Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa
File: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (raw, json)
Hash identifier: FKopsjmhu2ZpwkHZKTS2a2cSATg1lZ109SObjsmNTcI=
Subject key identifier: 42:BF:E9:0F:7F:B1:21:7C:0C:90:69:2F:9B:21:90:37:D0:A6:F2:82
Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7
Certificate serial: 74D9F10E28F353671466A65DE3EE294EB980365E
Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa
Signing time: Wed 27 Nov 2024 11:00:01 +0000
ROA not before: Wed 27 Nov 2024 10:55:01 +0000
ROA not after: Wed 26 Nov 2025 11:00:01 +0000
asID: 38784
IP address blocks: 2401:8240::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:d9:f1:0e:28:f3:53:67:14:66:a6:5d:e3:ee:29:4e:b9:80:36:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7
Validity
Not Before: Nov 27 10:55:01 2024 GMT
Not After : Nov 26 11:00:01 2025 GMT
Subject: CN=42BFE90F7FB1217C0C90692F9B219037D0A6F282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:2d:78:f3:fc:c5:e1:30:af:8e:5e:c0:4f:
45:11:fd:d3:11:1d:dd:22:5c:fb:ad:d0:3e:09:8c:
89:58:18:23:6a:f9:6e:17:a1:5c:96:81:7f:87:f2:
91:61:bd:8c:76:8d:06:f1:7b:df:45:e2:32:3b:ee:
6b:90:1a:79:0d:45:6f:cd:62:0a:78:58:f5:83:4b:
80:26:f4:48:82:89:fe:28:b7:31:6b:70:40:16:4d:
79:b5:53:97:e5:8d:09:90:b9:e7:56:06:cf:d3:be:
b1:23:b5:e4:98:e1:55:80:ca:b0:73:9d:d6:c5:6b:
8d:6d:b6:cc:e0:30:b2:68:b5:27:4a:d7:7d:c8:41:
2e:15:44:ba:73:c6:43:6f:24:ed:61:09:50:81:1a:
15:88:42:e4:3b:01:96:e7:c0:42:14:a0:8c:29:d6:
cd:f8:c3:b4:78:b0:b8:e0:19:62:ca:2c:ca:54:4a:
01:1d:31:c6:4f:3b:fa:a1:66:17:a5:98:87:74:65:
bc:1e:a3:bd:98:5c:71:ca:48:4e:6b:64:b0:76:bd:
10:f0:e6:ea:9d:09:de:8f:1a:1a:3f:a3:0a:94:31:
0c:40:fb:f7:70:d7:b6:c4:3b:b4:36:2e:41:52:72:
e8:2d:f0:bc:61:87:0c:bd:1e:5c:87:66:0a:2e:46:
31:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BF:E9:0F:7F:B1:21:7C:0C:90:69:2F:9B:21:90:37:D0:A6:F2:82
X509v3 Authority Key Identifier:
keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:8240::/32
Signature Algorithm: sha256WithRSAEncryption
48:74:b2:fe:2c:92:8d:c6:21:bd:ac:3c:b4:d6:00:a1:f5:71:
a0:b2:70:ed:02:04:46:3f:82:16:6e:5b:88:db:dc:4d:82:fb:
ff:09:8f:d8:9a:32:8f:02:1c:eb:dd:1b:0a:5e:96:6c:29:9d:
14:d2:33:bc:d8:96:4a:d9:16:7c:93:25:ab:17:b2:b4:6f:8a:
da:4d:3c:5f:8b:0c:7c:00:e2:6c:b1:be:9c:9c:4a:9c:40:be:
55:1f:a9:8d:95:83:36:ed:98:fd:53:21:d1:de:0e:7c:55:07:
39:64:8d:53:03:eb:0e:d0:9e:2e:50:1b:06:8c:fc:8e:64:c9:
be:ae:74:1f:b2:19:a3:ff:85:e2:03:b6:5f:e9:52:e7:53:97:
8a:41:85:ee:92:d5:33:dd:c0:09:34:12:53:e7:a1:ab:63:a3:
e8:98:fc:79:e8:22:d6:57:f0:34:f5:6f:64:2d:ce:31:4a:cc:
5b:d0:52:d6:c1:f1:78:9b:7b:04:16:ed:81:9c:ad:ff:83:ea:
5b:38:c6:7c:e3:50:42:38:1f:38:2f:73:a9:c4:2b:8d:33:11:
4a:30:44:d1:ad:bc:7d:8b:95:74:64:2c:0a:6d:f5:b1:11:e6:
e2:65:8f:3e:5e:1d:f3:35:7d:84:17:88:c6:11:9b:05:82:ee:
ef:ad:29:34
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUdNnxDijzU2cUZqZd4+4pTrmANl4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4
NzgxNDlBNzAeFw0yNDExMjcxMDU1MDFaFw0yNTExMjYxMTAwMDFaMDMxMTAvBgNV
BAMTKDQyQkZFOTBGN0ZCMTIxN0MwQzkwNjkyRjlCMjE5MDM3RDBBNkYyODIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrMy148/zF4TCvjl7AT0UR/dMR
Hd0iXPut0D4JjIlYGCNq+W4XoVyWgX+H8pFhvYx2jQbxe99F4jI77muQGnkNRW/N
Ygp4WPWDS4Am9EiCif4otzFrcEAWTXm1U5fljQmQuedWBs/TvrEjteSY4VWAyrBz
ndbFa41ttszgMLJotSdK133IQS4VRLpzxkNvJO1hCVCBGhWIQuQ7AZbnwEIUoIwp
1s34w7R4sLjgGWLKLMpUSgEdMcZPO/qhZhelmId0Zbweo72YXHHKSE5rZLB2vRDw
5uqdCd6PGho/owqUMQxA+/dw17bEO7Q2LkFScugt8Lxhhwy9HlyHZgouRjGPAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUQr/pD3+xIXwMkGkvmyGQN9Cm8oIwHwYDVR0j
BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw
NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx
NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04
ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzQzMDMxM2EzODMyMzQzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMzMzgzNzM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAYJAMA0GCSqGSIb3
DQEBCwUAA4IBAQBIdLL+LJKNxiG9rDy01gCh9XGgsnDtAgRGP4IWbluI29xNgvv/
CY/YmjKPAhzr3RsKXpZsKZ0U0jO82JZK2RZ8kyWrF7K0b4raTTxfiwx8AOJssb6c
nEqcQL5VH6mNlYM27Zj9UyHR3g58VQc5ZI1TA+sO0J4uUBsGjPyOZMm+rnQfshmj
/4XiA7Zf6VLnU5eKQYXuktUz3cAJNBJT56GrY6PomPx56CLWV/A09W9kLc4xSsxb
0FLWwfF4m3sEFu2BnK3/g+pbOMZ841BCOB84L3OpxCuNMxFKMETRrbx9i5V0ZCwK
bfWxEebiZY8+Xh3zNX2EF4jGEZsFgu7vrSk0
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:53:01 2025 by rpki-client