Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa
File: 323430373a366434303a3a2f33322d3332203d3e203538383230.roa (raw, json)
Hash identifier: xAh6iVTptzdWaiN0lzQItEzdBxkBB7Jmc75/4/WIUXc=
Subject key identifier: 5C:E3:09:FE:33:DC:A4:0E:7A:20:02:7D:C2:4B:9D:41:5C:6C:0A:5E
Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96
Certificate serial: 205E19219AE4BF9DC07A3E80FB2C18D65046604A
Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa
Signing time: Thu 13 Feb 2025 16:01:09 +0000
ROA not before: Thu 13 Feb 2025 15:56:09 +0000
ROA not after: Thu 12 Feb 2026 16:01:09 +0000
asID: 58820
IP address blocks: 2407:6d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5e:19:21:9a:e4:bf:9d:c0:7a:3e:80:fb:2c:18:d6:50:46:60:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96
Validity
Not Before: Feb 13 15:56:09 2025 GMT
Not After : Feb 12 16:01:09 2026 GMT
Subject: CN=5CE309FE33DCA40E7A20027DC24B9D415C6C0A5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:51:99:a8:93:87:dd:43:6f:ca:81:ef:93:
c9:50:07:e2:51:44:1f:e4:28:af:cc:1e:32:3a:3a:
75:78:da:68:f8:1a:2f:cb:a0:53:5a:f7:cb:da:2e:
66:6c:e5:8b:3e:68:a4:1b:27:f5:a7:84:ef:da:64:
2c:04:93:e0:9d:00:b5:fe:f5:4f:9b:cc:a3:0b:c8:
c4:34:7b:65:14:fb:d0:90:47:be:bb:f9:2b:b1:75:
87:25:c6:bb:c4:e5:a8:31:1d:f8:23:c4:ae:22:a1:
b5:82:ed:1e:1b:5c:fc:b7:ce:16:eb:ff:69:95:a1:
c9:0c:95:00:1f:66:9e:ab:34:b7:5c:1b:9e:64:ec:
7c:2c:26:ad:fc:ce:f3:d2:ee:d4:9d:ae:86:35:d3:
bc:a5:65:52:f7:8a:0d:5d:9b:5d:4d:d6:fc:55:d8:
e0:43:13:2d:f5:78:a5:e9:15:bf:e1:65:2f:cb:62:
7f:b6:be:ed:ae:51:c6:f2:5b:7f:f7:41:48:ed:8b:
33:42:6a:76:a8:d9:38:26:02:f3:96:2d:4c:66:7c:
7b:13:50:da:4c:aa:63:0b:81:dc:9b:90:96:93:ea:
76:74:18:8b:fe:a9:98:45:a0:21:7f:84:03:cc:e8:
51:24:23:69:6e:36:9b:76:58:c1:df:d9:1a:17:c0:
16:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E3:09:FE:33:DC:A4:0E:7A:20:02:7D:C2:4B:9D:41:5C:6C:0A:5E
X509v3 Authority Key Identifier:
keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:6d40::/32
Signature Algorithm: sha256WithRSAEncryption
a2:41:dc:82:dd:fc:57:f8:c5:eb:bb:92:10:c0:a1:aa:35:9e:
40:08:7b:62:9d:9d:6e:b6:25:37:da:30:28:f6:98:87:06:39:
fa:78:8a:d4:91:74:32:5f:d7:ac:53:ea:9c:b5:a2:0b:57:16:
bb:ba:4c:73:3c:52:cd:3d:86:52:c1:7c:6b:91:bd:de:a0:bd:
64:27:ef:15:cd:c8:c7:63:a0:46:5a:57:03:99:99:be:2f:93:
32:fd:fd:5d:de:0b:99:72:3f:40:24:29:d1:82:85:39:88:3c:
c3:c1:74:b3:07:20:20:ed:68:45:65:ff:da:8f:20:4c:3a:da:
0d:40:d9:37:84:69:36:44:5a:6d:68:c9:34:7e:38:9e:a7:eb:
96:d2:06:de:a2:ba:94:11:be:3d:e6:2b:b7:bd:40:ec:06:8e:
f0:52:82:87:ed:fb:6a:5b:6f:f9:28:2a:0f:98:97:8a:4c:80:
cd:2b:2d:8b:7e:6d:af:34:d6:4d:62:28:98:10:21:0c:a5:ad:
b7:2f:59:9b:b4:df:5a:ef:b1:c8:35:f5:2d:27:04:00:19:f1:
37:85:70:5d:96:fb:8b:68:68:53:a3:01:07:b9:64:79:5b:20:
5b:12:5d:87:b0:ae:29:7f:21:2b:11:a5:84:1a:61:5a:13:b1:
50:bc:27:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:18:26 2025 by rpki-client