Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa
File: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (raw, json)
Hash identifier: qdWdsvIUCg9flRqMStTQ4oe1N2TKrSaY2SzVkpN3z2c=
Subject key identifier: D5:54:8D:A3:CE:F1:31:52:10:ED:0F:4F:3E:A3:98:65:B2:B0:93:7D
Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9
Certificate serial: 0AB9A6C2CE7FF2E73A33DC58017EE6152C0F82B1
Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa
Signing time: Mon 01 Jul 2024 01:05:06 +0000
ROA not before: Mon 01 Jul 2024 01:00:06 +0000
ROA not after: Mon 30 Jun 2025 01:05:06 +0000
asID: 17538
IP address blocks: 2001:df3:b880::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:b9:a6:c2:ce:7f:f2:e7:3a:33:dc:58:01:7e:e6:15:2c:0f:82:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9
Validity
Not Before: Jul 1 01:00:06 2024 GMT
Not After : Jun 30 01:05:06 2025 GMT
Subject: CN=D5548DA3CEF1315210ED0F4F3EA39865B2B0937D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:c0:40:53:28:42:80:f4:28:fa:8f:01:1d:
fc:12:64:a8:6b:9f:05:6c:4b:12:52:5b:2e:32:8a:
14:21:5d:69:e0:54:30:9d:05:cb:49:25:2f:81:1d:
85:02:f2:49:18:af:af:b5:e2:ce:ea:62:26:48:e0:
73:b8:54:0e:05:c4:3a:c9:b6:e1:10:65:97:9b:f1:
70:86:18:2a:c2:5d:d2:1c:47:63:92:ee:98:f3:e8:
a3:d9:2d:7e:a2:37:71:e3:13:4d:84:4c:48:4f:e5:
ad:9f:e6:9b:62:52:00:fc:ab:52:26:81:fc:38:ea:
2b:bb:9c:35:d6:3d:fc:a4:ab:ee:91:c9:6c:73:e3:
9f:a0:ff:2a:7c:31:79:01:bb:12:eb:ac:3d:f1:5d:
e1:22:8c:56:5d:50:9f:51:2d:cf:2d:46:b4:a1:35:
30:ab:88:75:9f:79:43:12:34:64:dc:18:ca:9b:71:
48:4d:39:48:4b:8a:17:f0:b6:7d:d0:c0:11:00:4b:
0b:61:1c:8b:51:a7:8c:41:2d:bc:6b:d2:e7:cd:79:
10:98:f7:86:78:c9:73:37:46:79:74:e7:30:32:41:
94:37:9c:f4:1a:44:40:43:58:04:45:1e:6b:1a:3e:
90:9e:03:27:66:1b:a5:56:86:3d:5c:5b:62:01:fc:
d0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:54:8D:A3:CE:F1:31:52:10:ED:0F:4F:3E:A3:98:65:B2:B0:93:7D
X509v3 Authority Key Identifier:
keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:b880::/48
Signature Algorithm: sha256WithRSAEncryption
8b:15:8b:ca:8b:e8:c0:c8:49:07:f3:55:bc:87:95:cd:3e:6a:
12:d2:9c:80:ac:17:08:65:e4:84:c3:13:92:c8:a4:49:4e:87:
63:aa:d6:01:47:b9:c9:f7:78:60:42:d3:dc:37:03:a5:aa:e6:
06:46:ad:b4:2c:14:e8:aa:f9:f2:e7:64:cf:07:d2:8a:a6:ea:
57:a7:56:4f:02:e8:20:00:af:c5:a2:3f:af:8e:d5:b3:c9:65:
54:3f:b0:83:42:a1:e9:a3:2a:60:65:d4:a3:5d:b4:f4:07:3c:
92:0a:1d:a6:a7:0b:db:9e:38:89:62:ba:f9:a9:18:9a:a5:6f:
9f:fa:28:25:ce:8a:1b:2c:ad:14:8a:af:26:1a:d2:51:c0:9e:
e8:ce:5f:7d:9d:ce:eb:4d:6f:b3:5c:a7:f8:1b:0d:9a:79:82:
ef:90:92:98:65:11:1c:26:98:3d:43:ae:35:e1:9d:bf:18:4c:
03:0c:fd:d7:c4:04:82:84:68:d4:20:7b:33:17:f0:1f:77:69:
28:80:9d:32:95:a4:c8:29:b5:ac:fe:40:d0:bd:ff:ff:8c:90:
dc:d0:2b:39:b0:bf:77:96:3f:5a:15:73:06:58:16:5a:a5:10:
25:e4:ca:17:47:18:54:84:9c:4d:83:9a:2a:68:ba:fd:cd:d8:
f3:6c:13:04
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUCrmmws5/8uc6M9xYAX7mFSwPgrEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz
OTRCQThFOTAeFw0yNDA3MDEwMTAwMDZaFw0yNTA2MzAwMTA1MDZaMDMxMTAvBgNV
BAMTKEQ1NTQ4REEzQ0VGMTMxNTIxMEVEMEY0RjNFQTM5ODY1QjJCMDkzN0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVj8BAUyhCgPQo+o8BHfwSZKhr
nwVsSxJSWy4yihQhXWngVDCdBctJJS+BHYUC8kkYr6+14s7qYiZI4HO4VA4FxDrJ
tuEQZZeb8XCGGCrCXdIcR2OS7pjz6KPZLX6iN3HjE02ETEhP5a2f5ptiUgD8q1Im
gfw46iu7nDXWPfykq+6RyWxz45+g/yp8MXkBuxLrrD3xXeEijFZdUJ9RLc8tRrSh
NTCriHWfeUMSNGTcGMqbcUhNOUhLihfwtn3QwBEASwthHItRp4xBLbxr0ufNeRCY
94Z4yXM3Rnl05zAyQZQ3nPQaREBDWARFHmsaPpCeAydmG6VWhj1cW2IB/NAPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU1VSNo87xMVIQ7Q9PPqOYZbKwk30wHwYDVR0j
BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx
MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC
QThFOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04
ZmFjLTE4NThiMjgyM2QxYy8wLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzgzODMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfO4
gDANBgkqhkiG9w0BAQsFAAOCAQEAixWLyovowMhJB/NVvIeVzT5qEtKcgKwXCGXk
hMMTksikSU6HY6rWAUe5yfd4YELT3DcDparmBkattCwU6Kr58udkzwfSiqbqV6dW
TwLoIACvxaI/r47Vs8llVD+wg0Kh6aMqYGXUo1209Ac8kgodpqcL2544iWK6+akY
mqVvn/ooJc6KGyytFIqvJhrSUcCe6M5ffZ3O601vs1yn+BsNmnmC75CSmGURHCaY
PUOuNeGdvxhMAwz918QEgoRo1CB7MxfwH3dpKICdMpWkyCm1rP5A0L3//4yQ3NAr
ObC/d5Y/WhVzBlgWWqUQJeTKF0cYVIScTYOaKmi6/c3Y82wTBA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:21:20 2025 by rpki-client