Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa
File: 323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa (raw, json)
Hash identifier: 4XXov05jzPivQx8K8xlqH1SU96GaxDVPIEAJDnPiz2k=
Subject key identifier: 8B:75:AF:B0:1C:91:21:47:C8:91:12:60:B4:CA:96:61:E9:53:BB:23
Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E
Certificate serial: 4089F2E8F1DD19C5D2280A3D589811F521EF68FF
Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa
Signing time: Fri 14 Jun 2024 06:00:01 +0000
ROA not before: Fri 14 Jun 2024 05:55:01 +0000
ROA not after: Fri 13 Jun 2025 06:00:01 +0000
asID: 138818
IP address blocks: 2406:be40:babe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:89:f2:e8:f1:dd:19:c5:d2:28:0a:3d:58:98:11:f5:21:ef:68:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E
Validity
Not Before: Jun 14 05:55:01 2024 GMT
Not After : Jun 13 06:00:01 2025 GMT
Subject: CN=8B75AFB01C912147C8911260B4CA9661E953BB23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:59:26:f1:4c:85:bf:d7:f5:91:c1:14:9d:92:
16:27:e6:0c:ea:00:55:7f:47:6f:ee:c2:ed:af:d0:
0b:04:06:8e:0b:59:ca:23:b2:d5:c3:31:90:87:1b:
a4:99:4b:5d:79:f4:f4:19:0e:44:43:f1:bf:02:e4:
73:65:34:30:74:98:4c:92:ef:1c:48:b2:97:38:c8:
eb:0c:bd:96:e7:a8:08:61:ad:33:ce:e1:a9:ae:71:
c5:19:a0:1c:f6:ad:73:c3:4e:cf:bb:b8:6c:c1:c0:
b5:1c:17:fd:a7:13:07:1b:01:73:f7:11:15:9c:ae:
a1:78:f6:8b:68:35:a1:9f:d2:62:5b:52:87:8f:e5:
e7:99:3d:58:70:75:0f:77:4f:67:f4:3f:8e:b3:da:
b5:68:07:13:e5:43:b7:7f:52:9e:d4:de:0a:fa:0b:
66:71:9c:4a:d0:ca:b5:1f:80:dd:76:bb:88:26:51:
de:13:ce:81:52:db:3b:aa:51:1e:1a:2e:ba:d7:9c:
84:f1:19:2f:c0:a9:ce:50:31:ec:60:71:34:d0:c1:
ce:64:42:b6:e0:f2:85:92:ca:87:5b:45:f3:3c:8b:
e0:e8:4f:21:21:11:b8:fe:15:67:a2:dd:ff:80:ea:
ba:bd:7d:f4:84:f5:10:1e:48:69:27:71:df:0e:22:
60:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:75:AF:B0:1C:91:21:47:C8:91:12:60:B4:CA:96:61:E9:53:BB:23
X509v3 Authority Key Identifier:
keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:be40:babe::/48
Signature Algorithm: sha256WithRSAEncryption
ac:c4:f1:bd:38:3e:62:06:18:ae:90:dc:f2:2a:37:c3:20:41:
8c:d8:06:8b:e3:be:55:eb:33:ac:84:a4:f6:3e:0c:e3:32:c3:
d8:7f:e7:d9:ac:81:9c:4e:15:6b:60:a5:f9:af:d2:16:ba:b7:
d7:e6:ab:e7:3d:1a:5d:11:f4:7d:0c:5d:21:3d:15:1a:f1:38:
30:f8:ff:42:d9:bc:55:be:12:b2:12:68:2c:47:11:82:70:fe:
01:c6:e2:37:2e:b6:6e:b6:79:4a:dc:a0:45:05:42:67:62:67:
16:22:fc:fc:c7:e8:0e:ff:27:a4:1b:3a:f4:43:15:52:2c:6d:
fe:05:7e:a0:cd:3f:63:d4:ec:03:66:29:90:9e:d8:f9:3d:df:
d7:71:78:a8:77:be:cd:bc:6e:d0:db:e9:97:79:b8:3c:cc:0b:
33:4b:ce:e5:c7:1b:e9:a5:76:2f:9e:41:44:ca:cd:57:61:43:
e0:2f:da:9f:a2:5c:ad:fa:30:ac:be:c2:cb:d2:e1:64:1f:38:
95:31:b8:76:41:4c:87:39:7c:23:61:08:30:84:88:00:24:4e:
df:8b:10:a7:b9:6f:3d:67:6a:69:5e:e1:ca:2f:e4:ba:00:c6:
54:6c:71:aa:e7:b9:0d:32:6d:e1:db:03:b4:d0:25:7b:98:33:
09:84:b5:02
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUQIny6PHdGcXSKAo9WJgR9SHvaP8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC
NTlCRjkxRTAeFw0yNDA2MTQwNTU1MDFaFw0yNTA2MTMwNjAwMDFaMDMxMTAvBgNV
BAMTKDhCNzVBRkIwMUM5MTIxNDdDODkxMTI2MEI0Q0E5NjYxRTk1M0JCMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1WSbxTIW/1/WRwRSdkhYn5gzq
AFV/R2/uwu2v0AsEBo4LWcojstXDMZCHG6SZS1159PQZDkRD8b8C5HNlNDB0mEyS
7xxIspc4yOsMvZbnqAhhrTPO4amuccUZoBz2rXPDTs+7uGzBwLUcF/2nEwcbAXP3
ERWcrqF49otoNaGf0mJbUoeP5eeZPVhwdQ93T2f0P46z2rVoBxPlQ7d/Up7U3gr6
C2ZxnErQyrUfgN12u4gmUd4TzoFS2zuqUR4aLrrXnITxGS/Aqc5QMexgcTTQwc5k
Qrbg8oWSyodbRfM8i+DoTyEhEbj+FWei3f+A6rq9ffSE9RAeSGkncd8OImABAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUi3WvsByRIUfIkRJgtMqWYelTuyMwHwYDVR0j
BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx
OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC
RjkxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04
N2YyLWQ4MTg0MTc4YzE0OS8wLzMyMzQzMDM2M2E2MjY1MzQzMDNhNjI2MTYyNjUz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzgucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
Br5Aur4wDQYJKoZIhvcNAQELBQADggEBAKzE8b04PmIGGK6Q3PIqN8MgQYzYBovj
vlXrM6yEpPY+DOMyw9h/59msgZxOFWtgpfmv0ha6t9fmq+c9Gl0R9H0MXSE9FRrx
ODD4/0LZvFW+ErISaCxHEYJw/gHG4jcutm62eUrcoEUFQmdiZxYi/PzH6A7/J6Qb
OvRDFVIsbf4FfqDNP2PU7ANmKZCe2Pk939dxeKh3vs28btDb6Zd5uDzMCzNLzuXH
G+mldi+eQUTKzVdhQ+Av2p+iXK36MKy+wsvS4WQfOJUxuHZBTIc5fCNhCDCEiAAk
Tt+LEKe5bz1namle4cov5LoAxlRscarnuQ0ybeHbA7TQJXuYMwmEtQI=
-----END CERTIFICATE-----
Generated at Mon Apr 7 05:05:37 2025 by rpki-client