Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa
File: 323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa (raw, json)
Hash identifier: cUXfxLq9SrJidRBDLWjTWhlyTdpXk138loj4yvcAltY=
Subject key identifier: 18:3D:BE:6F:92:2C:B6:43:C7:F3:46:B3:9B:73:A6:F7:05:B3:CE:7C
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 7CBE47F67358D8199BBDFC5334963CC35E8DC707
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa
Signing time: Sun 29 Dec 2024 09:00:01 +0000
ROA not before: Sun 29 Dec 2024 08:55:01 +0000
ROA not after: Sun 28 Dec 2025 09:00:01 +0000
asID: 139972
IP address blocks: 2405:c440:9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:be:47:f6:73:58:d8:19:9b:bd:fc:53:34:96:3c:c3:5e:8d:c7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Dec 29 08:55:01 2024 GMT
Not After : Dec 28 09:00:01 2025 GMT
Subject: CN=183DBE6F922CB643C7F346B39B73A6F705B3CE7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1f:7f:56:a6:7c:6f:47:4e:ba:58:37:9f:98:
b2:b0:80:03:49:11:44:57:9e:f3:15:cd:12:ff:9a:
63:8f:f0:1c:a3:8b:53:e7:6f:95:82:0e:8a:05:3e:
7d:1b:02:23:c8:35:3e:32:a7:31:58:65:88:5c:ad:
81:01:0f:11:12:5f:b7:9e:19:3b:08:99:43:88:ee:
08:9f:4d:59:48:cc:bc:a2:53:7a:fc:30:7f:c4:c8:
eb:f5:e4:31:8f:5c:68:34:dc:3a:98:9d:9a:5f:44:
f5:19:ee:63:7e:37:92:39:17:68:e5:1e:90:ed:59:
55:9b:1f:ba:a7:bb:e8:1a:9b:e6:60:b8:47:8f:ec:
b7:76:2f:0d:81:66:b2:26:d5:d1:3a:17:81:81:23:
6c:95:c1:6e:26:97:0b:d1:10:c3:de:e3:92:10:02:
9d:67:88:c0:7d:b9:a6:72:a4:5b:68:0d:46:a1:3f:
a7:92:4c:39:86:2c:c3:1e:c1:1b:b6:c7:0f:58:1f:
ae:54:29:3f:ae:70:b5:e2:85:d0:8d:22:dc:14:1e:
1d:a8:4e:34:a0:1f:84:3d:57:c4:c5:cc:52:ce:47:
55:80:16:17:eb:e7:79:00:70:20:a5:ec:34:50:9c:
96:16:ef:73:cc:e6:77:9a:b6:25:79:fe:50:1e:2c:
6a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3D:BE:6F:92:2C:B6:43:C7:F3:46:B3:9B:73:A6:F7:05:B3:CE:7C
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440:9::/48
Signature Algorithm: sha256WithRSAEncryption
1e:ea:93:f0:8e:64:f0:1b:4b:a2:67:4a:ae:00:3f:f1:2b:2a:
b4:ce:4d:d0:fa:50:44:48:f2:a8:88:05:b5:34:fe:66:62:57:
15:41:c6:12:3b:d5:07:94:7e:7e:8e:15:9d:2d:eb:fb:e0:30:
07:51:e8:5b:0d:20:45:06:9a:fc:c8:d1:a4:d8:25:cb:6a:0d:
1e:bc:6a:4d:89:bf:7b:6a:fc:a4:87:b9:db:86:83:9d:8d:93:
6a:df:fd:2f:1b:78:e6:84:12:e7:26:b0:30:9a:28:cc:3a:00:
ca:3a:81:b3:ab:40:3a:a2:4e:f6:0b:72:6a:4f:b6:70:e2:1e:
13:9f:d2:74:b7:20:94:79:db:25:5e:db:21:84:34:cc:66:3e:
89:3a:c2:62:d1:45:94:23:01:eb:a7:8d:83:be:d0:5a:27:85:
00:4d:92:22:0b:44:9b:6a:6e:80:a0:5a:ba:c5:68:7e:f3:4f:
ca:a3:98:45:16:2e:9a:9b:50:4b:97:5f:90:0a:2f:18:03:31:
1f:c9:91:7f:6c:1e:da:2c:f5:24:cd:80:9a:ab:b1:cc:0c:63:
04:6f:4d:b6:67:cc:9c:24:fe:f6:6f:d8:05:aa:e3:92:2b:7b:
1a:89:4f:da:4e:6b:03:f0:fc:3f:ee:5d:a9:25:6c:c5:ec:e5:
d0:23:65:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:51 2025 by rpki-client