Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa
File: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (raw, json)
Hash identifier: Smb7HmzUf0UyLsjEJtoRvm3jALFW5SuffGaYfUAtD2s=
Subject key identifier: 66:32:E4:49:1A:00:14:7A:8C:6D:E5:29:ED:C1:39:F4:B3:DD:95:49
Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Certificate serial: 363358E059EAA2DCC6595BA5ADAB4DAA7F4E71EA
Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa
Signing time: Sun 18 Aug 2024 07:00:01 +0000
ROA not before: Sun 18 Aug 2024 06:55:01 +0000
ROA not after: Sun 17 Aug 2025 07:00:01 +0000
asID: 136119
IP address blocks: 2401:48c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:33:58:e0:59:ea:a2:dc:c6:59:5b:a5:ad:ab:4d:aa:7f:4e:71:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B
Validity
Not Before: Aug 18 06:55:01 2024 GMT
Not After : Aug 17 07:00:01 2025 GMT
Subject: CN=6632E4491A00147A8C6DE529EDC139F4B3DD9549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0b:a1:cd:a5:e7:cd:5c:8d:b2:df:82:70:f9:
15:a1:1d:21:c7:ab:d9:3d:9c:6f:38:70:8c:4b:ed:
3a:f8:c3:f8:c3:3b:b7:a2:fa:95:80:25:69:17:75:
6f:83:9f:8e:42:53:9a:29:d7:80:99:ad:12:64:c7:
5c:20:6f:e7:dc:5e:f9:59:97:88:50:98:95:e9:07:
6c:bc:be:0e:1d:b3:a6:84:8f:f5:8b:24:10:e3:13:
de:3e:e7:bf:86:7a:9c:1a:36:29:f6:a9:a6:70:3c:
8a:34:68:19:2e:6c:90:2d:81:98:d4:ad:89:d6:b5:
34:1f:f2:1e:26:a0:e2:ea:39:80:9b:fe:7c:4b:d6:
9e:cd:84:88:e1:3c:b7:bf:b9:20:0a:c3:96:39:37:
8f:8f:9d:c4:36:23:76:3f:78:64:68:f9:da:1f:6a:
6c:10:50:29:5a:51:99:3d:42:37:9f:5a:6b:7c:b0:
83:3e:83:e9:b3:7a:2b:50:d4:4b:3a:27:bc:91:a7:
f7:a5:4f:3c:0a:68:37:8b:f6:4a:1e:52:e7:b6:11:
80:33:d8:79:89:c2:10:ea:cb:86:16:2a:e6:8a:90:
9c:cc:3c:72:b7:cd:93:6b:ab:cb:0c:4c:f2:75:ef:
80:6d:ab:31:19:cb:b1:b4:00:7b:8c:ea:03:bb:08:
dd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:32:E4:49:1A:00:14:7A:8C:6D:E5:29:ED:C1:39:F4:B3:DD:95:49
X509v3 Authority Key Identifier:
keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
51:f3:f1:9e:bc:41:ff:92:1f:86:4e:7d:cd:65:a7:12:50:21:
6a:2b:47:5e:63:c3:51:70:96:07:67:db:07:69:23:18:ae:90:
a3:86:b9:d9:23:0c:6f:c1:4a:eb:9b:8f:3e:78:06:63:3f:e6:
f9:4d:04:ef:5d:7b:b0:41:72:87:97:8a:eb:a2:9a:45:55:73:
8f:50:c7:f5:1d:2a:d0:cb:03:5b:c9:b2:ac:ab:85:58:8c:ba:
d5:09:65:66:87:5b:27:64:a6:a6:72:40:5c:17:ec:32:65:72:
9b:d1:39:01:43:b2:16:0e:3c:80:01:aa:0c:55:87:37:db:e9:
51:72:3d:7a:a4:30:13:be:7e:84:72:02:7f:20:42:b7:db:23:
84:64:e6:ef:13:d1:49:0c:8a:c9:b4:ef:a9:1f:b4:a7:d1:20:
b5:37:c5:3f:98:b3:25:92:8c:d4:18:21:76:b5:2b:4a:97:a3:
cc:1e:d3:2f:3c:aa:8c:b4:7f:a7:34:21:a7:64:8d:ab:00:e2:
dc:87:06:57:1b:d1:b4:79:f6:19:9d:62:49:26:cf:09:a4:9a:
ca:67:e0:b4:47:e5:66:03:da:19:e2:14:77:1f:cf:bc:82:38:
39:8c:97:01:63:96:a4:1b:3d:25:1e:ff:b1:33:ea:8d:e4:48:
f7:96:95:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:44:33 2025 by rpki-client