Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa
File: 323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa (raw, json)
Hash identifier: SbU/LBQhPM3a8lHQUgrKnyIn6Qy6uX0FiiHBT2tpw4k=
Subject key identifier: 28:DF:01:94:C8:61:48:F5:03:31:DC:E0:EC:39:9B:A6:E5:88:C6:1B
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 0256E25CD095A22F46A1C66E4545DB6B85D21533
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa
Signing time: Tue 09 Jul 2024 22:00:01 +0000
ROA not before: Tue 09 Jul 2024 21:55:01 +0000
ROA not after: Tue 08 Jul 2025 22:00:01 +0000
asID: 38524
IP address blocks: 2401:de80:f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:56:e2:5c:d0:95:a2:2f:46:a1:c6:6e:45:45:db:6b:85:d2:15:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 9 21:55:01 2024 GMT
Not After : Jul 8 22:00:01 2025 GMT
Subject: CN=28DF0194C86148F50331DCE0EC399BA6E588C61B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2f:11:f1:f5:30:0e:5d:84:b6:9a:05:04:5d:
76:65:06:17:38:cd:e8:aa:00:35:50:3b:74:5e:75:
2e:e7:97:09:b3:77:f9:90:ae:13:38:f4:af:26:a5:
e5:97:c7:1c:fa:f3:3c:f3:36:ba:4f:0a:db:32:9d:
7d:2b:83:00:ba:20:5a:41:2a:6d:76:5e:11:02:f1:
b0:23:3e:9e:24:75:2e:fc:2e:18:37:3a:dc:99:f3:
1c:80:35:08:9a:e9:aa:c6:c7:ce:83:86:26:08:9f:
b1:2f:47:09:e9:9e:87:cf:7d:30:6a:5b:8a:79:57:
ae:b6:27:b1:6c:cb:d8:b6:49:66:b4:ec:f5:e4:e8:
c7:ef:6f:19:5f:30:96:b6:fd:71:59:e6:17:25:6d:
4a:8c:82:03:4b:27:43:0c:84:02:62:95:d7:37:33:
47:a0:98:17:18:2b:54:0f:e2:70:a8:60:25:f6:8a:
e5:da:a4:82:c7:83:53:0b:c4:d4:b5:a4:c8:74:1c:
8c:04:df:d6:06:0e:32:4d:c1:66:57:6d:f1:69:03:
c2:3d:6b:05:13:8e:a3:e3:e2:2e:e6:bb:33:09:8f:
c4:cf:17:f2:d3:08:9a:08:1d:f8:90:ee:e3:d5:f6:
50:f7:60:02:87:61:07:de:96:53:06:f5:3e:de:43:
62:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DF:01:94:C8:61:48:F5:03:31:DC:E0:EC:39:9B:A6:E5:88:C6:1B
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:de80:f::/48
Signature Algorithm: sha256WithRSAEncryption
ac:31:71:96:4e:6d:17:78:db:71:30:59:95:ba:7c:bd:05:12:
0b:df:77:ca:87:cf:53:02:a7:b9:80:46:07:42:e9:7b:60:c3:
18:df:2d:17:50:60:9f:12:1c:b3:20:eb:46:61:5d:e4:58:6c:
46:4a:07:1f:ee:8a:77:5b:14:e4:2b:b9:95:fa:11:90:9d:f5:
b9:5f:18:e7:55:f3:e9:12:d6:3b:af:e1:76:a6:0c:9f:9e:7b:
7e:f9:e9:ea:4b:12:50:eb:81:69:9a:75:d3:d5:7b:07:df:5a:
7e:f4:e4:85:00:99:62:b2:64:4a:d9:22:6e:de:92:7a:39:06:
2e:20:ad:9f:88:ae:2e:e8:47:64:ff:fe:ae:2e:08:14:41:60:
f5:6e:10:7a:a5:4a:b1:ad:5b:da:bf:28:7a:00:3c:6a:f8:f4:
a2:ee:f1:3c:55:90:f1:c2:31:78:bb:61:53:67:e3:e9:b1:5c:
4e:ca:50:8c:16:fe:ee:c8:65:90:92:f3:da:e1:2d:ab:1f:10:
d3:bc:fa:40:aa:26:00:61:29:5e:c6:95:c6:98:6a:d2:63:75:
10:f0:ee:1a:22:c3:b9:ac:9b:68:b9:d4:ec:f7:e0:f4:f9:f5:
97:87:eb:a8:08:c8:94:68:69:1c:51:7d:9a:69:d5:c2:49:1f:
97:59:8c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:28 2025 by rpki-client