Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa
File: 323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa (raw, json)
Hash identifier: zQbQBWWEi5D5FTstthFEurL4sFplPWdltQCq5iDGgW0=
Subject key identifier: 7F:C9:50:AB:B3:6E:07:0A:75:5D:4D:F4:E2:1C:06:67:46:89:D2:CD
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 21C7E1CE5E07A6D2071BF00A7076A97B868C5560
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa
Signing time: Fri 19 Jul 2024 16:00:00 +0000
ROA not before: Fri 19 Jul 2024 15:55:00 +0000
ROA not after: Fri 18 Jul 2025 16:00:00 +0000
asID: 24206
IP address blocks: 2402:ab00:cafe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:c7:e1:ce:5e:07:a6:d2:07:1b:f0:0a:70:76:a9:7b:86:8c:55:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Jul 19 15:55:00 2024 GMT
Not After : Jul 18 16:00:00 2025 GMT
Subject: CN=7FC950ABB36E070A755D4DF4E21C06674689D2CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:22:c4:2a:64:31:5e:dd:d5:fc:a5:97:e3:
7c:f5:c8:c1:16:75:23:64:03:fc:26:55:76:b3:40:
6b:34:23:a7:ce:3b:c1:40:b1:d7:5c:7a:d7:9a:56:
5c:28:3d:e7:90:02:e6:28:dc:50:ab:c5:c9:49:f2:
2f:88:d0:56:31:9a:3e:a8:62:df:85:34:db:ed:18:
ed:c4:c9:f4:f3:c6:97:99:9a:2e:36:ac:f0:48:ce:
41:5d:56:7d:be:5d:fe:ff:51:ac:96:46:22:38:07:
b9:65:d3:ed:6d:e0:af:f8:6f:df:90:33:18:d1:c4:
37:43:a7:f0:13:4c:9e:37:65:62:62:bc:67:97:e5:
b7:73:fb:5a:f1:d8:c2:13:44:55:48:6d:d7:46:20:
d5:d6:b0:a7:36:a6:e8:f5:79:d3:1d:cc:7a:9d:0c:
6b:39:9b:9d:0b:cf:98:90:36:55:88:49:4f:11:d6:
4f:28:be:73:62:7a:31:58:ed:48:ee:22:e8:a4:21:
ae:ad:4b:85:fd:ab:43:75:fd:a7:ab:5d:c8:06:05:
f8:bc:a2:92:9f:15:33:15:d7:95:82:c4:3e:e6:7d:
ed:6b:d1:a4:8b:66:9c:4c:d3:63:fd:da:67:ec:55:
1b:ae:b8:7c:fa:c6:4d:68:06:b3:6a:58:c5:f6:bd:
1b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C9:50:AB:B3:6E:07:0A:75:5D:4D:F4:E2:1C:06:67:46:89:D2:CD
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:ab00:cafe::/48
Signature Algorithm: sha256WithRSAEncryption
14:44:38:8b:82:dc:78:84:14:14:84:99:29:aa:6c:4e:50:b8:
06:83:23:37:d5:23:fe:db:ff:c0:d9:4b:24:bd:f2:2e:c1:f1:
bc:39:7f:89:b5:55:50:ac:0b:eb:51:df:17:87:2a:99:7e:0d:
e5:ab:4b:42:1a:f5:61:0f:6a:58:53:37:0a:0f:49:db:8b:3b:
e3:d2:bd:7c:c6:c6:f5:96:b2:0a:25:df:9a:b6:52:31:ec:bd:
68:af:fe:c4:d6:ee:ad:80:79:6e:05:34:37:d8:18:b5:ce:86:
af:95:8c:6a:50:08:d2:ea:f4:b7:8e:82:92:12:28:91:60:29:
0f:f4:1a:5f:7d:3a:ef:05:de:9d:ef:9d:8f:d3:f7:cf:52:d7:
27:b6:80:6e:27:18:69:8c:cc:b8:6b:b1:0c:49:da:c1:17:77:
1c:e7:de:f7:0b:7b:94:36:e2:9c:f0:b8:73:58:08:7d:9c:e0:
f5:a2:93:c5:fa:0e:39:98:dc:ec:4f:70:a4:10:34:25:4a:af:
f5:f8:30:67:09:54:02:46:5c:9e:7f:cb:12:64:c2:d9:f6:3f:
a1:b1:18:42:a4:57:dd:29:32:77:6a:07:e4:7e:24:0b:1b:1e:
56:5a:59:8e:90:55:ef:b4:8f:0e:ea:1d:79:d6:bd:02:5f:df:
aa:8d:fc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:31 2025 by rpki-client