Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa
File: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (raw, json)
Hash identifier: 8BcFapwe+X3BcAcYyUi0aKlB+9OoLNEUNoO57IgvOug=
Subject key identifier: D2:75:4C:A1:AC:89:CB:A8:2F:2D:BB:F3:0B:56:D5:16:6B:E8:B5:89
Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4
Certificate serial: 3B05BBDF05178DED206F88140DDAEE187C7B8695
Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa
Signing time: Tue 26 Nov 2024 10:00:01 +0000
ROA not before: Tue 26 Nov 2024 09:55:01 +0000
ROA not after: Tue 25 Nov 2025 10:00:01 +0000
asID: 138822
IP address blocks: 2404:a4c0:face::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:05:bb:df:05:17:8d:ed:20:6f:88:14:0d:da:ee:18:7c:7b:86:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4
Validity
Not Before: Nov 26 09:55:01 2024 GMT
Not After : Nov 25 10:00:01 2025 GMT
Subject: CN=D2754CA1AC89CBA82F2DBBF30B56D5166BE8B589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7d:5d:c3:97:56:3a:f8:cf:ac:97:f7:2b:13:
62:2f:ad:34:87:a1:bc:e0:e7:52:93:d4:c8:76:f5:
17:89:db:bd:96:d2:82:f8:55:7e:13:b6:ac:a6:34:
5a:7e:e2:1f:d0:0b:b1:ca:51:6b:9a:b4:e2:fc:40:
06:ab:58:91:3a:91:90:c4:e7:9b:f4:f8:29:be:7e:
8d:83:72:a3:38:68:9d:ea:c3:6d:79:eb:45:ae:ab:
2a:3d:ab:2e:33:3f:64:92:a3:e9:e1:ed:29:e2:c8:
3f:a5:57:34:ae:b8:c7:55:07:6a:4e:b2:f1:6d:2e:
39:6c:3d:c4:f3:d2:46:69:c5:34:36:c6:30:e8:4c:
9f:0d:a5:07:c3:22:46:e3:68:58:c2:10:68:99:97:
7e:e3:a9:22:a7:53:33:bc:0f:05:14:a4:08:7b:2c:
c8:28:48:62:db:a8:e5:a0:20:54:9a:93:87:25:86:
5a:60:02:12:e6:88:c9:d0:35:bd:09:f1:a9:7f:da:
1e:78:4d:53:dc:06:18:e2:3c:28:4d:d3:30:4e:3c:
35:23:2b:89:a2:09:66:44:b4:0a:74:0f:b6:2f:f9:
fc:fe:5c:a0:5d:88:21:a5:11:39:f3:c9:74:d5:c3:
bb:3a:8d:69:e5:6b:90:b0:5b:59:91:4e:11:46:87:
cb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:75:4C:A1:AC:89:CB:A8:2F:2D:BB:F3:0B:56:D5:16:6B:E8:B5:89
X509v3 Authority Key Identifier:
keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:a4c0:face::/48
Signature Algorithm: sha256WithRSAEncryption
48:86:8d:6e:b3:3a:69:41:9d:e4:a5:13:41:79:d1:07:10:47:
51:37:50:97:02:3f:2f:ed:40:e3:d5:ef:bf:7d:87:81:44:a9:
86:76:34:25:03:e7:61:d4:cb:80:60:36:23:fc:83:50:b1:ca:
4f:30:a6:f4:1b:07:d7:75:16:2d:fc:2b:43:54:db:bd:e1:bf:
db:08:73:4c:44:29:16:06:be:cb:f9:30:45:a8:52:32:b8:c4:
78:22:46:75:74:34:9b:7b:93:80:1b:f6:f4:9b:f7:31:01:c5:
9e:4c:2a:cd:e3:c6:ca:bd:49:ff:ef:77:0a:20:e7:d5:a7:a0:
aa:d4:d7:13:7b:0d:bd:35:5c:ac:bc:61:5f:52:bc:26:cd:cd:
04:f2:2d:8e:84:ca:18:2d:fb:64:87:5c:c1:52:1c:3c:d6:0d:
87:dc:72:00:6b:ff:54:0d:df:ee:40:47:d5:cf:6f:05:2f:dc:
02:90:8c:d2:41:98:0c:1f:db:b9:2e:e2:5c:96:d2:53:da:7e:
2c:ab:33:97:eb:8a:e0:30:73:e1:85:fc:e4:a9:8d:36:6a:fc:
49:c4:53:d5:6c:b4:b9:b0:40:d4:3e:9d:09:68:0c:e8:75:c0:
fc:26:02:2f:cd:ed:8c:2a:e1:af:f6:0e:35:c6:17:05:0f:89:
5e:7c:a9:b5
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUOwW73wUXje0gb4gUDdruGHx7hpUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4
M0E2MzNENDAeFw0yNDExMjYwOTU1MDFaFw0yNTExMjUxMDAwMDFaMDMxMTAvBgNV
BAMTKEQyNzU0Q0ExQUM4OUNCQTgyRjJEQkJGMzBCNTZENTE2NkJFOEI1ODkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOfV3Dl1Y6+M+sl/crE2IvrTSH
obzg51KT1Mh29ReJ272W0oL4VX4TtqymNFp+4h/QC7HKUWuatOL8QAarWJE6kZDE
55v0+Cm+fo2DcqM4aJ3qw21560Wuqyo9qy4zP2SSo+nh7SniyD+lVzSuuMdVB2pO
svFtLjlsPcTz0kZpxTQ2xjDoTJ8NpQfDIkbjaFjCEGiZl37jqSKnUzO8DwUUpAh7
LMgoSGLbqOWgIFSak4clhlpgAhLmiMnQNb0J8al/2h54TVPcBhjiPChN0zBOPDUj
K4miCWZEtAp0D7Yv+fz+XKBdiCGlETnzyXTVw7s6jWnla5CwW1mRThFGh8sJAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU0nVMoayJy6gvLbvzC1bVFmvotYkwHwYDVR0j
BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1
Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2
MzNENC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h
ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhNjY2MTYzNjUz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMyMzIucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
BKTA+s4wDQYJKoZIhvcNAQELBQADggEBAEiGjW6zOmlBneSlE0F50QcQR1E3UJcC
Py/tQOPV7799h4FEqYZ2NCUD52HUy4BgNiP8g1Cxyk8wpvQbB9d1Fi38K0NU273h
v9sIc0xEKRYGvsv5MEWoUjK4xHgiRnV0NJt7k4Ab9vSb9zEBxZ5MKs3jxsq9Sf/v
dwog59WnoKrU1xN7Db01XKy8YV9SvCbNzQTyLY6Eyhgt+2SHXMFSHDzWDYfccgBr
/1QN3+5AR9XPbwUv3AKQjNJBmAwf27ku4lyW0lPafiyrM5friuAwc+GF/OSpjTZq
/EnEU9VstLmwQNQ+nQloDOh1wPwmAi/N7Ywq4a/2DjXGFwUPiV58qbU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:18 2025 by rpki-client