Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: PlfH7UbvODJdhBqQCeDEBD0cdQGHiJrjYh/m0qQkurg=
Subject key identifier: 9C:98:51:D5:EB:B4:E3:EB:6F:DC:C1:96:59:0E:4E:A2:F8:1E:BF:8C
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 7142C3F93A5B5D8BE0FCEFF59476743C0ACE8E86
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 05:16:43 +0000
ROA not before: Thu 12 Sep 2024 05:11:43 +0000
ROA not after: Thu 11 Sep 2025 05:16:43 +0000
asID: 63862
IP address blocks: 2401:f980:1000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:42:c3:f9:3a:5b:5d:8b:e0:fc:ef:f5:94:76:74:3c:0a:ce:8e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:11:43 2024 GMT
Not After : Sep 11 05:16:43 2025 GMT
Subject: CN=9C9851D5EBB4E3EB6FDCC196590E4EA2F81EBF8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:18:25:47:96:7c:e2:f1:86:dc:0b:fd:c4:65:
73:36:42:80:55:42:a6:1d:51:05:62:bd:1b:d1:bb:
a9:f5:11:40:3d:59:29:b6:99:00:4c:d5:19:75:ea:
33:a5:5e:60:75:69:ba:4f:f8:6b:84:54:e0:0d:6f:
0b:04:14:c1:dd:55:ee:d6:0f:e7:93:0b:ba:a6:88:
a4:45:5f:a3:3e:97:82:8f:fe:91:c4:18:25:42:e9:
e1:61:cf:1a:93:c6:45:db:ad:74:49:48:86:22:5f:
af:fb:48:9f:cb:62:cb:a8:9e:66:4b:8d:53:83:e8:
1a:88:5a:cf:94:b2:62:b0:45:b2:30:64:64:c2:c6:
4b:77:55:51:ac:2d:ba:16:c2:ac:4e:52:1a:00:63:
c6:d1:f6:f6:40:42:c7:90:2d:20:7d:87:5f:b4:5e:
24:3b:96:d1:21:e4:ee:ab:1d:51:33:e0:2f:55:d3:
0e:65:2f:e8:23:4f:1e:b6:92:78:e0:e5:51:7e:da:
d7:6a:d5:fc:f8:9f:ab:fb:d6:71:87:df:3b:95:ba:
e5:ab:dc:ea:d3:c2:16:07:b0:a0:e2:92:4b:5c:b3:
cb:1c:af:0c:df:ec:d4:62:51:47:98:ca:58:31:77:
cc:35:46:56:38:08:52:a5:45:a7:55:8d:00:b0:0d:
ed:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:98:51:D5:EB:B4:E3:EB:6F:DC:C1:96:59:0E:4E:A2:F8:1E:BF:8C
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980:1000::/36
Signature Algorithm: sha256WithRSAEncryption
41:93:66:c2:db:04:ce:4b:6d:e4:5a:10:27:f3:3f:3f:b9:fb:
52:b2:6d:7b:f9:9d:61:2a:b7:93:2a:9e:e3:65:11:38:38:80:
d9:6c:ab:c8:e2:42:3a:89:92:f5:26:91:bb:1f:9e:bd:0a:d3:
f1:a8:da:0f:b8:5d:a0:a5:8a:f7:84:b7:e2:63:54:f2:cb:66:
78:b0:a7:72:73:73:70:a0:74:b9:32:ca:9d:f4:3b:72:85:90:
8f:02:55:8e:12:ff:b2:b6:3c:f4:7d:94:ff:bb:a8:16:d1:72:
f2:13:85:0c:b1:f6:d0:19:69:e3:3d:bb:f4:bc:7f:2e:d7:bc:
5e:17:31:b2:05:3c:30:4c:3a:bb:ba:6a:5c:c4:d3:47:29:60:
44:a5:e8:a5:64:4b:21:1a:bf:ab:87:49:9d:16:d1:49:db:a8:
db:6e:bb:61:5f:c8:6f:4d:cf:f7:32:bb:fe:b0:22:61:d6:0f:
36:3c:05:ff:6f:14:da:df:27:97:41:21:bd:6c:ce:5e:06:6b:
74:93:45:9e:7d:05:03:c1:59:ba:be:38:83:b8:f4:a5:d3:51:
a2:f7:4f:8b:fe:87:92:00:c1:56:58:d3:12:21:3a:85:81:c6:
e4:30:70:25:88:a9:aa:57:c2:41:f1:a8:c1:98:89:1a:fb:0d:
1b:8d:9c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:20:02 2025 by rpki-client