Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa
File: 323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa (raw, json)
Hash identifier: neCvjYj4OGxzsARs2VAX0fQB/pQLEakmCBDGYrtFesk=
Subject key identifier: AC:21:1B:4E:C6:D6:32:91:D5:83:6F:C6:02:DD:96:A9:43:B6:6C:55
Certificate issuer: /CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2
Certificate serial: 58B5103ED29DBADD1E1C742134A0D17DE3EBB1FE
Authority key identifier: 98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa
Signing time: Tue 23 Jul 2024 04:47:30 +0000
ROA not before: Tue 23 Jul 2024 04:42:30 +0000
ROA not after: Tue 22 Jul 2025 04:47:30 +0000
asID: 137374
IP address blocks: 2001:df4:6d00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:b5:10:3e:d2:9d:ba:dd:1e:1c:74:21:34:a0:d1:7d:e3:eb:b1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9852ABB8508DE551F1723BC9AC5EC39B35056AE2
Validity
Not Before: Jul 23 04:42:30 2024 GMT
Not After : Jul 22 04:47:30 2025 GMT
Subject: CN=AC211B4EC6D63291D5836FC602DD96A943B66C55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:0c:99:b7:50:ea:b8:86:a6:fa:03:06:14:
36:10:35:19:69:a1:4e:18:6d:bd:8d:c6:a5:27:9d:
77:3f:1f:72:06:bd:8b:b9:37:98:32:5a:17:92:fe:
cd:96:19:1a:4b:8e:1e:94:5e:a6:a0:0f:0b:eb:01:
3d:65:33:c7:80:4c:55:03:d9:6d:95:be:46:30:61:
d4:03:ee:72:d8:d1:e1:28:d8:e3:1d:bd:17:39:9a:
e2:47:68:fc:09:37:84:a7:6c:82:73:b6:d2:b9:ac:
2f:a4:68:8f:36:76:af:56:e6:75:a9:cf:78:f4:64:
79:dd:db:15:81:07:8e:01:60:7a:1b:2a:8b:fc:30:
6c:cf:b6:64:74:e3:ce:21:72:e5:f4:97:83:a8:05:
27:be:0a:67:1a:d0:6a:d7:a5:04:b6:6d:2e:ec:30:
4f:78:0e:6a:f4:46:83:fa:2e:1e:e8:7a:d1:fb:b0:
33:21:d6:a6:1f:2f:74:04:f8:5a:de:5f:b7:17:a6:
9d:fc:7c:85:1b:74:d3:f9:6d:c9:c7:5e:05:10:03:
3c:72:a5:7b:5c:84:ed:c1:b9:21:a7:e0:1a:a0:03:
68:60:c4:ce:ae:4a:c6:6c:2e:e5:b2:c1:4e:28:20:
c2:b2:49:94:c2:d1:a4:71:ab:ae:06:0e:ae:15:8c:
04:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:21:1B:4E:C6:D6:32:91:D5:83:6F:C6:02:DD:96:A9:43:B6:6C:55
X509v3 Authority Key Identifier:
keyid:98:52:AB:B8:50:8D:E5:51:F1:72:3B:C9:AC:5E:C3:9B:35:05:6A:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9852ABB8508DE551F1723BC9AC5EC39B35056AE2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:6d00::/48
Signature Algorithm: sha256WithRSAEncryption
ae:9b:b2:77:81:64:c2:46:f4:8e:d6:04:fb:b6:31:a7:a8:39:
74:de:1c:fa:0c:d8:48:a8:e1:c3:84:74:df:b4:ed:c8:c6:c2:
58:67:b2:eb:83:b9:c4:2b:44:3b:f4:d3:1e:b8:89:df:fa:77:
