Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa
File: 323430343a636263303a3a2f33322d3332203d3e20313338383433.roa (raw, json)
Hash identifier: CUX/FZUFqFLVmfqcGn4Uxf38ndBFpWWkwqBCc1O0Nwg=
Subject key identifier: 0D:93:91:ED:43:33:E4:0A:75:D2:5C:7F:F1:68:E7:DD:29:06:0F:1C
Certificate issuer: /CN=E0D54A271CD04583E0304613C7075C15FA03E497
Certificate serial: 2AD5F3782770CCEC76B5716908EB4C55274D2B85
Authority key identifier: E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa
Signing time: Wed 29 Jan 2025 12:00:02 +0000
ROA not before: Wed 29 Jan 2025 11:55:02 +0000
ROA not after: Wed 28 Jan 2026 12:00:02 +0000
asID: 138843
IP address blocks: 2404:cbc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:d5:f3:78:27:70:cc:ec:76:b5:71:69:08:eb:4c:55:27:4d:2b:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0D54A271CD04583E0304613C7075C15FA03E497
Validity
Not Before: Jan 29 11:55:02 2025 GMT
Not After : Jan 28 12:00:02 2026 GMT
Subject: CN=0D9391ED4333E40A75D25C7FF168E7DD29060F1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:50:ae:27:f6:e0:f8:36:26:ff:57:a5:93:62:
10:9f:d7:c5:5f:b3:23:f3:8c:9a:f9:09:f1:8f:e7:
7f:b7:b3:f3:14:12:bc:f7:39:c9:e3:ee:b6:05:1f:
3d:09:92:06:0f:89:f1:2c:e7:51:08:5f:de:de:b8:
48:6a:94:13:84:2c:fa:52:d0:74:21:02:83:81:19:
85:45:e0:d1:c5:58:90:6f:de:2b:24:76:71:5c:2c:
98:82:68:25:e0:94:e6:32:6a:72:c8:95:ab:ab:64:
0e:97:82:a2:58:d2:70:0f:cf:25:33:59:5d:64:4b:
e2:65:10:c3:a2:15:40:95:9f:bb:a6:96:ea:9c:97:
1a:96:d3:da:58:2d:7f:ee:73:83:5a:1d:ab:7b:58:
57:c2:c4:2e:7d:df:97:0b:10:a2:04:eb:00:b3:6d:
dd:9c:78:f5:17:a1:ff:28:53:c0:99:52:43:e4:3f:
aa:90:8c:9c:5e:d8:51:67:ff:19:9a:6d:49:e9:a1:
30:4f:65:50:62:0a:11:ee:30:eb:b5:05:65:3a:d1:
d4:ab:af:20:41:bd:71:24:df:ab:4d:4d:82:f7:8e:
15:a8:6f:2a:0e:eb:bb:7f:68:c2:04:ca:df:62:cc:
aa:20:17:64:f9:92:24:92:37:72:42:06:0f:97:0e:
6d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:93:91:ED:43:33:E4:0A:75:D2:5C:7F:F1:68:E7:DD:29:06:0F:1C
X509v3 Authority Key Identifier:
keyid:E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cbc0::/32
Signature Algorithm: sha256WithRSAEncryption
7f:fa:6d:8f:0b:ca:35:13:bc:8a:90:16:c9:cc:0b:33:29:7f:
69:ea:b2:33:73:0c:30:0c:02:cc:71:e7:67:75:8c:23:af:a9:
fe:ae:24:1b:86:a8:62:be:cf:81:7f:29:a1:2a:7e:c5:25:18:
