Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa
File: 323430313a316430303a3a2f33322d3332203d3e203338353035.roa (raw, json)
Hash identifier: gMz09JidDcRWBTwU6ryArFJQlq35y7FUrFAp/Wy4yQg=
Subject key identifier: E9:DB:70:B1:B7:17:57:71:5F:71:35:05:F7:21:AB:02:66:BA:53:61
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 28491EA166637FBC6D1BB2D3AFC4C96DC89528DD
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa
Signing time: Mon 08 Jul 2024 17:00:00 +0000
ROA not before: Mon 08 Jul 2024 16:55:00 +0000
ROA not after: Mon 07 Jul 2025 17:00:00 +0000
asID: 38505
IP address blocks: 2401:1d00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:49:1e:a1:66:63:7f:bc:6d:1b:b2:d3:af:c4:c9:6d:c8:95:28:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Jul 8 16:55:00 2024 GMT
Not After : Jul 7 17:00:00 2025 GMT
Subject: CN=E9DB70B1B71757715F713505F721AB0266BA5361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:b2:f0:35:7a:aa:70:2a:8f:af:6a:07:20:
91:2e:1e:cb:92:f4:1d:3a:a3:d4:3b:e2:67:f1:32:
d3:cb:99:b4:ed:f7:a4:c4:9e:b3:b7:5e:76:2f:e4:
b1:bb:3a:d4:c8:26:43:54:62:88:e9:80:2f:21:aa:
a6:97:7b:77:75:a5:22:bf:47:ed:c5:11:f2:cf:91:
b1:94:67:c8:08:41:08:db:c9:1e:b7:e3:e0:78:ce:
d1:6f:54:da:e9:50:5f:67:58:0d:65:c6:b6:09:7d:
51:09:28:a0:54:51:71:d6:84:71:1a:9e:95:c1:ff:
18:ce:1b:fc:45:ed:cc:8c:d3:24:47:60:f5:9a:86:
53:41:c1:55:07:7e:ad:eb:14:d8:20:de:5a:58:12:
dd:37:15:d3:84:f8:3c:15:9c:2c:91:53:14:02:7a:
0c:1a:bf:92:3b:e7:99:2a:96:6d:25:c5:11:a5:f3:
03:47:69:f5:59:3b:72:2c:c7:7e:40:a0:73:af:02:
fe:b8:c2:4c:cf:06:07:48:55:b0:61:68:4d:b3:9c:
81:e4:cc:1b:d9:2a:12:31:97:19:6c:25:1e:69:49:
10:6d:6a:fa:e5:24:cb:4f:54:38:63:91:bd:38:c2:
90:8f:1a:ba:b8:a8:38:1e:d7:83:60:57:61:ce:4e:
16:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DB:70:B1:B7:17:57:71:5F:71:35:05:F7:21:AB:02:66:BA:53:61
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:1d00::/32
Signature Algorithm: sha256WithRSAEncryption
3e:a7:e9:60:c8:ca:3e:cf:b5:78:ec:a6:bb:20:96:55:ef:31:
ae:bc:ac:0e:8c:6b:32:bd:eb:44:23:86:24:14:e0:ad:d1:c8:
08:5e:d9:0e:62:10:72:fd:f8:fe:ae:c2:40:c0:f4:ae:70:23:
5f:7f:f8:ef:0a:c9:e8:0c:73:45:2c:16:79:09:1f:02:bf:d9:
c4:e4:0b:ad:dd:7f:3b:b7:06:4e:74:b4:cc:5b:da:44:b8:01:
09:fb:65:49:16:0c:3c:6b:36:10:fa:4d:ad:6c:41:58:8d:61:
14:ce:47:0f:53:65:ef:3b:68:ba:d9:59:fe:f1:73:ff:ee:1e:
0b:c8:be:28:19:b6:67:1b:10:f0:00:c0:79:b0:1f:ea:a6:66:
cf:d8:97:d7:2a:c7:02:8c:9e:98:c9:bf:cc:5c:2c:92:28:86:
9b:50:ac:3c:ac:b9:71:8f:d3:52:a5:da:95:64:4f:22:3a:fd:
07:35:fb:5a:e1:66:96:5c:ee:61:9d:6b:25:37:48:1e:2b:e9:
ec:42:69:ff:ba:ba:06:ba:0c:2b:ab:4d:d1:75:23:e1:8c:4e:
4e:a7:0a:37:cf:09:55:10:71:c6:36:b4:b0:41:74:02:47:09:
43:92:11:77:95:a9:ef:6e:da:a8:52:89:4b:f8:de:26:df:09:
a7:b4:b0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:46:43 2025 by rpki-client