f6:5f:8c:9f:80:5d:1f:33:14:f8:bf:53:f9:b1:18:61:63:1e:
2b:73:fc:fc:6b:ca:61:66:0e:53:b6:d9:a7:c4:7e:7d:28:6a:
fa:c8:ff:62:d0:7d:7e:de:c0:5d:67:8b:7e:06:52:43:12:c7:
02:cd:55:57:d9:08:31:5e:e2:9d:06:75:2c:c3:07:62:8c:bd:
67:8d:34:d8:20:c6:72:b8:77:81:cd:02:c0:84:d5:a3:40:a0:
63:c4:da:18:24:a4:06:56:80:49:75:22:7b:12:9d:c6:0a:6a:
f6:f1:3a:a7:8c:34:e8:e3:51:1c:d0:83:59:58:17:5f:32:7c:
3a:6e:16:da:ce:a6:64:02:5d:04:98:82:80:d8:c9:10:bc:3f:
11:fd:80:91:7c:4c:88:6e:60:f8:eb:ca:b4:ec:2d:62:38:d2:
cf:27:f9:1d:13:d8:df:52:90:ad:55:78:18:ac:bd:71:a2:8d:
49:1d:fa:4b:54:fa:84:db:b3:11:5d:6e:b7:dc:b9:9d:1a:8f:
a5:02:40:ed
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUWLUQPtKdut0eHHQhNKDRfePrsf4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIz
NTA1NkFFMjAeFw0yNDA3MjMwNDQyMzBaFw0yNTA3MjIwNDQ3MzBaMDMxMTAvBgNV
BAMTKEFDMjExQjRFQzZENjMyOTFENTgzNkZDNjAyREQ5NkE5NDNCNjZDNTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnmwyZt1DquIam+gMGFDYQNRlp
oU4Ybb2NxqUnnXc/H3IGvYu5N5gyWheS/s2WGRpLjh6UXqagDwvrAT1lM8eATFUD
2W2VvkYwYdQD7nLY0eEo2OMdvRc5muJHaPwJN4SnbIJzttK5rC+kaI82dq9W5nWp
z3j0ZHnd2xWBB44BYHobKov8MGzPtmR0484hcuX0l4OoBSe+Cmca0GrXpQS2bS7s
ME94Dmr0RoP6Lh7oetH7sDMh1qYfL3QE+FreX7cXpp38fIUbdNP5bcnHXgUQAzxy
pXtchO3BuSGn4BqgA2hgxM6uSsZsLuWywU4oIMKySZTC0aRxq64GDq4VjATFAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUrCEbTsbWMpHVg2/GAt2WqUO2bFUwHwYDVR0j
BBgwFoAUmFKruFCN5VHxcjvJrF7DmzUFauIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
YTY2ZjM1MC1lNjQyLTQwMmYtOGFjMy02YWVmN2UxMWFhYzMvMC85ODUyQUJCODUw
OERFNTUxRjE3MjNCQzlBQzVFQzM5QjM1MDU2QUUyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTg1MkFCQjg1MDhERTU1MUYxNzIzQkM5QUM1RUMzOUIzNTA1
NkFFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNjZmMzUwLWU2NDItNDAyZi04
YWMzLTZhZWY3ZTExYWFjMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjQzMDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNzM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
9G0AMA0GCSqGSIb3DQEBCwUAA4IBAQCum7J3gWTCRvSO1gT7tjGnqDl03hz6DNhI
qOHDhHTftO3IxsJYZ7Lrg7nEK0Q79NMeuInf+nf2X4yfgF0fMxT4v1P5sRhhYx4r
c/z8a8phZg5TttmnxH59KGr6yP9i0H1+3sBdZ4t+BlJDEscCzVVX2QgxXuKdBnUs
wwdijL1njTTYIMZyuHeBzQLAhNWjQKBjxNoYJKQGVoBJdSJ7Ep3GCmr28TqnjDTo
41Ec0INZWBdfMnw6bhbazqZkAl0EmIKA2MkQvD8R/YCRfEyIbmD468q07C1iONLP
J/kdE9jfUpCtVXgYrL1xoo1JHfpLVPqE27MRXW633LmdGo+lAkDt
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:49:26 2025 by rpki-client