Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa
File: 323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa (raw, json)
Hash identifier: DY+I8fOVqUjezx/DmSAGLnloSubkgTLcYKo00TtWhVE=
Subject key identifier: 81:2E:F9:98:24:51:BA:BE:87:DB:4F:88:99:73:80:2A:E5:99:44:C4
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 713009169026D2217AE60FA798BF1BB409C0879D
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa
Signing time: Mon 08 Jul 2024 17:00:00 +0000
ROA not before: Mon 08 Jul 2024 16:55:00 +0000
ROA not after: Mon 07 Jul 2025 17:00:00 +0000
asID: 38505
IP address blocks: 2401:1d00:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:30:09:16:90:26:d2:21:7a:e6:0f:a7:98:bf:1b:b4:09:c0:87:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Jul 8 16:55:00 2024 GMT
Not After : Jul 7 17:00:00 2025 GMT
Subject: CN=812EF9982451BABE87DB4F889973802AE59944C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:de:21:4f:e3:b5:e0:c8:40:66:c6:4f:4c:5e:
cd:bd:a1:9f:3f:01:9e:a4:a2:cf:40:e3:3b:54:58:
cf:3e:46:b8:1a:2a:43:e1:08:7e:14:0a:32:e7:ec:
18:f8:94:70:2c:73:94:e8:50:02:5a:89:15:c2:52:
d6:92:19:ad:b7:88:f8:7b:a9:67:8b:46:62:4d:18:
4f:79:61:8f:fa:95:55:9a:95:71:2f:13:24:46:7c:
5d:6d:3e:55:38:71:a6:37:80:8a:35:d1:ff:84:83:
ab:48:01:4d:c6:13:dd:67:89:68:6a:d7:d3:1b:4d:
82:ce:94:b2:1a:5d:64:30:d1:05:e7:f8:a7:ff:5d:
9d:7f:9b:e2:58:87:a7:f1:9d:1d:24:ea:4e:6d:3e:
e9:ae:0a:d0:02:1e:e9:73:60:ed:0f:25:55:0b:8a:
94:c0:63:98:fd:83:2f:8d:4d:a6:1d:44:15:e5:e0:
e8:44:55:b2:74:89:3b:21:42:43:b9:b4:cd:3a:53:
c9:67:7b:8b:e8:d0:01:d9:60:e8:c8:c7:01:a9:bb:
45:4a:c9:01:c4:6d:34:f4:9e:79:58:5f:e8:88:1a:
66:ee:c8:88:6d:42:46:c3:1a:48:b6:4e:40:34:58:
ca:d4:0d:90:bb:19:bc:6c:d3:fc:d5:7a:fe:7f:df:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2E:F9:98:24:51:BA:BE:87:DB:4F:88:99:73:80:2A:E5:99:44:C4
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:1d00:2::/48
Signature Algorithm: sha256WithRSAEncryption
ad:80:c3:50:68:2b:02:77:74:1d:58:41:34:dc:41:d4:d4:97:
14:ae:f6:4a:ad:55:96:8d:24:c7:6d:fe:97:61:25:ee:d4:46:
3b:c7:68:77:28:c8:37:4d:d5:8d:df:fe:4d:ba:96:0e:8d:85:
2f:86:d1:a2:aa:13:29:1e:80:4d:5c:92:c3:0f:f6:56:bb:fc:
56:ca:7c:47:38:84:6c:95:4a:8d:9b:07:77:71:f4:50:36:cc:
6d:ca:04:15:a4:93:ed:b7:a8:03:2b:a2:3b:0b:03:24:77:0a:
2d:28:75:5d:6f:71:f1:83:59:7c:9e:04:30:f1:cb:29:b9:9a:
93:72:dc:65:03:a4:f5:46:49:dd:c5:03:94:31:df:4e:52:4f:
a1:a5:30:e2:8a:7d:a9:32:c0:a8:f2:80:ab:f2:35:7c:4e:af:
13:fc:90:9d:1b:ac:15:ca:d8:33:f9:90:87:0e:0f:7f:1b:9c:
2e:de:05:81:6b:86:e5:1e:47:ef:df:0a:df:46:b0:73:02:72:
9d:63:8a:73:a5:11:3a:0f:e2:ca:34:4b:d4:b1:0e:df:de:eb:
d8:ea:6f:4b:b0:d9:8e:53:9f:c6:80:2d:bd:cc:32:b6:77:f5:
a9:67:d2:eb:ea:7d:41:d6:ff:38:64:27:11:15:be:d3:9b:18:
e2:31:90:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:21:54 2025 by rpki-client