Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: p33/TuvqAA8fV7Ue2LQPUHbIg64u73SNbvYzc2Y1EQQ=
Subject key identifier: 82:D4:81:EB:F2:23:E9:72:2A:6F:C9:5C:D2:B8:F8:63:F1:48:59:F8
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 61EEB91FDB1581F641603D841D16096A71F51B36
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 06:04:54 +0000
ROA not before: Thu 12 Sep 2024 05:59:54 +0000
ROA not after: Thu 11 Sep 2025 06:04:54 +0000
asID: 63862
IP address blocks: 2401:f980:9000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:ee:b9:1f:db:15:81:f6:41:60:3d:84:1d:16:09:6a:71:f5:1b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:59:54 2024 GMT
Not After : Sep 11 06:04:54 2025 GMT
Subject: CN=82D481EBF223E9722A6FC95CD2B8F863F14859F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cd:f8:cb:6a:74:21:bf:f3:c7:7d:1f:14:d3:
a0:92:00:ad:a6:b4:c7:d8:bc:6a:d5:4d:af:c8:de:
61:57:1b:e9:f1:5a:51:57:41:6a:d6:2f:e0:e3:06:
38:4c:f7:ab:91:46:77:2d:8b:1f:d2:38:b8:34:f5:
16:e1:da:72:07:55:aa:15:3f:16:cc:73:42:59:0f:
71:5f:62:84:da:e6:88:5d:c4:d6:09:6d:21:3f:51:
dd:d8:64:e9:17:34:96:5c:35:8e:bd:af:f7:e6:e1:
fa:31:36:01:30:a5:e4:17:55:c0:e7:3c:bb:a3:4b:
96:b8:2b:1c:b1:39:97:b8:c9:fd:e8:69:04:c6:27:
87:73:7a:dd:73:fb:36:7d:58:7b:37:0d:17:0e:da:
ff:03:99:8f:c1:e6:37:11:f5:2e:46:03:88:c2:32:
cd:45:d4:22:85:93:9c:e8:d4:37:5b:57:f9:e6:c8:
f3:90:31:76:af:ba:38:e3:b0:51:e7:34:aa:1d:b7:
7a:f9:33:30:7f:4d:80:d0:cd:d3:31:d2:35:6e:6a:
8f:52:82:20:66:01:91:32:bb:54:1d:86:5e:76:97:
66:4b:df:cf:fb:f7:24:5c:05:16:36:76:d2:38:e8:
60:95:86:e9:ca:b7:4c:9a:a1:7b:46:74:c6:35:b5:
3a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D4:81:EB:F2:23:E9:72:2A:6F:C9:5C:D2:B8:F8:63:F1:48:59:F8
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980:9000::/36
Signature Algorithm: sha256WithRSAEncryption
73:64:04:36:ff:84:57:fd:77:50:6b:69:9c:46:a5:1b:fb:49:
b2:5d:18:a4:0e:2c:e1:17:79:ec:31:d5:fe:b2:bd:e5:f0:f3:
88:6e:c5:1c:40:13:04:cf:fb:e5:63:f0:54:f1:70:71:4d:0d:
54:80:ee:ee:e5:6e:ac:3e:86:2a:67:1a:96:28:9a:39:fc:1e:
ed:5e:80:9e:75:37:d4:aa:6a:c0:20:cf:0a:51:49:91:5e:3b:
1b:8c:15:e8:64:f2:da:61:04:60:43:9b:69:1f:90:6b:f9:ed:
de:ec:6b:1d:ef:c7:87:82:fb:30:92:fc:95:69:eb:1b:17:09:
2e:68:40:36:08:f8:9f:1a:04:16:2f:ec:cd:24:96:62:7f:34:
73:9c:e0:1b:b4:c2:86:4c:d0:52:bf:a5:2c:91:bf:96:f8:48:
f6:6c:9d:d0:53:bd:d7:40:4b:d9:45:3a:62:5f:85:42:38:12:
b8:d3:4d:c1:1b:04:09:51:59:07:c5:e6:c4:90:f6:9a:71:f6:
44:0d:7b:8a:ff:b1:6b:52:55:7a:74:81:20:80:4e:35:1f:40:
92:e0:44:45:d6:13:80:96:4e:36:c0:7f:b7:82:b2:c5:6d:c7:
fa:ea:0b:25:e4:51:8a:90:ac:79:f7:cb:d7:06:6c:10:5e:18:
e9:dc:0a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:33:26 2025 by rpki-client