Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: GRccJGdt2VqiwtdMT74/xSQWVG633aHz9pNCU8BJneE=
Subject key identifier: DD:F0:1B:56:F6:32:98:4C:63:68:D8:8C:B7:40:22:9A:E6:06:E9:EB
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 34BB707CB489BDA01B791F1D0D190F70104C9767
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 05:17:08 +0000
ROA not before: Thu 12 Sep 2024 05:12:08 +0000
ROA not after: Thu 11 Sep 2025 05:17:08 +0000
asID: 63862
IP address blocks: 2401:f980:2000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:bb:70:7c:b4:89:bd:a0:1b:79:1f:1d:0d:19:0f:70:10:4c:97:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:12:08 2024 GMT
Not After : Sep 11 05:17:08 2025 GMT
Subject: CN=DDF01B56F632984C6368D88CB740229AE606E9EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:9e:ff:99:8b:31:d0:14:6c:93:07:4e:8f:
95:a9:34:9b:2d:d2:dc:e1:7b:bb:c7:85:4a:75:66:
d5:f5:b5:81:4c:a2:89:61:30:51:50:4c:9a:77:27:
cf:a9:99:3b:b4:44:7f:ab:47:26:09:24:97:fd:21:
82:e8:1a:70:73:bc:e1:32:61:73:f2:12:7f:ef:41:
c9:f6:e8:06:63:92:38:ee:3f:1a:5b:c1:9d:7f:f1:
31:d0:15:5e:57:8d:8e:77:27:b1:dd:c7:b2:23:21:
22:43:5d:e5:b4:4b:07:f7:8b:56:01:8e:b2:60:dd:
74:b7:17:7b:fd:8a:51:7b:df:9d:31:40:e4:63:58:
c5:79:94:23:1c:70:63:20:49:cc:7e:30:a3:69:35:
0e:a9:3d:a6:5d:a6:82:a2:b7:76:22:8e:3a:4f:d8:
2b:51:5d:05:ab:a0:6f:60:db:78:27:d5:da:d2:48:
5b:7b:4d:63:f8:5c:28:26:0d:42:82:ab:c5:1c:8f:
ed:16:2f:90:8f:2a:39:fa:5a:9d:5f:1b:73:32:03:
df:96:a1:97:c1:6b:8e:fd:9c:ab:36:84:fd:71:2f:
02:3a:1d:24:4b:e7:08:b3:36:03:b6:69:af:e0:ff:
9f:08:e3:bc:8e:bb:e5:fc:00:19:05:7a:b0:6b:ab:
48:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F0:1B:56:F6:32:98:4C:63:68:D8:8C:B7:40:22:9A:E6:06:E9:EB
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980:2000::/36
Signature Algorithm: sha256WithRSAEncryption
03:23:4d:84:12:5e:5f:50:b8:66:28:84:e1:75:99:10:01:98:
a3:77:ef:b8:58:8b:f0:b0:b4:ed:f1:04:cf:ed:b6:b1:f6:49:
ff:52:8d:37:1b:53:c0:15:fa:19:4c:ee:a4:25:37:ba:05:ee:
9e:f4:13:5c:b2:84:d6:45:d2:b5:81:8a:af:fb:e0:70:d9:4f:
d6:a2:bf:b4:54:92:2a:29:3b:9a:4e:af:23:9e:a3:e8:1b:15:
5c:47:1f:0b:b8:a3:d2:87:69:cc:b3:83:8e:67:28:d8:38:73:
3f:1c:88:03:43:73:4b:e3:d8:93:8c:1f:d0:bd:d0:4b:26:55:
8b:68:eb:a3:90:12:3a:b8:0e:c6:da:fa:1c:b7:5e:35:1b:70:
7c:c9:63:d5:e0:d2:3e:f0:9d:eb:32:d0:29:b0:70:70:c2:96:
e8:c2:59:bf:31:cd:a6:f0:e4:a0:4b:7b:3e:39:96:71:bf:2a:
db:eb:ff:13:c6:1b:5a:92:ef:6a:77:28:5e:8c:c0:f0:9f:bf:
7e:ba:4d:c7:cc:9c:2f:57:38:89:eb:c7:15:87:c6:76:89:46:
2e:ea:86:69:a6:c0:72:64:00:6f:6d:3c:9f:f1:0c:11:43:14:
05:61:9d:f7:56:b5:0a:78:88:87:4b:ed:a2:75:ad:cb:12:db:
62:15:a1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:35:55 2025 by rpki-client