Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa
File: 323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa (raw, json)
Hash identifier: 7I1Bs101/iTn1fXI/3h4GvzMfanTKUOjRc8cRguPLfg=
Subject key identifier: F5:64:72:12:BE:C0:F8:C7:39:E2:12:32:B8:E1:1A:5B:E8:43:3D:E2
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 404F70335714D5A52327CC2894911FE6D7F9622D
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa
Signing time: Sat 25 Jan 2025 23:00:00 +0000
ROA not before: Sat 25 Jan 2025 22:55:00 +0000
ROA not after: Sat 24 Jan 2026 23:00:00 +0000
asID: 139972
IP address blocks: 2405:c440:e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:4f:70:33:57:14:d5:a5:23:27:cc:28:94:91:1f:e6:d7:f9:62:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Jan 25 22:55:00 2025 GMT
Not After : Jan 24 23:00:00 2026 GMT
Subject: CN=F5647212BEC0F8C739E21232B8E11A5BE8433DE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c0:4c:e3:b3:8b:2c:3b:f0:fb:98:9e:dc:52:
3c:e3:f4:72:33:67:bf:71:ac:a4:87:76:95:5f:56:
ee:64:32:01:7f:64:a3:e4:f8:a8:fd:a7:c9:3b:29:
3e:5f:4c:7a:95:71:a1:91:34:b9:30:1d:0b:2e:54:
93:8a:53:1d:f5:d1:3c:19:5f:7f:30:d6:6a:42:f4:
a5:aa:e4:90:12:e2:b3:da:54:4c:0a:fe:0d:f6:0e:
ec:f4:0f:52:f8:b7:7a:7d:60:f6:e1:21:4e:c0:86:
2f:d4:30:a6:be:d1:42:ea:65:e4:59:fa:1a:b7:bd:
4d:fa:7f:ac:47:8a:d5:bc:d6:3a:2d:1c:dc:d7:45:
c3:23:41:d0:65:d9:37:bd:9f:78:97:47:fe:2a:26:
66:7f:11:5c:b2:f0:97:33:72:0f:e6:e0:b6:81:97:
48:7d:02:a4:dc:62:fc:ab:bc:b5:bd:43:1d:c4:d7:
90:a9:90:3f:42:4b:b8:8f:31:aa:a5:fb:1c:a8:d0:
4c:ad:8e:5d:0a:a7:b8:15:00:44:bb:2f:67:ea:07:
16:3c:d5:24:20:91:dc:9a:da:51:d1:95:8c:10:dc:
4f:36:fe:66:c9:2d:ac:ff:6c:d0:7e:90:f5:97:bd:
95:85:21:f5:90:a3:b1:db:91:25:1d:84:37:96:f8:
16:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:64:72:12:BE:C0:F8:C7:39:E2:12:32:B8:E1:1A:5B:E8:43:3D:E2
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c440:e::/48
Signature Algorithm: sha256WithRSAEncryption
55:15:da:c0:73:f8:77:f6:f0:b8:db:ae:9a:60:51:67:e6:5e:
ad:bd:a9:d7:bb:34:bf:34:de:72:8f:83:5e:e7:5e:50:a7:6f:
03:a1:20:4b:3b:61:72:f6:76:6b:3d:46:9c:57:aa:1e:71:d0:
79:54:28:e9:9a:01:6d:19:61:b8:70:20:3e:1e:90:bb:ad:6f:
fb:fb:7d:ec:8c:66:64:ab:e4:49:32:21:b5:d2:9f:0b:a1:2d:
27:1f:24:df:9e:af:75:3c:6e:ef:6f:ed:f3:02:0a:41:92:d1:
dc:63:bb:a3:e2:8b:ed:70:0b:c3:ce:84:16:cf:3a:19:26:d9:
7b:4e:94:14:0a:69:d6:14:cb:4f:1e:e0:9e:e8:df:b1:8e:5a:
51:b5:9e:7c:aa:22:c8:29:7c:62:8f:97:fc:be:ed:e1:aa:0d:
52:2e:1b:b7:13:7c:e4:f7:17:f5:4e:a4:b2:b0:7e:84:28:94:
de:8b:63:0b:5f:2d:e6:bc:36:6f:7b:93:03:d5:0a:43:4b:62:
93:f8:5f:08:c2:91:c6:f5:dd:17:58:91:96:9e:03:95:88:d8:
f8:81:c0:6f:01:48:6d:06:af:2a:d4:cb:e5:4e:b0:1b:9f:d5:
73:94:9b:89:70:42:77:58:c5:f3:92:4a:80:69:5c:b1:ff:c4:
b0:bd:8f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:43 2025 by rpki-client