Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa
File: 323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa (raw, json)
Hash identifier: UQ99M3V6H/oFrfldgf9Xq1Fi/A6v60uZYgPA1HT2lMI=
Subject key identifier: AC:4B:55:D1:59:27:76:E7:00:9F:19:59:6B:33:FF:FD:59:AF:83:2F
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 6C4DAFBF1B7AFE061667537B5DA993ADE99F8C57
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa
Signing time: Wed 04 Dec 2024 09:03:04 +0000
ROA not before: Wed 04 Dec 2024 08:58:04 +0000
ROA not after: Wed 03 Dec 2025 09:03:04 +0000
asID: 139972
IP address blocks: 2405:c440:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:4d:af:bf:1b:7a:fe:06:16:67:53:7b:5d:a9:93:ad:e9:9f:8c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Dec 4 08:58:04 2024 GMT
Not After : Dec 3 09:03:04 2025 GMT
Subject: CN=AC4B55D1592776E7009F19596B33FFFD59AF832F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3d:82:41:59:0b:27:9e:ab:fb:97:bf:8f:75:
2a:7d:b8:d6:d5:e3:59:7b:e2:69:6f:b0:dd:a3:23:
fb:e8:48:d0:ab:2f:d5:46:7d:a2:90:60:73:94:36:
c9:8a:5c:e3:53:2c:91:81:20:b8:8b:93:2d:50:86:
e0:c6:d7:02:e4:3d:f8:a0:aa:25:ea:51:e5:2f:34:
b8:43:6b:1f:ed:dd:7d:e3:8c:3e:62:fb:65:89:b1:
dc:25:d4:1e:dc:9a:fb:0f:67:a3:26:06:ef:39:08:
42:ce:4c:2f:22:bc:31:de:c0:c7:5d:2c:a1:dc:46:
3a:5a:22:8c:30:36:3f:34:9a:f0:e5:1f:db:18:5d:
38:fb:4a:e4:14:33:06:bd:47:57:90:c2:e8:40:20:
b4:76:f7:37:75:f1:4c:84:f2:bd:09:bf:fc:47:6b:
85:6e:ac:fe:e2:9f:e1:b5:21:c3:6b:e3:e4:cc:69:
2e:47:7f:a7:42:96:80:ef:63:5e:6d:85:0f:67:73:
38:79:89:25:f7:9c:76:d3:2e:a1:3a:aa:85:7d:74:
e6:e7:26:67:21:ac:65:37:09:94:b6:16:bc:28:34:
e4:0c:0b:50:72:30:e9:dd:da:ab:4f:f1:91:26:1d:
8a:7d:29:1b:6d:50:19:a6:66:69:4e:2d:98:11:16:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4B:55:D1:59:27:76:E7:00:9F:19:59:6B:33:FF:FD:59:AF:83:2F
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440:1::/48
Signature Algorithm: sha256WithRSAEncryption
15:cd:00:65:d8:85:f2:fa:5a:36:10:16:9d:55:7b:b2:7b:5e:
54:76:33:e3:dd:7b:4a:1d:24:d0:48:a6:4a:88:ac:a9:ab:04:
37:f3:d2:02:e1:16:6b:33:a8:ec:cd:58:33:00:b8:10:64:e1:
35:1d:f1:1b:8b:4b:b6:ec:97:3e:64:96:5b:20:5c:31:07:9b:
fd:ff:d3:e9:2d:96:de:47:e9:7f:a6:f2:cb:ba:d1:12:76:65:
ac:46:63:61:72:a5:81:6b:03:77:87:0d:9d:05:e5:93:89:88:
3c:d8:ce:77:b7:25:3b:bb:cf:e8:35:65:0c:cf:b7:fb:c0:7a:
42:6d:97:fc:ae:ff:2c:fb:ee:e1:ab:4c:73:6e:69:3d:92:93:
ef:1d:16:7d:9f:a5:00:f5:e4:19:78:d0:31:b5:59:e0:d2:39:
b6:78:26:d9:6b:ce:2d:45:3b:75:57:d4:1f:e5:5c:0e:40:47:
06:43:8c:62:6f:04:95:8f:05:6f:52:c0:28:4f:df:16:b0:8f:
64:9d:97:8f:db:a9:ff:bf:0b:01:3d:eb:4a:79:3d:2a:67:5e:
35:f7:33:17:f4:92:32:7b:c2:1f:28:07:dc:46:62:b1:40:26:
51:01:56:e6:0c:7a:b0:c6:b5:28:e8:a4:3a:b0:a9:d3:25:10:
f9:be:8c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:43 2025 by rpki-client