Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa
File: 323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa (raw, json)
Hash identifier: QsRvRtbvklzx+fVhZ+bHLVPp5flqQEGx3NdKmk6EOjo=
Subject key identifier: FB:40:3A:FD:28:6D:77:0F:22:56:D8:F2:B0:94:84:40:1D:2A:23:88
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 51B5C95C8416EF103F81D59728E427B83D5AC065
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa
Signing time: Wed 04 Dec 2024 09:03:05 +0000
ROA not before: Wed 04 Dec 2024 08:58:05 +0000
ROA not after: Wed 03 Dec 2025 09:03:05 +0000
asID: 139972
IP address blocks: 2405:c440:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:b5:c9:5c:84:16:ef:10:3f:81:d5:97:28:e4:27:b8:3d:5a:c0:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Dec 4 08:58:05 2024 GMT
Not After : Dec 3 09:03:05 2025 GMT
Subject: CN=FB403AFD286D770F2256D8F2B09484401D2A2388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:0e:2d:42:51:60:80:fe:77:e2:ae:ca:c3:
36:4b:12:09:6d:49:ed:fc:c7:4c:d8:80:a4:d2:4d:
61:b5:e0:f8:0a:a5:d1:44:42:a5:c2:de:d9:30:fc:
94:e1:f9:54:c3:a3:35:dd:56:d8:dc:07:be:e4:68:
ae:f7:c0:2c:52:2f:82:d5:87:00:f7:07:b9:bf:6f:
fd:e6:79:5c:f9:8b:6a:6b:54:b1:9d:86:8a:0a:16:
d4:ba:50:6b:62:c6:89:a6:8b:ca:4c:50:9e:93:40:
e9:60:47:42:d1:67:34:21:74:f1:4c:a5:14:11:b8:
53:09:f5:ba:77:5a:52:70:95:de:47:4e:4b:fe:15:
41:8a:cd:ed:8d:7a:b3:6f:a2:a2:e7:3d:24:1f:bb:
ed:38:6b:71:f3:70:15:5a:00:b3:c6:94:d6:18:fc:
2c:e9:91:ab:c2:b5:a1:0a:97:a5:59:7c:f0:89:72:
2b:5d:0c:4e:ec:e1:fc:8d:43:c1:4e:f2:cd:1d:88:
f8:c0:47:9d:c4:21:cb:34:cc:cb:53:67:56:84:26:
7b:4a:4e:a3:dd:8c:93:94:e3:14:c8:01:59:0e:1a:
de:9a:4a:6b:9f:e9:af:af:91:14:7e:0a:80:b4:53:
78:6e:09:49:97:51:05:9f:6b:10:9d:44:f4:cf:89:
59:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:40:3A:FD:28:6D:77:0F:22:56:D8:F2:B0:94:84:40:1D:2A:23:88
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440:3::/48
Signature Algorithm: sha256WithRSAEncryption
b8:67:d6:ee:30:3d:11:c6:09:4e:c5:c4:e9:15:66:18:8b:47:
b5:9f:b8:dd:bb:d9:6e:66:6c:fa:b1:50:48:94:1d:84:0f:13:
6d:21:b3:8d:23:2d:7e:af:db:47:7d:7e:0b:56:11:30:6b:b5:
7a:4b:b1:dd:5b:8e:6f:55:66:2d:b9:5f:2c:9c:ff:1b:55:fa:
47:26:2b:00:c3:f2:6b:63:b7:60:bf:5f:53:75:9b:b6:d1:25:
48:6c:8f:3a:4a:6f:96:9f:c6:9f:c7:ec:a0:ef:a8:49:8d:69:
df:91:1e:cc:20:f5:b6:d4:b6:48:d6:c2:db:63:11:cd:cb:d4:
a3:1e:47:96:7d:78:c5:1a:04:82:0d:4f:54:1b:ee:e8:68:60:
0c:9a:e4:be:4d:37:9e:62:25:81:e6:f9:4f:85:aa:be:b3:3c:
72:78:f9:86:52:bb:f4:c6:a2:de:b7:ac:af:70:9f:1c:20:78:
f1:7c:df:11:0f:96:0e:4e:f1:29:a2:4e:57:ac:16:86:53:9e:
15:26:68:e7:4a:71:a6:1f:62:8f:d6:56:c4:a7:ed:dd:5b:18:
d8:e7:61:de:06:64:e3:8b:dd:07:f0:2b:fb:d4:98:60:f9:3b:
cc:55:5b:47:1e:5c:85:92:c8:d4:78:c6:4c:00:6d:0c:48:7f:
b3:b2:55:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:18 2025 by rpki-client