Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa
File: 323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa (raw, json)
Hash identifier: 45ncyPMJg5NtAUVZ5Jsnk35aIRm9978BuK9o74mR6TM=
Subject key identifier: DB:8D:70:92:4F:D7:3A:55:32:77:42:56:3D:7F:A6:82:08:88:68:75
Certificate issuer: /CN=9CA6DB3A7AC14D26875264793FB5D488BCF01F45
Certificate serial: 03F7801157BA8C9F730F1C42BA322F093B4A060B
Authority key identifier: 9C:A6:DB:3A:7A:C1:4D:26:87:52:64:79:3F:B5:D4:88:BC:F0:1F:45
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa
Signing time: Mon 01 Jul 2024 01:05:57 +0000
ROA not before: Mon 01 Jul 2024 01:00:57 +0000
ROA not after: Mon 30 Jun 2025 01:05:57 +0000
asID: 137325
IP address blocks: 2001:df4:8b00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:f7:80:11:57:ba:8c:9f:73:0f:1c:42:ba:32:2f:09:3b:4a:06:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9CA6DB3A7AC14D26875264793FB5D488BCF01F45
Validity
Not Before: Jul 1 01:00:57 2024 GMT
Not After : Jun 30 01:05:57 2025 GMT
Subject: CN=DB8D70924FD73A55327742563D7FA68208886875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3d:69:26:82:b4:e0:69:07:c8:b4:15:1f:04:
a3:e3:89:72:cc:ca:73:b9:d2:ab:22:68:4a:25:55:
b8:83:6e:55:a9:45:1c:e2:b2:85:29:1e:bd:05:70:
6b:34:bb:e2:18:5e:29:a0:6d:e6:11:dc:ee:cc:ad:
80:ac:ec:42:bf:62:18:d5:a4:fb:ab:a5:ef:7b:a6:
af:76:48:f5:24:4a:48:81:02:58:95:0b:51:6e:67:
fc:64:93:23:f9:b0:ff:a3:b7:11:56:61:4e:d7:75:
89:05:5f:29:d0:d9:55:cf:2b:c5:00:73:f8:0f:3f:
26:e3:f6:3c:99:61:65:5d:a3:ad:fa:2a:02:2d:ba:
39:e7:20:42:64:93:00:c4:d3:c8:f8:30:60:34:f0:
77:a5:91:06:a9:f1:9b:71:b5:2d:a0:24:af:86:6d:
52:e2:39:08:08:ec:5a:b2:6c:fc:47:f5:f2:e2:4a:
de:0d:38:c2:de:1b:e3:ea:e2:61:da:ba:73:2e:f3:
1a:ae:d3:64:1f:36:48:f6:07:e1:3e:35:a8:07:f1:
bb:de:d4:e3:5b:d0:86:e9:2e:c3:b2:f6:84:00:cf:
5e:68:74:00:e2:ec:43:37:ac:52:a6:c9:55:01:ce:
54:40:59:ad:82:03:67:10:c7:a0:78:f0:cc:3e:c8:
dc:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8D:70:92:4F:D7:3A:55:32:77:42:56:3D:7F:A6:82:08:88:68:75
X509v3 Authority Key Identifier:
keyid:9C:A6:DB:3A:7A:C1:4D:26:87:52:64:79:3F:B5:D4:88:BC:F0:1F:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:8b00::/48
Signature Algorithm: sha256WithRSAEncryption
a4:54:9e:84:2b:a7:c8:3f:71:96:a8:8b:97:2e:a4:04:59:56:
d6:af:91:70:e2:ae:50:0f:e2:cf:b5:b7:40:52:9a:d7:b8:b5:
91:24:66:e4:03:91:7d:c3:94:cd:8f:dd:2a:3c:88:a9:b0:f9:
