Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa
File: 323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa (raw, json)
Hash identifier: M50L64dW9gGrfcxu1xrSD36UzVmQ9lRWzvUYQQ0EpFo=
Subject key identifier: 89:F3:07:DF:98:B3:D4:E9:4D:D9:A9:C6:46:DE:E9:ED:50:CF:5A:0B
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 25E20038C1EFC0C2BD7B8F4C6D8B4048ECAB5BF8
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 16:00:00 +0000
ROA not before: Sun 29 Sep 2024 15:55:00 +0000
ROA not after: Sun 28 Sep 2025 16:00:00 +0000
asID: 17727
IP address blocks: 2404:c000:c002::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:e2:00:38:c1:ef:c0:c2:bd:7b:8f:4c:6d:8b:40:48:ec:ab:5b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 15:55:00 2024 GMT
Not After : Sep 28 16:00:00 2025 GMT
Subject: CN=89F307DF98B3D4E94DD9A9C646DEE9ED50CF5A0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:be:a6:46:30:8f:aa:69:a1:00:36:7b:03:5c:
ea:91:66:53:5f:94:a6:18:f1:91:5f:13:43:49:4f:
b1:83:9e:4f:e3:65:bd:c5:47:c9:3c:46:42:96:cd:
90:fe:ee:ef:13:93:a8:0d:8f:32:cb:74:1f:94:ad:
43:9f:9f:dc:6f:b9:cf:46:72:a2:b4:03:cf:dc:96:
a4:fa:94:cf:8a:cb:05:e6:d9:21:0a:2a:8f:13:97:
d5:9e:40:9f:d7:ce:46:34:7a:42:39:09:34:58:6b:
23:0c:a9:ae:7a:37:37:14:49:a3:89:e3:f6:7b:17:
32:48:ba:fb:03:70:b6:b4:d5:86:3c:51:68:f8:72:
65:c5:88:c0:31:1c:5a:bd:e1:2c:31:fd:52:d2:15:
37:6f:0a:18:f5:36:ca:7d:80:cd:14:95:b1:82:ee:
aa:25:b4:0a:ba:ba:34:df:24:17:34:32:af:d3:88:
be:96:bc:10:8f:59:c0:8c:c6:3b:2e:11:71:5e:1b:
21:b6:9e:25:08:d0:64:61:42:a0:54:22:da:f1:2c:
e0:c4:97:e9:50:4d:02:67:f2:bf:05:b7:3c:d5:b6:
1f:c7:ac:45:c7:99:51:05:a7:24:97:40:a0:68:90:
b2:0a:bc:e0:95:20:84:ae:63:4a:c9:44:83:1f:5c:
d3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F3:07:DF:98:B3:D4:E9:4D:D9:A9:C6:46:DE:E9:ED:50:CF:5A:0B
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:c000:c002::/47
Signature Algorithm: sha256WithRSAEncryption
99:ca:d0:fd:4a:d1:0c:88:a0:8c:11:7c:cb:90:7f:29:ff:8d:
c5:75:09:9e:33:a1:d6:fc:5d:fa:89:f8:b4:17:5c:6b:7f:4c:
46:03:68:e3:75:4e:7a:a4:b8:67:35:02:22:d8:79:8f:d4:24:
ce:f0:b4:ce:50:4f:22:1d:85:86:33:56:80:0c:40:68:42:65:
f4:ed:38:68:ca:22:74:28:da:ba:be:fd:bd:12:fb:09:ce:b4:
86:3d:65:23:e2:ec:2f:f5:be:35:0e:ac:4f:63:18:f0:a0:1a:
5b:50:c2:e4:0e:ba:d2:01:71:e1:99:b5:4d:b6:6d:72:62:bd:
ca:77:0f:6d:cc:a3:21:87:e2:b0:bb:3f:db:18:7d:31:1c:0d:
a5:57:8a:da:98:a8:6f:1b:2a:4d:6b:4c:5a:44:56:b4:b7:10:
d1:00:27:35:9e:c0:54:4f:db:07:d6:f9:c4:58:76:22:33:ab:
a0:ad:5d:d1:fb:01:09:2a:3a:37:42:fe:78:37:ad:34:8a:f6:
0e:e5:d9:ee:e0:95:29:25:0c:89:8d:b9:a4:57:ad:a6:51:eb:
6b:16:56:c6:5e:33:51:38:34:3d:c2:d2:f2:d4:e3:99:7f:14:
11:7b:4a:cc:e5:90:dc:e1:9c:83:2a:f2:0d:71:8f:a3:0f:80:
27:c8:2d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:49:21 2025 by rpki-client