Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa
File: 323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa (raw, json)
Hash identifier: Y94ACgKRW/B6r5u1l5R9++TiByrUg/dDZ6VyKO+Pxik=
Subject key identifier: AE:CB:3D:3D:3F:FE:22:38:6C:6D:4D:0C:9A:D8:85:2C:8D:53:1A:E6
Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A
Certificate serial: 65850232342B535460E09E78504DC9EBB6D6E1BA
Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa
Signing time: Wed 03 Jul 2024 05:00:51 +0000
ROA not before: Wed 03 Jul 2024 04:55:51 +0000
ROA not after: Wed 02 Jul 2025 05:00:51 +0000
asID: 131736
IP address blocks: 2404:2cc0:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:85:02:32:34:2b:53:54:60:e0:9e:78:50:4d:c9:eb:b6:d6:e1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A
Validity
Not Before: Jul 3 04:55:51 2024 GMT
Not After : Jul 2 05:00:51 2025 GMT
Subject: CN=AECB3D3D3FFE22386C6D4D0C9AD8852C8D531AE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e9:05:a2:86:6e:8a:ec:e1:31:2e:18:52:db:
31:39:4e:9c:bb:ed:12:8c:6e:55:58:fd:b2:d1:73:
7f:7b:c1:b5:25:58:d2:95:f5:d2:0b:fe:a6:21:bf:
b0:27:12:29:07:64:f6:07:ad:24:ef:ce:4a:17:72:
bf:58:13:a0:e9:90:6a:0f:c7:8c:62:2f:98:a7:05:
7f:78:4c:1a:06:7f:47:47:9b:0d:4a:fe:90:85:f1:
40:48:f6:6c:54:6c:00:45:de:34:cf:b3:f6:90:b3:
d8:6f:eb:2f:16:9c:dc:dd:c5:bf:8e:68:e1:01:3c:
2b:fb:7e:24:96:0f:40:52:0e:e0:30:4d:af:d2:dc:
1d:cd:10:28:0b:38:a1:5b:87:95:d6:d7:60:28:e8:
71:5a:3c:03:3b:a7:bc:7b:de:44:91:46:93:68:f3:
fb:bd:b0:8c:48:1f:90:fb:75:f9:cd:50:80:4c:d9:
ba:c2:03:70:bd:7b:ae:ae:32:a3:21:72:18:c8:42:
20:d5:08:45:a1:c6:ae:0e:8f:64:6e:30:53:5f:a6:
32:f8:1d:d6:93:ac:e1:34:3c:1b:7e:07:70:9c:2d:
d3:f2:5d:13:da:7a:d3:0b:27:4d:ba:03:4b:61:aa:
d8:00:60:1b:7f:b5:bd:58:83:ac:13:80:5f:8f:3f:
14:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CB:3D:3D:3F:FE:22:38:6C:6D:4D:0C:9A:D8:85:2C:8D:53:1A:E6
X509v3 Authority Key Identifier:
keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:2cc0:2::/48
Signature Algorithm: sha256WithRSAEncryption
b8:73:a6:e5:7b:3d:cc:6e:ce:b4:17:3f:df:11:5e:20:2d:71:
48:e7:25:fe:f7:38:67:dc:7d:7d:3e:b1:bf:f0:b9:e5:fa:94:
15:89:6b:9c:1e:49:6e:eb:e9:35:a3:d8:42:12:98:7d:77:8f:
24:47:1e:e8:c0:ad:ab:c7:89:f2:27:ec:7a:c4:e7:fb:16:15:
09:ac:41:17:dd:b4:93:aa:94:66:93:b2:99:30:0b:5d:6c:88:
93:dc:e9:d3:c9:a6:b7:32:7c:ca:4a:21:44:b2:70:35:0b:39:
29:c1:6f:dc:24:b3:8b:66:92:ed:22:ed:3e:ab:22:19:70:ca:
10:82:5d:b2:7a:b7:49:16:2d:fd:e4:5c:35:6a:1c:c7:a1:a9:
3b:55:03:4f:9a:18:35:4e:a7:91:75:56:5e:f1:90:89:a7:e1:
c5:24:c6:46:13:32:a5:6b:c9:27:90:c0:7a:db:cb:11:3c:e6:
b2:08:98:40:d5:1f:64:b8:1c:b4:d0:9a:e0:0e:c0:ed:b9:48:
04:fd:f2:b5:68:6f:fe:75:27:3a:7d:b6:a4:8a:99:1c:68:76:
c4:7e:e9:2d:86:1e:e9:bf:ed:80:9f:c4:50:3d:1a:07:5d:d8:
ee:ce:4f:84:aa:0f:20:d3:b6:20:0b:f5:f2:7c:86:c9:ea:51:
0d:86:47:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:27:15 2025 by rpki-client