Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa
File: 323430363a313334303a3a2f33322d3332203d3e20313430343037.roa (raw, json)
Hash identifier: m/65e9cOFT5GxdbAl14pYw1g3WDPcrPd8V2NoqzZ7g4=
Subject key identifier: 8B:B1:D3:29:A8:F9:ED:2B:7E:C5:4E:47:10:1A:14:42:7F:61:4E:75
Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Certificate serial: 591A76FFB460A0995B139B81543DA1470471F213
Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa
Signing time: Wed 15 May 2024 09:01:01 +0000
ROA not before: Wed 15 May 2024 08:56:01 +0000
ROA not after: Wed 14 May 2025 09:01:01 +0000
asID: 140407
IP address blocks: 2406:1340::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:1a:76:ff:b4:60:a0:99:5b:13:9b:81:54:3d:a1:47:04:71:f2:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Validity
Not Before: May 15 08:56:01 2024 GMT
Not After : May 14 09:01:01 2025 GMT
Subject: CN=8BB1D329A8F9ED2B7EC54E47101A14427F614E75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:0e:76:e7:d8:41:82:29:aa:5f:fa:a9:ca:
b7:48:6d:c6:44:22:8f:57:b2:6c:2d:29:82:24:b3:
71:de:3f:b2:17:94:d9:0a:6d:c7:0d:18:3c:9c:b4:
e9:3a:25:70:bd:52:67:a8:d2:b3:3a:e8:44:4b:98:
f2:40:84:41:77:77:d1:ee:c1:88:3d:a7:f0:e7:6b:
9b:03:1b:55:cb:8d:9b:0d:cd:7a:0d:67:90:6d:1c:
42:e3:7a:04:65:a8:8d:49:59:2e:fa:0e:e1:4d:68:
ff:bf:d3:22:81:a7:1a:87:cf:fd:1b:b1:e7:b9:ca:
ef:4f:71:21:d8:24:86:5f:c5:a7:36:73:1c:bc:97:
bd:db:2d:e6:1b:1f:c2:7e:0d:da:93:39:49:07:ce:
98:b2:25:e3:67:4f:c0:c8:ba:3f:5f:15:6c:99:f6:
54:d6:d4:1e:7d:df:37:7c:6b:8b:62:24:d2:ff:79:
1f:99:e4:3b:8f:63:b4:4f:1b:25:0a:ef:31:cb:c7:
4c:f6:00:34:10:6e:5a:38:f5:17:70:7a:8b:be:b3:
48:f7:2f:70:75:f6:3f:69:18:7b:d9:64:93:f2:0a:
42:ae:55:15:2a:fe:16:3f:bb:f5:77:7d:08:a1:50:
32:f5:66:b9:b3:64:5e:3b:07:24:49:62:39:f9:7b:
09:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B1:D3:29:A8:F9:ED:2B:7E:C5:4E:47:10:1A:14:42:7F:61:4E:75
X509v3 Authority Key Identifier:
keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:1340::/32
Signature Algorithm: sha256WithRSAEncryption
57:a1:42:c9:ad:99:50:86:ab:95:33:49:a9:30:b4:9b:da:70:
8d:9d:9e:71:0e:ad:5e:3a:f6:3e:84:c9:5a:2a:9f:15:db:d9:
89:b8:29:33:30:7e:7b:3f:3a:18:f3:3c:0c:36:0a:7b:52:cc:
c9:d9:a9:0a:c1:16:05:62:2f:c3:47:45:ad:67:05:89:3f:f3:
75:66:09:df:bb:1f:82:12:ac:8e:5d:5e:55:10:95:dc:52:e6:
c7:a8:c5:20:da:68:99:42:32:7f:0e:5a:a8:42:be:dd:28:bb:
81:08:42:e7:6a:10:a2:31:91:f8:df:80:23:d4:07:10:bb:d3:
92:b9:8e:9e:b1:d6:5e:2a:b4:a6:8c:e5:aa:c4:17:cc:82:d3:
c3:10:0d:af:4c:27:3e:b8:33:74:38:ad:c6:64:19:53:cf:ec:
79:12:7a:09:cd:f3:5e:f4:c3:5b:3b:aa:b1:01:71:fd:ec:94:
5c:30:c1:00:b5:35:90:34:42:1b:fd:4d:29:68:0b:65:e1:4c:
91:07:82:2f:b4:fb:33:f3:e9:d5:7b:8c:ed:b8:4e:80:b3:38:
ca:92:bd:37:db:ed:a3:46:59:07:17:e9:fd:4c:89:da:d9:9b:
19:b4:a3:1c:cc:22:e6:55:54:55:05:4a:72:9a:6f:e5:02:c3:
cc:39:2b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:14 2025 by rpki-client