Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: GivF/TsE49eBNIN/uyR4qtqXb9wCuoY6ebMmKnK3mZE=
Subject key identifier: 37:6A:5D:A3:1A:C4:D2:0E:97:A5:8F:C5:97:3C:E1:40:32:D1:87:BC
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 2E54DD95B9880AD5ACA1C00DAC620DE6968A657A
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 05:16:02 +0000
ROA not before: Thu 12 Sep 2024 05:11:02 +0000
ROA not after: Thu 11 Sep 2025 05:16:02 +0000
asID: 63862
IP address blocks: 2401:f980::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:54:dd:95:b9:88:0a:d5:ac:a1:c0:0d:ac:62:0d:e6:96:8a:65:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:11:02 2024 GMT
Not After : Sep 11 05:16:02 2025 GMT
Subject: CN=376A5DA31AC4D20E97A58FC5973CE14032D187BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:21:80:de:a0:47:f9:64:ba:dd:32:df:8b:2c:
e2:30:dc:cc:ad:2d:fb:fa:b8:13:04:ab:27:ac:9a:
6c:8c:10:37:e5:47:95:ee:0b:3e:02:45:db:f4:b8:
a5:08:11:75:fe:a8:ad:8d:4c:e4:f7:73:e8:f9:c4:
81:b6:92:0b:ea:10:a9:61:3b:f2:a1:bd:3d:c1:33:
f4:c7:b0:56:5a:14:ae:17:b9:cc:6e:5c:12:5c:cf:
51:51:81:14:13:a9:fd:c3:d3:74:f9:6f:6c:9e:34:
5d:da:4e:1b:4f:32:c5:2e:c8:a3:19:fb:33:b3:28:
c0:19:2d:36:65:54:96:22:a9:4c:84:f7:6e:4f:e0:
e6:f4:37:0b:46:c2:80:7e:4a:c3:f6:51:58:7e:8e:
34:d7:38:ae:89:80:aa:01:d2:4a:d6:97:b6:d5:14:
c0:29:b3:6f:4e:14:77:f2:f5:95:c9:f3:2c:2b:6d:
79:fc:88:24:fb:21:a4:b6:70:1a:96:44:58:8e:ae:
b3:fd:25:2c:11:ce:9f:28:a0:b5:10:2c:13:1c:12:
5d:1c:d2:c1:06:db:d2:3c:d0:d9:cd:b5:c9:1c:d9:
cd:02:26:1f:4d:11:1d:6e:ee:3c:38:5b:b9:6c:a2:
d7:8c:e8:de:ed:b9:7c:1f:63:33:7a:66:b6:d1:3a:
04:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6A:5D:A3:1A:C4:D2:0E:97:A5:8F:C5:97:3C:E1:40:32:D1:87:BC
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980::/36
Signature Algorithm: sha256WithRSAEncryption
1e:98:6e:eb:e1:c6:ef:3a:77:07:9c:b7:da:cf:b6:ea:fe:99:
a1:5a:e5:39:5e:3f:55:a4:1f:7b:a3:6e:49:32:c8:af:83:c1:
1f:97:f9:65:be:ff:63:92:2c:94:22:e7:e4:51:41:af:07:c7:
3a:72:7d:c0:d1:a9:ae:7b:7f:1c:0f:6c:3c:76:f5:d9:53:58:
d5:06:e8:e9:1f:ae:20:c2:1a:f3:3b:03:a9:66:9b:cf:f7:11:
e0:e5:bc:64:f8:6f:e3:65:6d:23:df:72:65:ee:ad:d2:76:fa:
47:e1:89:bd:68:f8:3f:29:8d:a2:93:1a:f5:aa:c8:c4:ee:2c:
87:d7:a5:6e:2c:24:a2:85:af:da:ba:fd:f7:2c:86:f8:5e:a1:
01:46:2b:02:a1:5c:33:0f:10:54:41:5a:d6:17:48:0e:51:31:
71:38:ae:fe:30:7a:90:f8:f1:28:46:ba:54:e0:41:2b:fc:44:
66:8a:d7:34:8c:2b:3d:bb:5a:92:ad:19:bf:59:14:b4:25:66:
59:36:82:f9:d5:59:11:65:77:0f:9f:8c:b8:be:5f:52:35:78:
f3:75:11:9c:3f:f2:8f:9f:bb:93:fa:1f:c8:ef:a0:4d:25:0e:
b8:0a:48:d2:07:38:8f:18:ef:00:e2:11:83:f1:29:0c:dd:04:
19:ae:b6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:18:26 2025 by rpki-client