Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa
File: 323430373a366434303a3a2f33322d3438203d3e203538383230.roa (raw, json)
Hash identifier: 36JNQoWoEcG0XddMVhG6Y5xuDi4KHB52Q2RH2cUrQzc=
Subject key identifier: 1E:6D:7E:75:5B:3A:8F:2E:A8:DB:6A:BD:29:EB:E2:24:3F:9E:05:D7
Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96
Certificate serial: 21AA6E3A5569482E5E31016375FDAE289D470F5F
Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa
Signing time: Thu 13 Feb 2025 16:01:10 +0000
ROA not before: Thu 13 Feb 2025 15:56:10 +0000
ROA not after: Thu 12 Feb 2026 16:01:10 +0000
asID: 58820
IP address blocks: 2407:6d40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:aa:6e:3a:55:69:48:2e:5e:31:01:63:75:fd:ae:28:9d:47:0f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96
Validity
Not Before: Feb 13 15:56:10 2025 GMT
Not After : Feb 12 16:01:10 2026 GMT
Subject: CN=1E6D7E755B3A8F2EA8DB6ABD29EBE2243F9E05D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:84:0a:94:e9:d5:45:df:f2:65:3c:ad:c0:
fb:b4:a3:a0:e5:f6:db:a6:b4:8e:58:91:fe:18:9a:
0e:2c:10:af:9e:a4:31:e5:66:5b:c4:e5:e8:23:86:
71:a8:07:eb:ea:4b:b5:e8:c8:d1:cd:7d:03:24:f9:
c0:71:f0:a3:cc:d1:b1:36:a8:80:55:34:2a:35:81:
c1:b7:76:16:d0:39:2d:0c:bd:54:85:19:9b:c3:41:
9a:a1:37:84:dd:ad:e9:e8:6d:b1:3d:07:c6:e2:4b:
74:c9:53:36:d0:94:f8:2e:98:ab:08:a3:6f:87:24:
8e:c7:e7:dd:45:50:1a:ec:b7:67:67:9e:12:b1:12:
80:72:a4:ff:26:52:9c:bb:02:7f:a6:d0:aa:b8:f7:
bd:04:b7:d0:96:ff:df:8e:b4:92:8e:00:e8:49:f4:
59:79:a6:e1:cd:d9:36:99:a1:5f:5d:c7:81:f7:f3:
42:81:d9:f4:ee:f1:8a:a9:06:3d:aa:d3:4d:69:ec:
fb:32:21:26:4d:a3:bd:26:ae:1b:08:fb:f1:72:64:
19:6c:d0:26:96:5b:d7:04:c2:f3:34:1e:14:f0:75:
82:a3:4d:c8:a8:37:3b:72:a2:08:51:7d:bf:4b:88:
18:5c:18:47:35:ad:d1:aa:9c:f0:da:fd:10:0e:2f:
d6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6D:7E:75:5B:3A:8F:2E:A8:DB:6A:BD:29:EB:E2:24:3F:9E:05:D7
X509v3 Authority Key Identifier:
keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:6d40::/32
Signature Algorithm: sha256WithRSAEncryption
5c:b8:78:b9:bd:e9:c8:98:42:c6:db:20:0e:35:e5:15:9c:61:
69:9c:a9:9d:d2:8e:06:55:d7:68:18:23:87:ec:36:2b:57:d3:
ee:07:d0:2b:4d:4a:85:2f:33:23:b3:61:f1:cc:18:0f:ee:11:
48:4c:cb:56:08:9c:84:2e:07:39:72:df:dc:23:50:c9:80:51:
6a:63:f3:e9:30:95:aa:3d:3c:b9:8d:1b:a8:9b:40:07:96:e5:
3f:af:13:94:91:ea:62:85:b9:06:16:26:86:f0:da:82:cb:d4:
02:e9:c3:72:66:1f:0a:c5:0f:82:ea:ee:1b:b0:83:57:3e:d5:
85:9e:d2:cf:fa:cc:de:d9:10:39:4e:f4:b5:92:29:0c:da:cf:
53:20:27:f3:ff:20:a0:1d:23:8a:68:7e:3a:44:c1:16:90:4e:
74:c3:73:5b:e5:88:7b:b7:c3:ff:9a:86:35:14:4b:db:26:f5:
18:55:01:68:84:02:9e:47:d8:63:b6:d4:b4:ec:e8:c8:33:c1:
27:40:53:04:0b:f4:f3:d5:b0:62:61:67:20:85:4a:5d:44:9a:
7f:ec:c4:f6:66:b1:86:b0:07:1d:7c:25:a0:33:98:ec:cd:79:
30:90:04:c7:1e:5e:d1:10:f1:f0:8b:1a:13:29:12:b7:99:ce:
48:04:f8:38
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUIapuOlVpSC5eMQFjdf2uKJ1HD18wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdF
NjkxM0M5NjAeFw0yNTAyMTMxNTU2MTBaFw0yNjAyMTIxNjAxMTBaMDMxMTAvBgNV
BAMTKDFFNkQ3RTc1NUIzQThGMkVBOERCNkFCRDI5RUJFMjI0M0Y5RTA1RDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6w4QKlOnVRd/yZTytwPu0o6Dl
9tumtI5Ykf4Ymg4sEK+epDHlZlvE5egjhnGoB+vqS7XoyNHNfQMk+cBx8KPM0bE2
qIBVNCo1gcG3dhbQOS0MvVSFGZvDQZqhN4TdrenobbE9B8biS3TJUzbQlPgumKsI
o2+HJI7H591FUBrst2dnnhKxEoBypP8mUpy7An+m0Kq4970Et9CW/9+OtJKOAOhJ
9Fl5puHN2TaZoV9dx4H380KB2fTu8YqpBj2q001p7PsyISZNo70mrhsI+/FyZBls
0CaWW9cEwvM0HhTwdYKjTcioNztyoghRfb9LiBhcGEc1rdGqnPDa/RAOL9a/AgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUHm1+dVs6jy6o22q9KeviJD+eBdcwHwYDVR0j
BBgwFoAUAkbdFK9o9eVRKr2I0dt1B+aRPJYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85
ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMC8wMjQ2REQxNEFG
NjhGNUU1NTEyQUJEODhEMURCNzUwN0U2OTEzQzk2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdFNjkx
M0M5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04
ODZhLThlMjJhMzI2MTFmOC8wLzMyMzQzMDM3M2EzNjY0MzQzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB21AMA0GCSqGSIb3
DQEBCwUAA4IBAQBcuHi5venImELG2yAONeUVnGFpnKmd0o4GVddoGCOH7DYrV9Pu
B9ArTUqFLzMjs2HxzBgP7hFITMtWCJyELgc5ct/cI1DJgFFqY/PpMJWqPTy5jRuo
m0AHluU/rxOUkepihbkGFiaG8NqCy9QC6cNyZh8KxQ+C6u4bsINXPtWFntLP+sze
2RA5TvS1kikM2s9TICfz/yCgHSOKaH46RMEWkE50w3Nb5Yh7t8P/moY1FEvbJvUY
VQFohAKeR9hjttS07OjIM8EnQFMEC/Tz1bBiYWcghUpdRJp/7MT2ZrGGsAcdfCWg
M5jszXkwkATHHl7REPHwixoTKRK3mc5IBPg4
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:05:45 2025 by rpki-client