:2c:c1:3e:c2:8a:36:7f:39:3f:f0:1c:7e:12:
7e:0e:e0:53:3c:4f:80:90:62:90:69:a0:0f:fb:18:
3a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5F:64:05:B2:12:FA:D6:58:3F:57:56:CF:34:6D:EC:D6:93:E1:96
X509v3 Authority Key Identifier:
keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:a640:62::/48
Signature Algorithm: sha256WithRSAEncryption
32:c6:bb:0c:d5:bf:39:6e:00:2a:c8:e3:83:69:a3:51:14:d5:
6d:23:94:89:43:e4:85:cf:3e:14:c0:bd:60:01:6a:2e:c8:c7:
12:52:3f:e1:de:86:0a:e1:fc:84:38:98:42:6f:44:c2:73:e3:
e6:c8:d2:79:1e:61:7c:96:10:f5:21:9b:3b:e0:88:1b:de:eb:
b7:20:29:55:69:5b:37:d6:31:cd:be:1d:9b:16:a1:0f:cb:55:
c7:71:c7:b6:b8:0e:c6:29:46:98:fe:3d:e3:2b:0d:52:95:62:
bd:3f:de:54:63:f6:71:d7:ba:6e:5e:ed:d9:86:fb:53:9d:4e:
da:1f:d6:d0:25:35:e5:b3:14:61:10:c6:6f:68:51:4a:13:e9:
29:a8:c2:9a:b8:a7:ef:ec:b4:3f:f6:8d:2f:ef:73:25:94:bd:
ea:50:d1:ca:44:f9:d7:76:98:d2:47:74:d0:8d:72:9e:4c:88:
49:5c:86:1c:15:db:15:a5:44:e2:27:ca:d0:c6:e3:47:5d:b0:
31:9a:fa:93:76:57:e2:b5:4e:91:1e:40:78:41:f8:57:fd:58:
0d:30:ec:cb:cc:1e:25:f0:f6:99:d7:73:21:6f:78:a3:a3:6c:
6f:67:32:ab:a7:39:55:f7:6b:7c:7b:68:f6:a7:fd:fb:2f:69:
de:fe:85:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:01:41 2025 by rpki-client