61:16:5f:a7:da:98:80:f1:61:15:f3:66:ed:81:ca:e2:8a:c3:
f0:e8:6b:35:c9:a1:5a:e2:d7:05:5e:8a:66:b4:91:ef:76:36:
5d:fd:b9:6c:26:a7:f2:cf:f1:fa:da:af:bb:a8:47:a3:ab:7e:
07:94:67:6e:5a:c0:8e:d4:12:b9:2b:93:e1:37:f4:89:d7:b0:
a9:14:13:36:3a:18:dc:76:50:c5:02:fd:d0:e3:a8:a5:d8:8a:
f1:40:6d:5c:b9:e3:91:1f:68:6b:2b:eb:c0:37:3a:39:02:12:
79:95:89:9e:c1:f7:35:f3:78:bc:14:20:3e:dd:5a:a0:2d:29:
1a:a3:da:c3:d9:6c:53:0f:97:d7:4e:d3:d5:d6:b6:d0:f1:6b:
c9:84:8a:a5:da:01:fa:3b:87:c8:45:b3:73:7d:08:9f:09:78:
3e:23:44:2b:5e:42:bd:be:93:8a:7c:56:6d:e8:9c:a5:5e:02:
60:5a:0a:c6:0e:da:f8:5c:7a:ba:a0:b8:d2:c8:52:3b:8d:d2:
f9:73:eb:cd
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIUKtXzeCdwzOx2tXFpCOtMVSdNK4UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVG
QTAzRTQ5NzAeFw0yNTAxMjkxMTU1MDJaFw0yNjAxMjgxMjAwMDJaMDMxMTAvBgNV
BAMTKDBEOTM5MUVENDMzM0U0MEE3NUQyNUM3RkYxNjhFN0REMjkwNjBGMUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUK4n9uD4Nib/V6WTYhCf18Vf
syPzjJr5CfGP53+3s/MUErz3Ocnj7rYFHz0JkgYPifEs51EIX97euEhqlBOELPpS
0HQhAoOBGYVF4NHFWJBv3iskdnFcLJiCaCXglOYyanLIlaurZA6XgqJY0nAPzyUz
WV1kS+JlEMOiFUCVn7umluqclxqW09pYLX/uc4NaHat7WFfCxC5935cLEKIE6wCz
bd2cePUXof8oU8CZUkPkP6qQjJxe2FFn/xmabUnpoTBPZVBiChHuMOu1BWU60dSr
ryBBvXEk36tNTYL3jhWobyoO67t/aMIEyt9izKogF2T5kiSSN3JCBg+XDm2jAgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQUDZOR7UMz5Ap10lx/8Wjn3SkGDxwwHwYDVR0j
BBgwFoAU4NVKJxzQRYPgMEYTxwdcFfoD5JcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
YzU4NjdkOC0zZDZmLTQ4MTYtYjg0Zi1mZGQ1YzUwMmI2MzQvMC9FMEQ1NEEyNzFD
RDA0NTgzRTAzMDQ2MTNDNzA3NUMxNUZBMDNFNDk3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVGQTAz
RTQ5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNTg2N2Q4LTNkNmYtNDgxNi1i
ODRmLWZkZDVjNTAyYjYzNC8wLzMyMzQzMDM0M2E2MzYyNjMzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEy8AwDQYJKoZI
hvcNAQELBQADggEBAH/6bY8LyjUTvIqQFsnMCzMpf2nqsjNzDDAMAsxx52d1jCOv
qf6uJBuGqGK+z4F/KaEqfsUlGGEWX6famIDxYRXzZu2ByuKKw/DoazXJoVri1wVe
ima0ke92Nl39uWwmp/LP8frar7uoR6OrfgeUZ25awI7UErkrk+E39InXsKkUEzY6
GNx2UMUC/dDjqKXYivFAbVy545EfaGsr68A3OjkCEnmViZ7B9zXzeLwUID7dWqAt
KRqj2sPZbFMPl9dO09XWttDxa8mEiqXaAfo7h8hFs3N9CJ8JeD4jRCteQr2+k4p8
Vm3onKVeAmBaCsYO2vhcerqguNLIUjuN0vlz680=
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:36:46 2025 by rpki-client