Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: IIr1anYrD7Fp0hlh/PrgCyaCNQHBvVx6dr7lyWcawCA=
Subject key identifier: 30:4D:27:5B:CB:34:50:CA:7E:E4:F2:70:E2:A7:31:9F:06:A8:F2:45
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 29E29A1BAD1E79F7213646AB1450D99CDF4F550F
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 05:20:06 +0000
ROA not before: Thu 12 Sep 2024 05:15:06 +0000
ROA not after: Thu 11 Sep 2025 05:20:06 +0000
asID: 63862
IP address blocks: 2401:f980:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e2:9a:1b:ad:1e:79:f7:21:36:46:ab:14:50:d9:9c:df:4f:55:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:15:06 2024 GMT
Not After : Sep 11 05:20:06 2025 GMT
Subject: CN=304D275BCB3450CA7EE4F270E2A7319F06A8F245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:d2:64:7c:52:32:46:03:cc:fd:58:57:c1:
69:45:c1:c8:a7:8e:76:8d:fc:51:06:e7:93:84:41:
5b:8a:be:8c:58:f0:91:c1:72:91:01:29:fc:86:1a:
92:7b:f1:17:56:79:c8:ca:5e:1c:a2:6d:93:24:71:
9f:9b:06:50:2c:d8:54:7f:47:6e:21:74:0c:87:cd:
16:3a:05:de:73:b0:fa:0b:d7:88:2b:94:e1:3a:0e:
d1:41:73:a8:92:0c:b8:82:08:8e:3d:8b:20:29:70:
ed:a2:1b:1e:ca:d8:de:21:89:60:07:a1:a7:4e:09:
91:25:41:c1:f8:ac:3f:c2:22:3d:aa:27:76:8a:08:
bf:10:fd:23:be:6a:78:b9:39:9b:7e:c3:8f:e2:0b:
78:ab:49:9b:17:ac:32:4d:43:f7:d9:f3:fc:4b:25:
dd:23:7d:c6:89:75:bf:b0:13:4b:b6:c5:33:b6:7f:
7f:71:ac:98:37:0a:a2:16:8f:85:0e:72:bb:cb:55:
7d:9e:44:a7:30:79:f9:cd:db:d9:ca:68:99:fb:a8:
2c:79:8e:e1:18:1e:69:79:a4:eb:b3:f1:4f:11:80:
86:f3:0c:60:93:c4:8d:f8:51:80:5d:a2:18:0c:bb:
eb:c3:ba:da:89:9d:f1:2f:31:1e:1a:78:72:bd:ce:
5f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4D:27:5B:CB:34:50:CA:7E:E4:F2:70:E2:A7:31:9F:06:A8:F2:45
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a383030303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980:8000::/36
Signature Algorithm: sha256WithRSAEncryption
47:24:4c:1a:d1:21:09:b5:4e:69:7f:b5:72:e8:28:22:48:4c:
11:a6:a3:cd:7e:49:b1:a3:2c:07:c7:ef:2c:49:13:c0:e9:9e:
92:1a:23:33:30:5b:9a:30:da:40:2a:f7:ac:08:21:3c:43:99:
b1:e4:59:21:2b:59:46:c4:16:20:f7:6f:5f:8a:89:4e:5b:30:
0e:83:b2:63:e0:7b:f2:af:47:34:8d:d6:8d:7d:2d:51:e9:47:
11:f0:f0:f4:29:1e:1b:b5:70:2d:6a:95:c7:94:47:4a:a3:c6:
28:f9:36:29:8f:67:99:a8:e5:02:6b:04:79:7d:92:86:63:ff:
53:5f:e5:e9:9d:8b:e8:0f:95:e9:3d:88:09:3e:6c:8d:8a:5a:
76:be:6e:7a:5d:36:6d:20:04:a1:af:4d:b0:d8:38:e7:c3:c7:
5d:fe:a9:b6:27:4f:e9:fa:dd:f9:00:f3:d8:b4:65:f7:52:cb:
e1:de:f6:ce:15:15:6a:b7:1a:09:3e:bd:49:5e:2b:83:55:76:
f2:5d:15:38:49:20:17:d8:75:48:b4:35:95:c9:09:af:1a:91:
2b:93:2e:c8:ce:10:26:5d:f2:48:2e:ea:ad:c8:0d:80:67:f3:
b1:0d:ee:25:c4:0d:3f:ed:29:1e:f8:43:52:69:04:ae:8d:5a:
ae:ca:0a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:33:58 2025 by rpki-client