Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa
File: 323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa (raw, json)
Hash identifier: AiW1vSlV4baf95LI+7kyNIY4Zo9JDizUQ87YveptLPQ=
Subject key identifier: 6B:43:9D:60:5D:8C:71:15:3F:53:29:A6:21:3E:B8:C3:5B:6D:E5:1A
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 61FB27BFB6059F01C0945768CE9A39C56897EA07
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa
Signing time: Mon 03 Jun 2024 04:01:10 +0000
ROA not before: Mon 03 Jun 2024 03:56:10 +0000
ROA not after: Mon 02 Jun 2025 04:01:10 +0000
asID: 17727
IP address blocks: 2404:c000:8000::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:fb:27:bf:b6:05:9f:01:c0:94:57:68:ce:9a:39:c5:68:97:ea:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Jun 3 03:56:10 2024 GMT
Not After : Jun 2 04:01:10 2025 GMT
Subject: CN=6B439D605D8C71153F5329A6213EB8C35B6DE51A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c3:aa:c3:ca:5e:0b:8e:b1:c1:67:5f:5b:29:
50:a4:09:ca:e1:2e:8a:00:e5:a3:68:fe:97:87:f1:
f3:8f:be:7f:b8:57:6a:65:ca:4d:8e:a9:e2:fc:86:
8e:c8:b8:fe:54:06:23:e2:93:8e:d1:d2:67:d2:ad:
de:2a:af:16:2d:4f:51:b0:7f:92:61:26:51:45:6e:
96:54:aa:51:be:80:ce:68:04:fc:e2:c5:34:6b:f7:
c7:b3:29:df:06:c1:94:4c:15:91:40:94:91:73:83:
f4:4e:e2:5a:80:71:1c:6d:f9:0d:63:f5:63:9a:87:
99:b8:3b:ea:cb:f6:81:18:e4:f4:5d:34:90:ee:79:
13:32:56:a1:5c:51:7d:0f:2c:15:94:de:d6:4a:8c:
6b:cd:f5:e4:13:aa:f2:03:b3:5d:4c:cd:d2:81:8b:
dc:f1:91:5f:37:a8:58:ed:3c:4a:d2:af:7d:8d:0e:
d6:99:9b:b9:f3:c2:04:f0:ad:fc:d1:a3:26:7b:99:
59:44:ea:9c:12:29:f8:7e:52:14:fe:5b:c1:8f:8d:
c6:c1:ba:78:ec:8b:06:98:c8:33:c8:1c:6f:b0:2a:
ee:66:a4:99:a7:a7:e6:07:ac:16:93:5f:0d:26:76:
de:7c:53:4d:92:61:61:80:8c:17:52:f9:56:f3:f3:
95:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:43:9D:60:5D:8C:71:15:3F:53:29:A6:21:3E:B8:C3:5B:6D:E5:1A
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:c000:8000::/47
Signature Algorithm: sha256WithRSAEncryption
3b:cc:ac:c2:da:1e:3d:70:43:ad:00:bc:11:81:82:02:0d:6c:
b7:5f:c3:46:ca:a4:9e:98:20:13:8c:32:88:a1:dd:26:04:25:
be:a6:1d:42:5c:fc:49:07:21:e4:5f:58:b4:5e:f7:8b:30:f1:
ae:f3:b9:be:97:8f:aa:e5:cd:a2:1b:72:6d:41:52:62:15:08:
0d:69:19:92:f2:a1:15:ee:ed:c2:e9:5e:9f:43:5a:ff:20:77:
f8:2a:e4:d7:26:1b:bd:bd:49:76:8a:c5:1f:4f:d9:c7:7d:cb:
5c:5b:08:e8:e6:a1:c9:8c:e8:df:5e:62:e4:3c:97:b2:34:38:
fe:77:3d:82:e7:e5:3a:51:87:16:dd:cc:d2:51:53:3d:9b:f7:
80:e5:23:91:82:9a:e9:83:cc:98:47:33:13:cf:b4:02:f1:e5:
06:83:60:da:2e:1a:3d:16:50:88:ad:f8:c7:ec:a8:c8:ea:5e:
f2:5d:d8:03:96:74:da:61:b7:1d:b5:b3:b8:cd:b4:1a:f1:fe:
38:9e:8b:a2:87:c8:a0:f4:de:81:e3:23:27:81:2d:f9:1f:28:
e1:fa:d8:d2:b4:dd:38:a2:aa:f7:22:35:7d:ac:b1:ea:8d:03:
30:d0:ec:63:ef:d6:e6:c6:57:d5:90:38:06:75:ed:ee:8c:59:
0d:b4:3e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:38 2025 by rpki-client