Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa
File: 323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa (raw, json)
Hash identifier: XlyZnaJFiepn800dX9EHb8KS05HoWD8cRCDlUlRU1AE=
Subject key identifier: D3:63:DE:09:0B:C9:11:6D:AC:E9:A8:C9:23:EA:0E:36:D8:28:2F:37
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 29D1E5206AD9F7F9B6A67FE8EB62B02F982B6463
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa
Signing time: Mon 03 Jun 2024 04:01:11 +0000
ROA not before: Mon 03 Jun 2024 03:56:11 +0000
ROA not after: Mon 02 Jun 2025 04:01:11 +0000
asID: 17727
IP address blocks: 2404:c000:8002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:d1:e5:20:6a:d9:f7:f9:b6:a6:7f:e8:eb:62:b0:2f:98:2b:64:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Jun 3 03:56:11 2024 GMT
Not After : Jun 2 04:01:11 2025 GMT
Subject: CN=D363DE090BC9116DACE9A8C923EA0E36D8282F37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:33:99:f5:27:d1:f0:c7:cd:b5:67:9f:82:93:
ad:56:61:41:02:ea:22:67:dc:8a:a1:84:10:49:90:
a9:5f:54:c3:40:9c:dc:0d:05:8e:d9:9e:77:58:64:
e6:5e:d5:ea:80:25:7b:13:bc:26:cc:ca:a3:5b:df:
fe:11:bd:b7:cf:40:ae:bb:77:b6:12:1c:fc:69:ab:
9e:b6:e1:2f:b2:02:8f:c8:a1:55:77:68:40:79:a9:
68:63:cf:21:bf:e3:fe:e2:82:b3:38:50:8f:15:89:
3d:72:46:74:49:d8:4d:20:f3:19:b2:4c:4b:f3:2d:
49:46:e7:dd:22:63:20:38:d0:7e:ad:e8:be:a2:9b:
2b:f6:fe:48:a2:99:b7:34:e2:10:eb:ce:97:df:35:
76:03:f4:f8:63:3a:07:13:42:06:40:6d:ff:a5:59:
40:d5:19:08:6d:5f:c0:23:52:dd:d9:e6:18:7d:cb:
ed:cc:63:a3:54:05:15:e2:a0:46:cb:5d:b5:e5:5c:
05:d5:ff:b8:53:57:af:4e:64:da:04:68:dc:e8:2b:
0c:34:2d:65:f0:17:19:df:2f:c7:0d:9f:42:39:33:
49:24:f5:b1:7b:18:8b:b4:b4:ec:5e:fa:81:96:3a:
2c:16:53:56:73:e4:13:26:73:38:ad:0f:a8:fe:80:
a0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:63:DE:09:0B:C9:11:6D:AC:E9:A8:C9:23:EA:0E:36:D8:28:2F:37
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:c000:8002::/48
Signature Algorithm: sha256WithRSAEncryption
2a:a0:d1:58:54:04:07:0c:e2:f4:a0:5a:23:26:86:6b:f4:c8:
8d:dd:68:95:54:bd:39:72:60:77:ce:ec:92:de:e2:9d:45:77:
ac:15:8f:82:28:c0:d0:bb:c9:2f:a9:3e:87:b9:fd:92:7f:8b:
f9:2e:4c:8f:e9:87:d9:a1:f6:19:5a:ee:ed:70:96:35:c1:f2:
db:84:7b:a2:43:74:85:8d:62:2e:e8:c3:ea:c0:ae:d9:bf:94:
b0:42:68:9e:62:f7:a1:11:67:f9:f5:ef:c2:53:35:c7:8e:5d:
52:f9:e7:09:90:c3:19:78:12:0c:94:ed:4c:5b:92:d3:dd:d1:
df:51:45:22:ab:05:73:50:ac:5a:3d:b4:5f:01:df:4e:b3:62:
5c:29:c3:b4:a0:28:40:30:17:ef:8f:2c:a2:1f:da:08:30:69:
70:95:a7:3d:4e:96:a0:ea:33:dd:37:af:3e:1d:1f:7c:4c:15:
61:61:ae:10:26:f8:dc:30:8a:5d:25:65:0a:f1:ae:68:e5:dc:
7e:58:a6:80:1e:58:19:55:35:bd:79:f4:b8:46:87:78:cb:5e:
7e:a1:b6:ef:75:94:ed:13:05:0a:e5:82:17:57:c7:df:3b:64:
c9:20:50:be:28:8c:87:7c:22:09:0c:4d:b9:3b:69:8d:b7:dd:
bd:0b:1d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:14 2025 by rpki-client