Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f33322d3332203d3e20313339393732.roa
File: 323430353a633434303a3a2f33322d3332203d3e20313339393732.roa (raw, json)
Hash identifier: WemZ33alIWQ0Cd0tP3ehcwRkOwHkuA/Mv7iO4DF8HXw=
Subject key identifier: FB:54:3A:16:51:70:57:9B:0B:77:19:5B:BF:5C:59:79:A9:21:BE:4A
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 39D44B50C8F7EE3B1C05BF478DC58725BAD213DF
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f33322d3332203d3e20313339393732.roa
Signing time: Sat 10 Aug 2024 07:00:00 +0000
ROA not before: Sat 10 Aug 2024 06:55:00 +0000
ROA not after: Sat 09 Aug 2025 07:00:00 +0000
asID: 139972
IP address blocks: 2405:c440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:d4:4b:50:c8:f7:ee:3b:1c:05:bf:47:8d:c5:87:25:ba:d2:13:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Aug 10 06:55:00 2024 GMT
Not After : Aug 9 07:00:00 2025 GMT
Subject: CN=FB543A165170579B0B77195BBF5C5979A921BE4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5c:0f:64:f0:16:17:e8:77:11:96:09:e4:0a:
68:e6:2d:f1:00:19:b2:4a:3f:c8:eb:f2:1f:b1:ef:
8e:1b:c4:ad:00:a2:99:31:7a:e6:1d:6d:2f:be:df:
ae:5b:6f:5c:14:c9:7e:5f:3b:47:1f:01:6b:3e:fc:
f3:fe:fb:33:f2:6d:21:0b:3b:85:a3:ae:7a:ab:da:
bf:70:ab:74:25:69:a2:c0:c4:b2:cd:27:db:24:df:
85:e8:87:80:a9:b0:94:9c:33:6d:0c:6f:fa:e1:58:
00:5a:c7:84:33:5e:b7:f0:29:70:3f:c9:ed:de:a3:
fd:88:14:50:4b:fe:da:46:a0:ab:b3:32:43:a8:6a:
89:ad:f8:97:bc:ce:ab:09:4c:bf:92:4c:ca:f3:cd:
3a:b7:85:16:2e:65:da:fc:a5:95:c9:68:6f:47:a5:
44:ef:9d:4c:b2:59:93:b5:4c:61:81:62:b1:26:38:
9f:dc:ae:6c:ec:38:bd:04:5f:b8:b0:8c:c3:75:c0:
06:e0:01:da:70:1f:16:34:a6:fb:1b:64:3d:cb:4f:
41:bc:e4:06:53:57:93:a5:2f:41:d6:52:e2:bf:43:
16:60:b3:14:b3:0d:0e:26:44:b8:a1:df:60:3b:b0:
8f:a2:02:b3:8f:64:e9:3e:f4:a6:bb:19:e1:c3:0c:
25:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:54:3A:16:51:70:57:9B:0B:77:19:5B:BF:5C:59:79:A9:21:BE:4A
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a3a2f33322d3332203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440::/32
Signature Algorithm: sha256WithRSAEncryption
50:a5:c2:80:6e:8a:c5:48:10:8f:17:e6:fb:00:81:89:a3:76:
54:67:ae:38:1c:a8:fc:a0:b9:84:ce:bf:3d:90:c1:a7:64:16:
8b:24:0f:b0:fe:a1:25:58:e7:10:4e:b8:17:d0:04:1d:5e:29:
d5:61:81:33:b5:77:fd:9e:ff:39:85:0d:1c:98:c5:46:4b:ed:
15:d2:55:21:6f:28:ab:02:e3:c6:3e:75:e3:51:c3:98:48:97:
5d:cd:36:7f:66:2b:fa:23:b4:89:dc:bc:82:99:3b:bb:bc:af:
db:75:78:7f:0c:88:1f:33:e6:c8:a6:b4:b5:ba:4c:3a:58:5e:
05:50:4e:e0:a1:c0:e9:23:c4:46:b4:33:7d:8a:9d:21:ec:9e:
45:03:3c:92:26:6f:33:18:79:b0:ea:69:12:d0:e0:cc:38:d2:
59:31:82:3e:e0:a0:65:dd:58:57:73:9b:a5:91:53:c9:40:51:
a7:6f:60:bb:76:65:bd:e9:26:c8:2f:8a:5a:9d:eb:08:f6:de:
c4:bb:dc:2c:a1:1d:54:89:55:82:b1:8c:66:e2:07:67:57:7e:
4f:cf:6b:63:46:b4:2a:c6:d9:de:3c:28:89:a4:36:c0:f2:42:
ae:b8:21:ee:b2:88:96:80:50:13:d1:02:7a:d8:aa:19:4c:5f:
31:41:a0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:12 2025 by rpki-client