Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa
File: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (raw, json)
Hash identifier: UaGmn4kTfe+1TDn5eCuN9O53yKjU57F4Hz3jxRXHWWY=
Subject key identifier: 71:65:1F:9A:27:F3:67:D0:45:EE:D7:EF:BA:4C:4D:7C:94:5A:8A:A8
Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419
Certificate serial: 0C77D564DD3A12977178E93AC1FCE66875F66EBA
Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa
Signing time: Sat 12 Oct 2024 05:00:00 +0000
ROA not before: Sat 12 Oct 2024 04:55:00 +0000
ROA not after: Sat 11 Oct 2025 05:00:00 +0000
asID: 58821
IP address blocks: 2406:7b40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:77:d5:64:dd:3a:12:97:71:78:e9:3a:c1:fc:e6:68:75:f6:6e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419
Validity
Not Before: Oct 12 04:55:00 2024 GMT
Not After : Oct 11 05:00:00 2025 GMT
Subject: CN=71651F9A27F367D045EED7EFBA4C4D7C945A8AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:81:ee:8a:01:db:3a:49:98:80:4b:84:71:68:
7e:23:2f:8b:a5:d8:bd:cc:7f:98:19:52:70:39:06:
ef:2c:76:a6:46:89:bc:02:ae:b1:10:10:90:2d:bf:
22:a9:a4:66:5e:f5:4d:f1:fe:dc:6a:f7:9d:6c:59:
db:83:ca:a1:bc:f5:9a:bb:21:9a:ae:1c:a9:79:01:
cc:1b:a3:69:d4:45:6c:bf:9f:14:e3:16:5d:f5:1a:
79:0a:6a:96:e1:c5:3d:a8:7f:e6:24:ef:bf:7f:fc:
51:69:81:f4:a3:a7:9a:d6:b2:d8:ba:5d:ee:26:1c:
6b:c5:67:ad:ab:89:58:88:2d:5a:4e:0b:16:7e:59:
ce:ff:e6:7d:58:33:51:73:ac:4a:a8:30:4f:b6:4e:
a1:55:3b:0d:c9:3f:ed:5b:0c:dc:dc:03:fa:46:da:
79:42:33:e5:3f:52:76:4d:ad:bd:f1:bb:4b:8d:c6:
22:66:b5:8c:99:69:dd:cb:2f:d9:9c:24:66:a0:ab:
44:63:aa:ff:42:10:17:ad:49:fc:1f:6f:85:2e:9b:
2a:9d:e7:a2:5a:f8:17:d8:cf:35:76:be:c3:39:57:
f4:db:f3:4f:ab:ce:73:16:d7:61:36:a4:c7:4c:91:
2a:aa:05:9a:9f:a2:79:90:82:83:a8:d1:4f:f0:a5:
1c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:65:1F:9A:27:F3:67:D0:45:EE:D7:EF:BA:4C:4D:7C:94:5A:8A:A8
X509v3 Authority Key Identifier:
keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:7b40::/32
Signature Algorithm: sha256WithRSAEncryption
69:94:09:91:55:a6:ef:e6:43:e4:75:a0:55:cb:35:d2:1b:22:
46:41:56:5f:20:26:b8:4c:9f:35:57:c2:aa:fb:89:bb:9a:6e:
ef:c7:87:75:6e:8a:6f:cc:c2:7e:1f:d4:5c:6b:fa:a6:78:c6:
f3:30:94:57:39:7c:ab:a1:8e:fd:9b:de:ad:f4:e7:d0:5a:0c:
39:98:43:c4:32:db:6f:83:da:dc:34:bf:af:fd:41:b0:ad:0b:
43:f7:d7:24:41:ae:92:c2:90:d0:a1:07:f5:58:ae:d7:51:28:
e1:51:65:53:7f:44:c4:77:70:39:23:18:f3:69:61:f7:9b:b4:
82:7c:4a:8d:90:cd:0b:68:c7:4a:d7:7b:eb:93:77:58:95:c9:
20:81:98:51:53:06:d2:5f:34:0f:d1:b9:9d:34:4e:e4:21:ee:
76:6a:bd:81:50:87:18:70:21:cd:fa:cd:0a:b6:bc:90:b6:1d:
39:c0:b8:a9:18:d1:b7:e4:40:2b:b5:21:7b:3d:42:c3:98:b7:
a2:2a:c7:80:13:f0:fd:d3:54:26:7e:af:75:6d:ae:58:f6:15:
1d:b8:39:8c:bd:4b:f9:5c:2f:bb:da:48:3d:8e:92:1c:ea:ef:
ba:a3:65:87:ec:f7:52:b6:e4:06:1b:44:12:9f:f1:e4:d1:12:
f9:58:21:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:59:21 2025 by rpki-client