Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa
File: 323430363a396163303a3a2f33322d3438203d3e20313431313134.roa (raw, json)
Hash identifier: /hJyfV6PR16JNZ+DEa2S1gpvBiL5SDBd/0mdlnBUhuY=
Subject key identifier: 3D:22:98:D9:ED:CA:0C:42:D0:22:7C:84:8F:CB:C5:30:8D:2D:74:75
Certificate issuer: /CN=52145183B5BE1A663FBC5C228102541AC61F9F86
Certificate serial: 10C847E202AAE004BFF0CD3A6400867F53FA1142
Authority key identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa
Signing time: Wed 25 Sep 2024 11:00:01 +0000
ROA not before: Wed 25 Sep 2024 10:55:01 +0000
ROA not after: Wed 24 Sep 2025 11:00:01 +0000
asID: 141114
IP address blocks: 2406:9ac0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:c8:47:e2:02:aa:e0:04:bf:f0:cd:3a:64:00:86:7f:53:fa:11:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52145183B5BE1A663FBC5C228102541AC61F9F86
Validity
Not Before: Sep 25 10:55:01 2024 GMT
Not After : Sep 24 11:00:01 2025 GMT
Subject: CN=3D2298D9EDCA0C42D0227C848FCBC5308D2D7475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1f:97:ac:bf:12:9e:07:41:95:7f:b6:6a:ca:
e3:26:51:07:03:18:e1:56:9c:01:17:f4:63:3a:c8:
94:23:db:a1:a6:5e:d5:c4:ab:b7:8f:e0:55:8f:88:
a8:b4:57:df:8c:f3:99:98:a3:65:ac:35:57:b6:93:
10:1f:dc:83:bb:44:14:74:fd:b9:17:a9:31:41:50:
81:58:2a:17:46:38:d5:2b:64:26:2f:38:32:d6:dc:
4f:c9:af:70:d9:30:3d:d0:d7:ee:63:ea:ff:7e:73:
8a:8f:8e:08:1d:be:87:eb:51:7d:7e:37:ed:35:bc:
3c:80:9d:66:6b:f7:12:2b:e3:20:d7:3c:3c:8e:36:
fb:5f:36:aa:dd:9d:5c:e4:5e:a3:6e:5e:4c:80:88:
36:50:d5:79:13:c3:f9:08:44:41:99:bc:bf:98:0c:
e2:22:d8:c8:53:88:6d:28:92:73:36:d7:7b:a7:e5:
93:eb:1d:ea:10:e4:59:c9:3a:05:aa:4b:30:2f:85:
7e:0c:5b:67:d1:31:7b:b7:28:9d:bd:df:43:32:b5:
74:c1:e4:2d:40:a8:8f:e4:c6:39:29:e9:d3:cc:de:
11:c5:bc:6e:1c:d5:4b:15:44:a2:61:e7:df:3c:a1:
fd:f3:48:74:69:85:94:00:8f:4b:a5:db:78:09:9d:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:22:98:D9:ED:CA:0C:42:D0:22:7C:84:8F:CB:C5:30:8D:2D:74:75
X509v3 Authority Key Identifier:
keyid:52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:9ac0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:4e:61:ba:ef:5b:18:7f:9b:8b:5e:51:c4:5d:1c:6d:c4:96:
26:eb:2b:43:0f:59:0f:de:4f:ed:8a:b4:b4:2c:26:f6:92:ab:
09:f0:27:d2:fa:9c:88:93:87:be:59:3c:b1:0d:3b:77:7a:24:
2c:27:f0:9b:d2:e7:d2:32:77:98:53:97:de:f4:c0:55:e6:3f:
2c:aa:1a:9d:bf:ae:b1:1c:2f:b6:ec:5b:2d:37:6e:21:54:bf:
4a:1d:de:43:23:4b:2e:f1:c6:34:a9:07:5a:f5:0b:1d:f2:2f:
0d:46:7b:0b:cb:58:5d:27:de:f6:28:dc:ce:48:29:b8:a3:2c:
11:67:f6:3c:a4:84:76:ae:8b:db:99:da:70:c5:4a:0c:20:ea:
8b:d3:e4:3c:e6:77:15:a9:97:72:1c:ba:48:1b:77:25:94:a5:
9f:16:22:c2:a0:a8:a5:dc:bf:8d:80:3f:f8:39:3b:57:66:97:
e0:65:ec:0f:fc:66:4d:c4:cd:e9:f4:d8:96:99:f5:72:e1:66:
64:94:41:48:fc:98:42:85:12:4a:0b:31:44:36:25:53:8b:03:
d7:55:4c:81:e0:7c:ca:21:0f:6c:45:76:7c:91:47:92:b0:c3:
61:2f:55:94:1d:26:a3:e3:a2:13:8e:b8:cc:8c:f7:7a:d4:53:
ff:9e:dd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:58 2025 by rpki-client