1b:e3:48:96:0f:db:32:2f:a5:9b:2e:79:1e:1d:2e:80:91:a5:
b8:38:09:b1:6a:37:a2:55:8b:0a:c1:bd:dd:2c:e3:23:05:07:
06:45:83:55:f0:94:5b:c2:c4:00:a0:47:8d:58:7f:61:4b:a2:
20:2a:66:c0:f0:28:32:06:68:6c:b0:25:c1:43:24:30:ca:4e:
4d:5b:3a:9e:88:c8:c9:75:ae:c0:3d:0f:c1:c3:04:8f:cf:33:
88:16:e6:72:c0:16:c3:94:14:bd:8a:76:c0:2b:8b:4b:cd:25:
0d:03:3f:01:e6:7a:e8:5b:24:b7:7b:b3:47:8a:8a:6d:f8:af:
b3:63:78:48:9b:d0:79:d7:d5:ab:8b:55:b3:7f:8d:ab:9e:ee:
cc:05:76:a9:ec:75:ee:f4:bd:a5:4e:a0:6a:8c:80:17:7e:71:
cf:f4:40:45:38:9a:51:89:84:59:3d:e6:79:f8:b3:f6:00:6a:
9f:43:99:19:72:36:bc:35:0b:a5:24:bd:9b:17:e7:64:5e:39:
53:35:fe:69
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUA/eAEVe6jJ9zDxxCujIvCTtKBgswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUNBNkRCM0E3QUMxNEQyNjg3NTI2NDc5M0ZCNUQ0ODhC
Q0YwMUY0NTAeFw0yNDA3MDEwMTAwNTdaFw0yNTA2MzAwMTA1NTdaMDMxMTAvBgNV
BAMTKERCOEQ3MDkyNEZENzNBNTUzMjc3NDI1NjNEN0ZBNjgyMDg4ODY4NzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDPWkmgrTgaQfItBUfBKPjiXLM
ynO50qsiaEolVbiDblWpRRzisoUpHr0FcGs0u+IYXimgbeYR3O7MrYCs7EK/YhjV
pPurpe97pq92SPUkSkiBAliVC1FuZ/xkkyP5sP+jtxFWYU7XdYkFXynQ2VXPK8UA
c/gPPybj9jyZYWVdo636KgItujnnIEJkkwDE08j4MGA08HelkQap8ZtxtS2gJK+G
bVLiOQgI7FqybPxH9fLiSt4NOMLeG+Pq4mHaunMu8xqu02QfNkj2B+E+NagH8bve
1ONb0IbpLsOy9oQAz15odADi7EM3rFKmyVUBzlRAWa2CA2cQx6B48Mw+yNxnAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU241wkk/XOlUyd0JWPX+mggiIaHUwHwYDVR0j
BBgwFoAUnKbbOnrBTSaHUmR5P7XUiLzwH0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
MDY1MmJjNi04YmI2LTRmMjYtODhiMS0zODBkYWMxOGUyNjgvMC85Q0E2REIzQTdB
QzE0RDI2ODc1MjY0NzkzRkI1RDQ4OEJDRjAxRjQ1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUNBNkRCM0E3QUMxNEQyNjg3NTI2NDc5M0ZCNUQ0ODhCQ0Yw
MUY0NS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNjUyYmM2LThiYjYtNGYyNi04
OGIxLTM4MGRhYzE4ZTI2OC8wLzMyMzAzMDMxM2E2NDY2MzQzYTM4NjIzMDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMjM1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
9IsAMA0GCSqGSIb3DQEBCwUAA4IBAQCkVJ6EK6fIP3GWqIuXLqQEWVbWr5Fw4q5Q
D+LPtbdAUprXuLWRJGbkA5F9w5TNj90qPIipsPkb40iWD9syL6WbLnkeHS6AkaW4
OAmxajeiVYsKwb3dLOMjBQcGRYNV8JRbwsQAoEeNWH9hS6IgKmbA8CgyBmhssCXB
QyQwyk5NWzqeiMjJda7APQ/BwwSPzzOIFuZywBbDlBS9inbAK4tLzSUNAz8B5nro
WyS3e7NHiopt+K+zY3hIm9B519Wri1Wzf42rnu7MBXap7HXu9L2lTqBqjIAXfnHP
9EBFOJpRiYRZPeZ5+LP2AGqfQ5kZcja8NQulJL2bF+dkXjlTNf5p
-----END CERTIFICATE-----
Generated at Thu Apr 10 09:18:01 2025 by rpki-client