Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa
File: 323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa (raw, json)
Hash identifier: sFOsaLNBn5R0dXjBAyLaAtZ6p4a55uGmbaZHuXe5moQ=
Subject key identifier: D6:40:1F:4E:69:C5:E1:05:54:D3:B4:40:26:F8:2D:67:AA:EA:B8:62
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 45FE1A61297404EFC7E9FE9263F2289E6BA4C6D1
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa
Signing time: Wed 10 Jul 2024 00:00:01 +0000
ROA not before: Tue 09 Jul 2024 23:55:01 +0000
ROA not after: Wed 09 Jul 2025 00:00:01 +0000
asID: 38524
IP address blocks: 2401:de80:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:fe:1a:61:29:74:04:ef:c7:e9:fe:92:63:f2:28:9e:6b:a4:c6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 9 23:55:01 2024 GMT
Not After : Jul 9 00:00:01 2025 GMT
Subject: CN=D6401F4E69C5E10554D3B44026F82D67AAEAB862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2d:0f:b1:69:8c:92:70:a1:d3:33:1a:22:01:
10:58:b2:0a:21:f9:9c:b7:26:61:1a:8c:5f:9e:7c:
c9:a6:7f:e8:23:bb:fe:8c:83:1b:71:78:68:33:3c:
55:ec:57:7b:f8:df:06:ef:2d:9b:df:5f:e3:33:be:
88:e0:ef:7b:96:75:d1:5f:6c:51:6c:2b:9a:08:97:
d0:39:98:7b:86:b5:a5:78:de:fa:69:79:72:fb:06:
55:54:56:e9:ba:6d:37:30:58:55:8c:a0:cc:bc:9e:
15:e6:85:20:fe:2d:5f:6b:ab:83:d8:db:e8:21:90:
36:4a:d6:94:3c:f5:2c:d8:45:3e:20:a4:82:00:44:
97:46:db:a1:d6:f8:00:42:69:7b:a0:fd:da:32:92:
33:56:81:eb:3a:8d:67:92:85:e0:2d:36:61:a3:51:
69:8a:3f:4a:a7:8d:fc:df:85:95:5a:c4:a2:d0:c2:
ce:e9:b4:38:4a:11:2e:08:81:4f:26:d6:85:72:93:
46:ae:54:5c:3b:e3:03:08:52:c1:b1:e6:9f:7d:e0:
98:10:91:09:34:8d:01:2a:b2:bf:65:50:da:66:ac:
f0:2d:5e:67:6c:43:a4:18:76:e3:95:14:32:66:6d:
7c:ec:c9:6a:1c:6f:30:6c:bc:fa:c0:2a:a7:e9:2a:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:40:1F:4E:69:C5:E1:05:54:D3:B4:40:26:F8:2D:67:AA:EA:B8:62
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:de80:5::/48
Signature Algorithm: sha256WithRSAEncryption
97:80:e4:d2:87:72:01:45:b6:e7:56:3b:7c:fc:68:88:d2:52:
45:7e:75:96:3c:f3:b3:09:87:98:9e:7e:87:b2:5f:3f:a3:66:
69:2e:a9:16:4d:3d:23:be:64:77:db:1e:67:5f:cb:20:3c:a6:
0e:50:df:bb:6f:da:46:df:5f:08:19:69:87:36:eb:c9:af:b1:
2d:74:fe:3e:5c:47:94:75:86:20:0f:1f:34:c3:5b:f6:47:a5:
21:5e:0a:44:04:63:cc:e9:77:85:d6:0c:8c:bb:4a:c0:83:14:
76:f0:40:4b:b1:53:b0:45:54:2c:c5:f0:0c:43:d7:ca:9a:54:
f8:27:23:28:38:ca:12:3e:24:92:41:d9:cb:94:73:81:9c:c2:
16:ee:ed:01:1e:c3:d0:d0:d6:44:a5:56:8f:d0:4c:14:fd:5f:
60:a2:8e:16:dc:69:3a:ba:14:1d:fd:46:c6:d0:07:a5:cc:0e:
22:29:6f:39:ae:d7:9a:70:6b:32:80:b3:7f:e2:bb:e1:29:10:
15:7f:e8:5e:62:5b:80:bd:e1:7b:56:2d:7c:40:f3:55:d5:4c:
37:bc:c3:e5:7e:13:6e:a7:81:8a:ae:02:87:c6:af:ec:07:4b:
e2:36:95:70:6b:32:04:07:5c:11:4d:29:3b:fd:48:1a:0d:d8:
4e:6e:d2:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:31 2025 by rpki-client