Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa
File: 323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa (raw, json)
Hash identifier: tGDYZbZFfyUoLXzylO+/DvmkP5V0ufi3ajLXIvohhx8=
Subject key identifier: 84:5C:D7:3F:B2:3B:52:3E:54:90:FB:0B:74:D9:E6:1B:01:F3:8E:8E
Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43
Certificate serial: 5C1F00D644CFC5A23DA18C9441566C6101BEA546
Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa
Signing time: Thu 17 Oct 2024 07:16:56 +0000
ROA not before: Thu 17 Oct 2024 07:11:56 +0000
ROA not after: Thu 16 Oct 2025 07:16:56 +0000
asID: 149736
IP address blocks: 2401:48e0:4001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:1f:00:d6:44:cf:c5:a2:3d:a1:8c:94:41:56:6c:61:01:be:a5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43
Validity
Not Before: Oct 17 07:11:56 2024 GMT
Not After : Oct 16 07:16:56 2025 GMT
Subject: CN=845CD73FB23B523E5490FB0B74D9E61B01F38E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:51:98:07:b3:eb:3c:7c:e6:a7:58:81:c1:4e:
70:c4:1e:54:5c:40:f1:f4:58:d9:5a:42:64:3a:c9:
9e:5f:1d:d3:04:cb:bc:80:6c:36:e0:5a:9c:81:29:
13:1a:d4:ab:cf:34:84:33:7b:d1:ee:ec:70:c1:26:
fe:7e:5c:19:8c:76:41:8f:de:e3:dd:7f:16:7c:d6:
b1:f4:8a:e2:ba:b9:b1:03:7d:f0:e1:ee:f7:e5:fe:
24:99:ee:a0:9a:63:e4:ed:25:c6:c0:09:19:5a:c6:
f5:40:18:1b:92:7d:63:cc:c0:17:84:54:c6:a2:42:
eb:c6:bb:bf:d7:72:21:2f:3c:52:a9:ee:75:64:68:
11:3d:16:a4:93:91:a1:3b:b7:dc:ae:02:06:2d:84:
72:bd:e5:0d:af:e9:24:d9:ad:2a:db:7a:2c:4c:dd:
0b:e1:45:40:39:f3:fc:b0:f0:d3:e8:36:5d:34:a2:
c0:04:d0:01:20:78:eb:3e:c4:ac:36:a1:f5:fc:89:
ec:7a:f4:9a:1f:cc:47:d0:58:e0:bb:99:86:b1:31:
51:b6:c0:2c:0a:d0:54:4e:d0:1e:77:50:da:ad:a4:
12:d0:28:5e:7f:49:70:73:04:f5:c1:99:51:27:c3:
91:de:d9:37:fc:0b:f1:bc:75:93:20:87:35:75:31:
bf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5C:D7:3F:B2:3B:52:3E:54:90:FB:0B:74:D9:E6:1B:01:F3:8E:8E
X509v3 Authority Key Identifier:
keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:48e0:4001::/48
Signature Algorithm: sha256WithRSAEncryption
af:20:f8:66:1e:d6:02:69:f9:8a:34:ef:28:35:9f:05:af:59:
de:67:b7:13:ad:04:40:1b:df:df:b5:2c:d4:3b:a1:11:50:48:
84:0f:11:81:97:32:38:51:03:ed:32:e7:1a:be:71:46:f1:5b:
d2:fa:71:95:c7:77:9a:18:7b:41:df:b9:9b:1c:f0:a2:3f:f3:
cc:58:6a:1c:4d:43:b7:5d:ef:1a:17:72:6f:92:d1:e0:65:5c:
40:a5:28:33:12:e5:dc:4c:ab:c5:bc:a6:99:da:d9:7d:55:ff:
bc:4a:fa:f9:44:35:b4:04:ee:d2:93:81:50:7a:59:9c:34:d4:
06:f5:a7:22:49:43:eb:b7:95:68:94:37:26:5e:69:28:0b:0f:
19:66:19:25:08:6c:c8:44:ce:8e:5c:d3:2f:c6:85:2e:e5:d9:
17:7b:e3:af:ce:bf:58:68:d7:c4:c1:3e:3b:c2:61:3c:85:c5:
21:00:51:8d:78:b3:84:a6:a5:12:06:95:51:63:9f:99:0f:c1:
06:43:f1:a2:5a:1f:94:86:91:b7:b5:7a:50:e4:9b:69:da:35:
90:00:a6:fb:b0:73:7d:ea:83:e3:b2:ef:fe:25:3d:7e:e3:65:
32:c5:f8:7c:99:94:84:12:a1:cf:ef:17:f4:e9:68:61:fb:e5:
a6:c1:a6:13
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUXB8A1kTPxaI9oYyUQVZsYQG+pUYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD
OUEyN0Q0MzAeFw0yNDEwMTcwNzExNTZaFw0yNTEwMTYwNzE2NTZaMDMxMTAvBgNV
BAMTKDg0NUNENzNGQjIzQjUyM0U1NDkwRkIwQjc0RDlFNjFCMDFGMzhFOEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUUZgHs+s8fOanWIHBTnDEHlRc
QPH0WNlaQmQ6yZ5fHdMEy7yAbDbgWpyBKRMa1KvPNIQze9Hu7HDBJv5+XBmMdkGP
3uPdfxZ81rH0iuK6ubEDffDh7vfl/iSZ7qCaY+TtJcbACRlaxvVAGBuSfWPMwBeE
VMaiQuvGu7/XciEvPFKp7nVkaBE9FqSTkaE7t9yuAgYthHK95Q2v6STZrSrbeixM
3QvhRUA58/yw8NPoNl00osAE0AEgeOs+xKw2ofX8iex69JofzEfQWOC7mYaxMVG2
wCwK0FRO0B53UNqtpBLQKF5/SXBzBPXBmVEnw5He2Tf8C/G8dZMghzV1Mb8HAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUhFzXP7I7Uj5UkPsLdNnmGwHzjo4wHwYDVR0j
BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0
RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy
N0Q0My5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05
YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMyMzQzMDMxM2EzNDM4NjUzMDNhMzQzMDMwMzEz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
AUjgQAEwDQYJKoZIhvcNAQELBQADggEBAK8g+GYe1gJp+Yo07yg1nwWvWd5ntxOt
BEAb39+1LNQ7oRFQSIQPEYGXMjhRA+0y5xq+cUbxW9L6cZXHd5oYe0HfuZsc8KI/
88xYahxNQ7dd7xoXcm+S0eBlXEClKDMS5dxMq8W8ppna2X1V/7xK+vlENbQE7tKT
gVB6WZw01Ab1pyJJQ+u3lWiUNyZeaSgLDxlmGSUIbMhEzo5c0y/GhS7l2Rd746/O
v1ho18TBPjvCYTyFxSEAUY14s4SmpRIGlVFjn5kPwQZD8aJaH5SGkbe1elDkm2na
NZAApvuwc33qg+Oy7/4lPX7jZTLF+HyZlIQSoc/vF/TpaGH75abBphM=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:49 2025 by rpki-client