Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa
File: 323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa (raw, json)
Hash identifier: 8Z0pSGSnkKlaMC3s0SAaLzt4eONtxvATdsVtNdjluzw=
Subject key identifier: 90:2F:AC:46:29:98:42:19:99:36:B1:74:E5:1E:38:40:20:0F:73:31
Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19
Certificate serial: 22CA53B303BA19EE79890F18A3FCB2FB932E71E3
Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa
Signing time: Mon 01 Jul 2024 01:05:52 +0000
ROA not before: Mon 01 Jul 2024 01:00:52 +0000
ROA not after: Mon 30 Jun 2025 01:05:52 +0000
asID: 63872
IP address blocks: 2001:df3:c00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:ca:53:b3:03:ba:19:ee:79:89:0f:18:a3:fc:b2:fb:93:2e:71:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19
Validity
Not Before: Jul 1 01:00:52 2024 GMT
Not After : Jun 30 01:05:52 2025 GMT
Subject: CN=902FAC46299842199936B174E51E3840200F7331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c2:14:9c:62:2a:ab:3a:4e:f3:7f:78:20:9b:
87:4a:9f:d4:53:9b:c0:54:d5:62:b1:1f:5c:95:6f:
29:f4:3c:ac:74:06:1a:59:38:80:1c:0c:98:1e:39:
e8:59:19:67:1f:b8:02:a2:85:f6:e8:80:d7:9b:1a:
3e:d3:73:29:04:9f:a6:76:1f:ac:7a:00:65:2b:d2:
7d:99:9a:eb:6a:e4:ca:fe:bf:56:75:18:e1:91:c3:
8c:cd:2c:cc:00:5f:58:cc:15:31:ae:0b:8f:97:4a:
78:05:36:a0:33:8d:df:df:d0:72:9b:84:62:b7:6d:
0d:02:17:35:06:2d:45:ca:58:8e:5b:9f:4e:e6:52:
e3:23:a7:67:8d:83:c2:6c:87:38:8a:af:8b:ab:5a:
cd:31:7f:77:9c:cd:f8:0f:7d:c9:78:6f:f4:99:a4:
9b:56:5c:a3:e7:2b:0b:51:55:20:d2:8e:8f:75:c5:
89:8b:7b:81:2d:4a:ba:d4:61:72:a6:54:7b:da:40:
c9:23:a8:5d:b6:04:67:b4:97:85:6d:e3:3e:63:8c:
53:c3:76:17:0e:a4:9b:eb:28:3b:8e:ee:d9:8d:3e:
0e:ea:95:f5:2f:da:78:f6:76:f6:e0:e9:dd:89:bf:
40:b3:a3:9f:dd:9d:66:94:ec:70:f0:19:04:c5:b9:
f9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2F:AC:46:29:98:42:19:99:36:B1:74:E5:1E:38:40:20:0F:73:31
X509v3 Authority Key Identifier:
keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:c00::/48
Signature Algorithm: sha256WithRSAEncryption
16:76:67:3f:a0:27:58:e9:f2:8d:09:a7:17:ce:1c:91:96:2e:
1c:63:a9:87:26:71:dc:b1:e8:a7:c6:b3:73:07:49:5c:bc:71:
88:86:5d:90:d0:ce:6e:d5:43:59:69:43:c3:c0:2b:b9:08:65:
c0:fb:32:e1:9c:04:eb:14:29:a7:23:66:f1:bc:a6:c6:8b:69:
20:6f:66:a3:98:f4:ce:69:0b:59:0b:07:74:d7:17:48:ff:f6:
7f:68:15:b0:9a:6e:ef:31:1f:a9:a8:34:67:6c:bf:74:b9:f7:
aa:35:7d:21:a0:cd:c9:80:31:7b:37:5c:d5:0b:98:44:31:13:
58:d0:77:fe:f5:eb:78:eb:1b:3c:52:66:83:07:5a:c9:fc:4b:
b8:cd:b1:eb:dc:5f:1c:2f:7a:79:e9:1a:7a:f3:73:10:67:09:
98:96:57:93:6a:0d:4b:2a:6a:1b:25:86:ec:15:ff:4f:84:2d:
4b:c4:82:73:d7:ca:ea:5c:9c:a6:ab:57:0c:c2:f6:e1:51:2d:
dc:79:32:e2:e5:6e:ce:e7:80:cd:e9:db:90:4d:8c:e2:a5:2e:
50:00:95:49:72:d5:98:1c:bf:f3:fc:51:11:d3:8a:30:9d:7b:
19:23:e8:15:4b:e3:de:cd:85:ba:aa:aa:b0:2a:68:45:a7:90:
37:6f:64:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:19 2025 by rpki-client