Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa
File: 323430333a653063303a3a2f33322d3332203d3e20313338303839.roa (raw, json)
Hash identifier: N0fiZGpp7G4AcyGQiECW3/6Q5p0a7A1fAhfbX9FH1ms=
Subject key identifier: 12:90:30:4F:80:60:34:78:0D:D9:5E:D6:AB:8A:68:5B:67:5A:48:8B
Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Certificate serial: 4EA8250E3A5F2AAE7D306437730A2AAED42CB90B
Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa
Signing time: Thu 06 Mar 2025 05:00:00 +0000
ROA not before: Thu 06 Mar 2025 04:55:00 +0000
ROA not after: Thu 05 Mar 2026 05:00:00 +0000
asID: 138089
IP address blocks: 2403:e0c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:a8:25:0e:3a:5f:2a:ae:7d:30:64:37:73:0a:2a:ae:d4:2c:b9:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Validity
Not Before: Mar 6 04:55:00 2025 GMT
Not After : Mar 5 05:00:00 2026 GMT
Subject: CN=1290304F806034780DD95ED6AB8A685B675A488B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:09:c2:b8:b1:8d:7a:4a:58:c4:80:ae:8a:
bb:91:46:fd:1f:7c:47:5c:d4:dc:22:bd:ae:dd:40:
ea:c9:19:d3:05:be:e4:cf:5a:30:62:44:d0:b4:92:
b1:bd:21:0c:f4:dd:a8:c0:37:ab:ce:06:73:fe:b0:
bb:43:f2:d5:18:a9:c0:e8:35:1b:dd:5c:75:dc:e3:
d7:c7:85:5a:f2:c8:42:cc:43:88:28:29:75:20:da:
29:0d:4c:2a:71:a6:e1:f7:6e:61:b6:fc:89:5c:85:
c6:90:38:d3:fc:f4:b5:8f:00:14:12:34:6e:95:51:
bd:12:1e:21:e4:26:a8:c7:d7:30:a6:23:f6:1f:d3:
f7:aa:77:1a:57:2b:e9:7f:81:56:fa:37:ae:82:09:
8e:5d:7b:e5:cc:60:06:da:ad:4e:b2:25:63:3b:c2:
93:32:77:0b:b3:70:a5:fc:10:33:25:ab:04:0f:5d:
3b:95:f1:2a:29:17:8d:4e:33:94:bc:42:69:34:fa:
89:7d:7e:dc:4b:2f:81:2b:10:34:73:90:0f:c0:f2:
a4:45:22:7e:cc:d0:f3:72:18:e4:aa:27:b1:d4:b7:
2f:ae:98:29:70:bb:9c:e7:05:f4:53:28:69:69:04:
e6:2c:de:8e:98:a8:cf:d2:4e:72:5c:2e:40:7b:b7:
e1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:90:30:4F:80:60:34:78:0D:D9:5E:D6:AB:8A:68:5B:67:5A:48:8B
X509v3 Authority Key Identifier:
keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:e0c0::/32
Signature Algorithm: sha256WithRSAEncryption
d4:be:da:61:5e:fd:38:8c:e1:5e:0e:b2:4e:38:9d:17:84:b8:
de:e2:b7:b6:0e:0f:9d:05:1c:7e:7f:15:8c:1c:32:dd:9f:ac:
14:b3:25:45:82:0a:4e:72:0e:d7:52:d3:76:66:61:a0:04:b7:
24:3d:c6:02:1e:80:4b:54:27:d2:9d:ca:4e:ee:a4:95:e1:c7:
cf:bd:97:14:f4:17:25:3f:56:3f:89:4d:6c:46:2e:e0:bc:05:
3d:dd:61:e9:70:57:aa:77:2b:dc:34:81:44:e7:16:da:d7:d2:
81:02:d9:f0:b4:fc:b1:36:db:73:75:cd:c6:e7:98:82:1f:2d:
6e:fe:78:86:d8:94:1a:b5:28:26:2a:70:0f:70:c9:44:37:86:
e5:d9:67:0d:94:a9:fd:47:ad:eb:07:25:39:13:16:0a:d7:68:
c7:b2:ca:d4:8e:d2:18:68:2b:c5:fe:aa:24:e0:f2:de:24:7a:
4c:5d:7b:81:ba:b7:92:ef:34:7a:9c:11:62:17:9f:08:7e:b0:
0d:97:15:e7:54:13:6c:89:7f:b8:4e:71:c4:62:98:d8:56:d6:
72:f1:b7:fb:b6:ee:35:75:24:fb:cd:a9:b2:a9:3b:f9:f1:cb:
3e:5e:2b:b8:07:58:15:6f:8c:f6:c5:89:43:12:75:a3:85:80:
fb:9d:b5:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:48:05 2025 by rpki-client