Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa
File: 323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa (raw, json)
Hash identifier: ltU+Jvx6B8gD32Czu33c35kEDJZL0WMqFoWxiQ/5mNI=
Subject key identifier: CB:AE:EE:C5:12:01:9F:E8:F0:0E:35:D7:1A:87:78:0E:F4:07:F4:73
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 3B6E345AF82BB661DDB471007C256B0A0DA0DEDC
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa
Signing time: Wed 10 Jul 2024 00:00:01 +0000
ROA not before: Tue 09 Jul 2024 23:55:01 +0000
ROA not after: Wed 09 Jul 2025 00:00:01 +0000
asID: 38524
IP address blocks: 2401:de80:e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:6e:34:5a:f8:2b:b6:61:dd:b4:71:00:7c:25:6b:0a:0d:a0:de:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 9 23:55:01 2024 GMT
Not After : Jul 9 00:00:01 2025 GMT
Subject: CN=CBAEEEC512019FE8F00E35D71A87780EF407F473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:40:09:65:a0:8b:6c:db:57:24:2b:7c:8e:df:
0c:0d:2e:bc:67:23:98:01:7a:c7:91:a2:60:30:44:
94:45:21:44:7a:dd:7e:01:41:11:31:fd:32:0c:24:
ef:67:7a:78:d4:f8:f9:3f:60:df:d8:de:08:68:fb:
65:97:3a:fb:5a:e0:b6:29:f9:64:8b:fb:72:91:0d:
eb:29:6b:9c:46:7f:be:6b:05:a3:6c:28:72:88:f8:
60:97:66:8a:6f:bb:b4:24:4f:4b:7d:49:d1:e9:5f:
ea:f0:85:70:e6:18:0a:cd:0e:75:55:d6:91:a0:2d:
05:37:9e:42:55:f7:31:fc:20:67:7a:44:16:90:6a:
87:c8:54:e4:21:3b:87:bf:51:ee:4e:5b:71:75:4d:
0e:07:08:08:65:45:7c:14:23:97:83:be:90:70:c2:
d8:1e:07:da:28:ac:bc:65:b7:79:69:35:53:f3:ee:
be:a5:5b:f3:5b:ff:f8:c2:14:0d:1f:55:2a:53:79:
7f:d6:79:48:d2:3c:82:eb:ea:99:07:50:eb:3b:7d:
7e:4f:73:c1:68:33:aa:7b:8f:47:c9:3c:1a:e6:54:
8d:15:7e:96:b8:2f:a7:97:55:73:20:fb:49:d0:7c:
ef:5d:59:9c:e9:f5:f7:7d:78:c1:4c:00:86:ad:aa:
05:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AE:EE:C5:12:01:9F:E8:F0:0E:35:D7:1A:87:78:0E:F4:07:F4:73
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:de80:e::/48
Signature Algorithm: sha256WithRSAEncryption
1d:ad:69:f9:c1:ae:ab:1f:a1:78:26:10:a4:42:10:6b:28:c0:
64:29:6f:5c:94:4a:38:b8:4d:1d:cb:74:62:32:5f:4e:e5:08:
cd:41:bb:78:0d:df:70:aa:a7:27:72:23:5b:19:9f:74:7e:34:
37:96:61:e7:92:a0:87:48:f0:f0:98:20:04:68:4f:41:a7:1c:
be:38:a4:54:1f:ed:15:71:f3:61:56:ea:85:75:56:b4:9a:af:
98:dc:6e:55:38:f5:97:83:36:13:f4:ec:6f:be:31:2c:f9:0f:
12:46:3c:20:a1:28:c8:78:89:2d:ec:2b:68:d9:1c:00:ee:a3:
0b:86:38:b8:1f:f1:ea:d2:64:d8:c8:2e:3e:e2:fe:ae:84:a8:
08:70:d9:06:43:01:74:e6:db:d3:96:67:90:ce:7f:52:b7:e5:
18:6b:03:4a:a0:01:11:44:8c:65:c4:46:ec:29:8e:29:a3:ac:
29:d3:03:ed:20:13:4b:81:82:1a:2a:70:07:41:d0:95:bc:21:
50:3a:53:21:0e:69:e4:24:aa:0a:5f:fb:41:7a:fc:c1:92:04:
19:4c:8d:70:00:66:a0:9a:c8:47:d1:f8:c4:08:ee:ed:9b:c0:
2b:d9:2a:42:b6:11:64:88:24:cf:ab:11:f7:36:c5:f0:74:0d:
79:4b:20:57
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUO240WvgrtmHdtHEAfCVrCg2g3twwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD
RDI4M0U5QTAeFw0yNDA3MDkyMzU1MDFaFw0yNTA3MDkwMDAwMDFaMDMxMTAvBgNV
BAMTKENCQUVFRUM1MTIwMTlGRThGMDBFMzVENzFBODc3ODBFRjQwN0Y0NzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvQAlloIts21ckK3yO3wwNLrxn
I5gBeseRomAwRJRFIUR63X4BQREx/TIMJO9nenjU+Pk/YN/Y3gho+2WXOvta4LYp
+WSL+3KRDespa5xGf75rBaNsKHKI+GCXZopvu7QkT0t9SdHpX+rwhXDmGArNDnVV
1pGgLQU3nkJV9zH8IGd6RBaQaofIVOQhO4e/Ue5OW3F1TQ4HCAhlRXwUI5eDvpBw
wtgeB9oorLxlt3lpNVPz7r6lW/Nb//jCFA0fVSpTeX/WeUjSPILr6pkHUOs7fX5P
c8FoM6p7j0fJPBrmVI0Vfpa4L6eXVXMg+0nQfO9dWZzp9fd9eMFMAIatqgUfAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUy67uxRIBn+jwDjXXGod4DvQH9HMwHwYDVR0j
BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0
NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4
M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04
NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjUzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAOMA0G
CSqGSIb3DQEBCwUAA4IBAQAdrWn5wa6rH6F4JhCkQhBrKMBkKW9clEo4uE0dy3Ri
Ml9O5QjNQbt4Dd9wqqcnciNbGZ90fjQ3lmHnkqCHSPDwmCAEaE9Bpxy+OKRUH+0V
cfNhVuqFdVa0mq+Y3G5VOPWXgzYT9OxvvjEs+Q8SRjwgoSjIeIkt7Cto2RwA7qML
hji4H/Hq0mTYyC4+4v6uhKgIcNkGQwF05tvTlmeQzn9St+UYawNKoAERRIxlxEbs
KY4po6wp0wPtIBNLgYIaKnAHQdCVvCFQOlMhDmnkJKoKX/tBevzBkgQZTI1wAGag
mshH0fjECO7tm8Ar2SpCthFkiCTPqxH3NsXwdA15SyBX
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:37 2025 by rpki-client