Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa
File: 323430303a373530303a3a2f33322d3332203d3e203435333235.roa (raw, json)
Hash identifier: x21nuMOFacoxM1n3i0ebBYoK59D8tMJoxNNKmC7nIow=
Subject key identifier: 10:53:61:66:4E:62:00:83:6F:7E:EE:3D:32:A6:B7:DE:91:AD:B9:2A
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 290B829365534A471B7658045E5D21E0986D5790
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa
Signing time: Thu 21 Nov 2024 02:40:53 +0000
ROA not before: Thu 21 Nov 2024 02:35:53 +0000
ROA not after: Thu 20 Nov 2025 02:40:53 +0000
asID: 45325
IP address blocks: 2400:7500::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:0b:82:93:65:53:4a:47:1b:76:58:04:5e:5d:21:e0:98:6d:57:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 21 02:35:53 2024 GMT
Not After : Nov 20 02:40:53 2025 GMT
Subject: CN=105361664E6200836F7EEE3D32A6B7DE91ADB92A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:67:86:1a:fb:aa:3f:37:0f:2b:ad:95:94:
be:99:97:6a:26:19:05:ba:19:d2:62:81:84:73:63:
a5:03:d9:5a:f5:e0:ee:5f:2f:e3:66:0f:f9:c5:dd:
7e:42:e6:f5:91:69:3f:6d:06:63:4e:54:57:64:73:
31:6d:0e:67:19:02:2f:c4:08:b1:11:51:6a:83:3b:
74:04:6e:56:20:c3:e1:54:05:e2:7c:1c:4c:a5:45:
0f:d4:16:10:d7:2f:90:55:0f:e9:36:77:6c:a7:64:
2f:1e:87:fd:44:4f:86:c9:2c:ee:87:d8:7e:40:f5:
9e:df:9f:f4:b3:66:9b:b6:09:68:8e:ea:57:09:e7:
6b:8b:ba:95:dc:53:9f:2d:3b:14:83:e7:13:5d:0e:
03:32:1c:9f:98:2c:52:ff:fa:10:8d:1f:f7:01:b0:
9f:1d:95:a0:a2:86:43:d8:29:c1:9b:f2:d9:17:4b:
9b:25:41:e3:4e:9a:46:62:bb:31:fe:83:69:5d:2e:
d3:c7:d8:54:20:1a:d9:cc:fb:fa:27:e7:46:1c:6f:
c3:0e:0f:30:86:f3:71:09:15:de:38:cb:83:4a:7e:
d8:25:f2:e6:11:e5:ef:d1:93:b1:51:88:f7:32:03:
30:33:24:94:08:28:6f:9d:f8:c9:d7:72:73:4a:df:
40:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:53:61:66:4E:62:00:83:6F:7E:EE:3D:32:A6:B7:DE:91:AD:B9:2A
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:7500::/32
Signature Algorithm: sha256WithRSAEncryption
9d:74:bb:fe:0c:bb:c6:30:5a:a2:66:21:76:8b:44:5b:cb:87:
f5:6d:1f:ac:bf:46:c9:46:f0:64:7c:98:21:45:75:9e:b2:e2:
0e:18:53:d0:2e:41:a6:2f:44:76:6f:e2:1a:e2:a3:cf:08:03:
e5:0e:f7:0d:02:65:7d:c1:e9:a8:33:a7:07:ed:be:2a:c1:89:
d7:e6:62:c0:bf:4c:22:b8:59:68:70:97:58:9f:8a:6b:59:69:
7c:0b:bc:a1:3c:6b:bc:c6:ca:49:43:0a:db:4d:42:20:d7:87:
6a:49:fa:1a:98:0d:79:9c:94:6d:c3:3a:64:09:21:3f:70:9f:
a8:e9:40:61:d5:a4:eb:39:36:0c:4c:08:70:2b:e3:76:67:c2:
3f:5a:0d:2d:f5:7a:31:b0:5a:02:5b:62:13:d2:55:a0:6f:e6:
b6:f6:2c:47:33:ca:cc:16:be:ed:bb:dc:8d:a4:6c:8e:7a:fd:
9a:ba:9e:82:28:d1:32:9d:0e:93:9e:fb:b1:51:91:de:b5:55:
fe:f7:79:8f:24:4e:a2:08:cc:64:70:4c:31:9a:9d:f4:b2:0e:
2e:0d:b4:3f:13:56:2d:60:88:a1:3b:e1:be:e7:1b:20:df:bf:
63:4a:29:99:d1:6b:9c:60:a8:f4:87:11:f8:81:33:fe:8f:c2:
03:d8:50:b5
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUKQuCk2VTSkcbdlgEXl0h4JhtV5AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE
MzhBQzI2RDAeFw0yNDExMjEwMjM1NTNaFw0yNTExMjAwMjQwNTNaMDMxMTAvBgNV
BAMTKDEwNTM2MTY2NEU2MjAwODM2RjdFRUUzRDMyQTZCN0RFOTFBREI5MkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6BmeGGvuqPzcPK62VlL6Zl2om
GQW6GdJigYRzY6UD2Vr14O5fL+NmD/nF3X5C5vWRaT9tBmNOVFdkczFtDmcZAi/E
CLERUWqDO3QEblYgw+FUBeJ8HEylRQ/UFhDXL5BVD+k2d2ynZC8eh/1ET4bJLO6H
2H5A9Z7fn/SzZpu2CWiO6lcJ52uLupXcU58tOxSD5xNdDgMyHJ+YLFL/+hCNH/cB
sJ8dlaCihkPYKcGb8tkXS5slQeNOmkZiuzH+g2ldLtPH2FQgGtnM+/on50Ycb8MO
DzCG83EJFd44y4NKftgl8uYR5e/Rk7FRiPcyAzAzJJQIKG+d+MnXcnNK30CbAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUEFNhZk5iAINvfu49Mqa33pGtuSowHwYDVR0j
BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2
QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB
QzI2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04
ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzQzMDMwM2EzNzM1MzAzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDM0MzUzMzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAHUAMA0GCSqGSIb3
DQEBCwUAA4IBAQCddLv+DLvGMFqiZiF2i0Rby4f1bR+sv0bJRvBkfJghRXWesuIO
GFPQLkGmL0R2b+Ia4qPPCAPlDvcNAmV9wemoM6cH7b4qwYnX5mLAv0wiuFlocJdY
n4prWWl8C7yhPGu8xspJQwrbTUIg14dqSfoamA15nJRtwzpkCSE/cJ+o6UBh1aTr
OTYMTAhwK+N2Z8I/Wg0t9XoxsFoCW2IT0lWgb+a29ixHM8rMFr7tu9yNpGyOev2a
up6CKNEynQ6TnvuxUZHetVX+93mPJE6iCMxkcEwxmp30sg4uDbQ/E1YtYIihO+G+
5xsg379jSimZ0WucYKj0hxH4gTP+j8ID2FC1
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:42:59 2025 by rpki-client