Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa
File: 323430343a343863303a3a2f33322d3332203d3e20313338313334.roa (raw, json)
Hash identifier: mGafxLeKPnG7Eg+GZ3Uvf1Rg2MZjFuXySA60etRq29k=
Subject key identifier: A6:79:9B:7A:FA:E5:60:F5:8F:75:2C:0A:F6:90:8A:0F:ED:BC:DF:1A
Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0
Certificate serial: 5FC7A5B8848F417DFCB8146BE44602B4E3A9B517
Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa
Signing time: Mon 01 Jul 2024 01:03:40 +0000
ROA not before: Mon 01 Jul 2024 00:58:40 +0000
ROA not after: Mon 30 Jun 2025 01:03:40 +0000
asID: 138134
IP address blocks: 2404:48c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:c7:a5:b8:84:8f:41:7d:fc:b8:14:6b:e4:46:02:b4:e3:a9:b5:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0
Validity
Not Before: Jul 1 00:58:40 2024 GMT
Not After : Jun 30 01:03:40 2025 GMT
Subject: CN=A6799B7AFAE560F58F752C0AF6908A0FEDBCDF1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2f:a3:56:c7:ca:b9:21:1b:5d:96:ca:a5:40:
7a:a5:43:97:b9:07:a8:70:b0:46:f6:5e:9f:94:c3:
6d:f6:09:fa:67:41:b0:52:db:55:7f:86:93:c8:c4:
be:c2:1d:39:46:0f:09:46:33:b8:3e:d6:6e:66:c9:
f4:91:aa:aa:27:70:bb:0a:83:e1:5a:2f:0a:e1:e3:
13:63:6f:1b:01:86:78:39:0e:a5:36:07:25:3f:eb:
9b:96:1d:18:01:b1:4a:f8:35:39:fd:c9:d9:45:31:
1a:a2:0c:18:55:71:62:0b:dc:26:5c:53:68:36:a5:
cc:55:5e:14:ab:3d:bd:57:04:87:b9:c6:5b:26:c4:
f8:d4:69:79:6e:13:cf:68:5d:1d:fc:20:f2:e3:47:
a4:95:30:5a:db:2c:d8:28:42:98:b0:ba:46:04:d8:
33:1e:47:b2:36:ef:46:cd:01:ea:1f:64:22:04:5b:
28:49:bb:25:32:56:94:6e:b6:41:c4:69:12:7f:6b:
8f:b7:9c:70:3c:cf:9c:3d:1c:4d:ee:6a:a4:9c:bf:
41:e7:31:ca:a1:fe:5b:45:77:9d:4e:88:ec:42:47:
70:d8:ff:cf:1e:75:cd:7e:5f:0e:45:4d:e4:07:f4:
c0:3a:86:d0:7c:89:e8:cb:70:43:ce:46:89:f4:1f:
e4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:79:9B:7A:FA:E5:60:F5:8F:75:2C:0A:F6:90:8A:0F:ED:BC:DF:1A
X509v3 Authority Key Identifier:
keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
30:79:3b:74:fd:a7:ad:2e:76:58:59:14:50:f2:d4:05:df:c3:
0c:95:dc:42:5d:d5:5f:a0:33:3f:79:6e:5c:17:61:3e:01:30:
1b:1e:22:01:14:76:89:3e:d7:a1:f3:5f:c9:ba:cf:6c:89:8e:
fa:a4:1d:ef:28:0d:02:59:e3:24:33:01:84:c4:fd:37:21:31:
70:7d:8e:59:b7:9b:ed:53:5a:41:0a:1d:78:87:f2:e3:10:df:
4f:ef:0a:48:19:d6:3b:6f:af:54:56:99:e9:c6:4e:ae:22:e1:
2e:56:b7:f2:f0:f3:ab:73:cb:e5:8e:50:d4:c8:48:14:41:e7:
82:25:87:05:3b:a1:81:9e:f5:93:b3:05:42:48:4c:2c:3c:21:
2b:d0:bd:58:74:3a:d7:64:ec:e7:87:eb:3b:97:dc:ba:aa:b4:
b2:c9:a3:3c:2c:c5:9f:b3:2c:48:0c:1d:c7:e9:d6:f9:20:55:
51:96:e8:71:08:d4:d6:3c:f0:c3:18:47:81:eb:9a:5c:ce:dc:
eb:31:93:a2:e7:a0:bc:7b:68:99:3b:ea:a9:06:1a:16:45:d8:
40:17:22:71:4f:2c:f1:cb:5a:78:5a:35:75:7f:0a:0d:6b:39:
8f:dd:6a:d7:18:ba:b5:99:68:59:d3:1e:e5:94:34:92:15:25:
95:e0:a6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:01 2025 by rpki-client