Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa
File: 323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa (raw, json)
Hash identifier: MRKapDwhJWKDpN14X0h/O1jz/ZplSxgiOCb6cDtszqE=
Subject key identifier: 70:1F:79:A3:E2:D5:42:6D:15:BE:9E:6F:12:EC:FE:6F:4A:35:C2:CC
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 30D6B8C0133FD615113CE677D4B4B434CF160E67
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa
Signing time: Sun 29 Dec 2024 09:00:00 +0000
ROA not before: Sun 29 Dec 2024 08:55:00 +0000
ROA not after: Sun 28 Dec 2025 09:00:00 +0000
asID: 139972
IP address blocks: 2405:c440:8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:d6:b8:c0:13:3f:d6:15:11:3c:e6:77:d4:b4:b4:34:cf:16:0e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Dec 29 08:55:00 2024 GMT
Not After : Dec 28 09:00:00 2025 GMT
Subject: CN=701F79A3E2D5426D15BE9E6F12ECFE6F4A35C2CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f3:4c:8b:2e:e2:0c:fc:c6:c2:92:cf:97:fc:
de:a4:e6:26:15:5d:df:69:41:c3:29:8f:1e:14:82:
28:93:e2:dc:80:f8:86:9d:d4:81:04:67:a6:3d:f3:
3b:c2:6a:fb:67:ff:3e:6e:c0:02:d9:46:52:56:3b:
7d:e9:de:f4:d9:6f:f8:9b:32:56:e4:e6:80:84:9c:
f1:c2:12:3e:e4:77:43:99:68:d2:74:31:c4:c7:af:
66:34:e2:33:20:a6:16:40:19:95:46:e0:ed:e8:e3:
b1:f3:75:93:7e:94:20:23:26:51:f6:b5:f2:7a:ec:
7c:20:6d:3a:8e:3e:58:8b:ac:d1:22:1d:50:4e:c0:
96:c2:09:76:d1:09:c2:a3:db:52:ac:77:97:bf:e6:
dd:11:10:a0:6e:7d:05:97:c0:2f:4a:f2:79:b8:e5:
e2:89:f4:96:e3:24:ca:e1:41:d2:1b:04:83:72:95:
92:5f:39:d7:15:d7:2d:8e:2d:5f:a1:69:ed:32:c6:
88:96:2f:dc:65:9b:0e:9f:a5:93:1c:4c:03:b0:29:
e2:b5:1a:b8:ed:89:23:36:d6:e0:f3:52:8d:59:e6:
9a:35:a6:eb:fa:e3:62:bb:f2:a6:84:c9:cd:f7:ad:
74:07:3b:5c:47:66:59:44:f1:a9:49:6f:38:10:d3:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1F:79:A3:E2:D5:42:6D:15:BE:9E:6F:12:EC:FE:6F:4A:35:C2:CC
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440:8::/48
Signature Algorithm: sha256WithRSAEncryption
94:8f:b3:7e:79:c6:d5:8f:7f:c2:7a:45:a1:1a:6f:14:c3:45:
33:00:77:95:c7:c8:35:d6:b7:61:a0:3f:b6:94:04:a4:49:22:
58:63:48:56:30:77:1e:26:4c:fb:ff:82:de:45:e5:37:ca:39:
38:e5:81:6c:e4:39:a4:b3:01:80:36:ea:91:d8:1e:0d:bd:c8:
58:b6:ee:fe:26:cf:da:57:03:d0:d7:98:93:bb:4b:96:21:23:
da:36:55:f5:c4:95:3c:c5:35:5e:67:14:c7:5a:db:37:11:ea:
c4:e0:48:9d:dd:3f:d3:fc:13:e3:1e:67:a1:1f:d7:8b:3e:ab:
a3:ea:60:cf:32:df:5d:bf:1a:27:3e:c6:95:f1:92:df:20:5c:
2f:29:35:f1:02:fa:06:dc:34:34:17:69:18:36:b8:91:6e:7a:
21:4e:88:28:8c:6a:0f:87:31:ff:7b:f0:de:8a:ff:59:46:bb:
7c:e6:13:3f:55:47:2a:ea:95:72:b4:47:ce:eb:f0:56:73:ca:
a3:77:27:fe:a4:07:f3:d6:1c:b3:47:a3:6e:80:72:34:fa:2e:
59:f0:fc:4a:14:9a:93:89:58:03:67:1c:e4:bc:15:41:e6:4d:
33:9b:10:83:1e:d1:ed:ea:96:42:13:86:b5:20:58:5b:26:c2:
3e:45:fb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:11 2025 by rpki-client