Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa
File: 323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa (raw, json)
Hash identifier: 8mxCgLVTTXr9uMhOXDuMPKDKiJwHLUA2DMdve6SEZ9A=
Subject key identifier: 3F:EF:C8:37:65:B3:78:DA:C1:A1:35:69:6D:84:88:0A:CA:12:C8:F4
Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7
Certificate serial: 429E70AF4F8F79EC55B7C9FF5BB1C1258BDA8BB0
Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa
Signing time: Tue 28 May 2024 02:00:00 +0000
ROA not before: Tue 28 May 2024 01:55:00 +0000
ROA not after: Tue 27 May 2025 02:00:00 +0000
asID: 45296
IP address blocks: 2400:b080:4529::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:9e:70:af:4f:8f:79:ec:55:b7:c9:ff:5b:b1:c1:25:8b:da:8b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7
Validity
Not Before: May 28 01:55:00 2024 GMT
Not After : May 27 02:00:00 2025 GMT
Subject: CN=3FEFC83765B378DAC1A135696D84880ACA12C8F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:56:07:08:6b:21:e3:7f:c0:6e:1e:d2:d4:
f6:55:2a:74:67:e0:b1:ce:0d:06:08:62:ed:fd:7a:
70:ec:19:b0:09:32:7c:1d:bf:5b:f1:05:34:c1:5f:
c9:7b:8c:38:5a:17:dd:1c:f2:3c:a4:07:8d:12:52:
96:44:ce:0f:05:d0:75:a9:cb:c6:f8:fe:f8:52:fe:
5e:a7:df:94:6a:e7:54:62:14:90:fe:16:84:3c:34:
c0:5d:e5:af:8a:87:12:bb:68:32:f7:c8:7d:c5:1f:
24:f9:d9:c1:28:81:d2:de:8c:ec:ae:0b:ba:7e:99:
bf:01:ed:1d:d1:62:d5:e4:b0:27:17:3d:fb:4a:2d:
3d:0d:eb:98:d5:4d:5f:a6:c6:94:b3:81:e5:d8:20:
74:ef:cf:8d:98:fc:a5:4e:7a:a8:b7:65:0c:d5:7a:
62:44:74:9d:fb:b7:91:3f:32:eb:59:09:2c:61:8c:
1a:7b:22:76:79:83:5a:29:13:bf:52:91:7e:3d:ae:
c6:34:65:b5:f2:41:6c:e8:85:41:f9:01:f0:39:bc:
9e:41:16:90:f6:04:26:a6:aa:8e:e7:8c:72:d3:57:
85:4e:a4:d5:d2:58:4e:ac:9b:17:1f:f9:b2:a7:24:
1f:6d:ed:8f:83:2a:ae:e4:e2:3c:34:3e:fa:e8:3a:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EF:C8:37:65:B3:78:DA:C1:A1:35:69:6D:84:88:0A:CA:12:C8:F4
X509v3 Authority Key Identifier:
keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:b080:4529::/48
Signature Algorithm: sha256WithRSAEncryption
b3:fa:45:22:79:6c:2d:73:4b:aa:d9:1d:1d:8a:3a:28:59:c1:
b1:0a:f6:6d:ff:ca:df:73:44:68:78:d9:45:a7:38:f0:30:50:
13:f1:12:bf:f3:a1:9f:97:cb:a0:00:72:6e:40:76:e9:6f:5d:
b7:84:34:01:2f:f5:91:50:85:e6:39:9c:6c:e8:34:31:68:fc:
f9:c7:7c:4f:63:c4:ab:65:9b:63:68:52:3f:c6:ea:ee:11:c6:
9d:88:ca:03:7e:50:d0:4e:1f:d9:9a:c8:77:58:95:63:f1:e7:
d3:63:7b:51:6d:e3:56:f6:a3:d4:38:c0:c2:7a:f5:3d:c8:81:
f4:ac:20:34:c6:37:eb:49:69:cf:56:95:17:32:f5:bc:c7:a5:
aa:38:28:c3:de:3e:a0:e4:b7:f6:b0:cd:c6:ed:20:77:97:88:
f6:39:a3:d9:99:59:d5:f3:3a:86:d8:ed:22:7b:a2:25:36:1d:
43:79:da:e0:16:31:a6:3b:0d:f5:46:3e:13:18:07:c5:6e:48:
d6:9c:2a:f3:f3:c1:00:7b:bb:e7:f4:3b:82:7d:8e:9c:e9:70:
ba:33:8b:7d:f6:03:be:44:21:43:9a:e1:48:1d:81:b4:33:a2:
a8:28:eb:c2:05:c2:cf:aa:24:78:cc:c4:03:85:55:6c:32:dc:
04:30:d7:51
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUQp5wr0+PeexVt8n/W7HBJYvai7AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB
NTlGOTlENzAeFw0yNDA1MjgwMTU1MDBaFw0yNTA1MjcwMjAwMDBaMDMxMTAvBgNV
BAMTKDNGRUZDODM3NjVCMzc4REFDMUExMzU2OTZEODQ4ODBBQ0ExMkM4RjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQFYHCGsh43/Abh7S1PZVKnRn
4LHODQYIYu39enDsGbAJMnwdv1vxBTTBX8l7jDhaF90c8jykB40SUpZEzg8F0HWp
y8b4/vhS/l6n35Rq51RiFJD+FoQ8NMBd5a+KhxK7aDL3yH3FHyT52cEogdLejOyu
C7p+mb8B7R3RYtXksCcXPftKLT0N65jVTV+mxpSzgeXYIHTvz42Y/KVOeqi3ZQzV
emJEdJ37t5E/MutZCSxhjBp7InZ5g1opE79SkX49rsY0ZbXyQWzohUH5AfA5vJ5B
FpD2BCamqo7njHLTV4VOpNXSWE6smxcf+bKnJB9t7Y+DKq7k4jw0PvroOtqbAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUP+/IN2WzeNrBoTVpbYSICsoSyPQwHwYDVR0j
BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE
NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG
OTlENy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04
OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhMzQzNTMyMzkz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM1MzIzOTM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACw
gEUpMA0GCSqGSIb3DQEBCwUAA4IBAQCz+kUieWwtc0uq2R0dijooWcGxCvZt/8rf
c0RoeNlFpzjwMFAT8RK/86Gfl8ugAHJuQHbpb123hDQBL/WRUIXmOZxs6DQxaPz5
x3xPY8SrZZtjaFI/xuruEcadiMoDflDQTh/Zmsh3WJVj8efTY3tRbeNW9qPUOMDC
evU9yIH0rCA0xjfrSWnPVpUXMvW8x6WqOCjD3j6g5Lf2sM3G7SB3l4j2OaPZmVnV
8zqG2O0ie6IlNh1DedrgFjGmOw31Rj4TGAfFbkjWnCrz88EAe7vn9DuCfY6c6XC6
M4t99gO+RCFDmuFIHYG0M6KoKOvCBcLPqiR4zMQDhVVsMtwEMNdR
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:35 2025 by rpki-client