Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa
File: 323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa (raw, json)
Hash identifier: XIq5Jxfb9ma1VO6ZcqWrbd6msJG9iOe53aiAMMFJVTU=
Subject key identifier: 4E:AF:E6:39:C4:03:2D:6C:9C:6D:C9:5B:47:B1:61:56:F0:BE:A7:D8
Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Certificate serial: 5A2CC438811514B1A904E4191FCF78B961A37233
Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa
Signing time: Mon 27 Jan 2025 16:00:01 +0000
ROA not before: Mon 27 Jan 2025 15:55:01 +0000
ROA not after: Mon 26 Jan 2026 16:00:01 +0000
asID: 139417
IP address blocks: 2404:cac0:1a5b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:2c:c4:38:81:15:14:b1:a9:04:e4:19:1f:cf:78:b9:61:a3:72:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Validity
Not Before: Jan 27 15:55:01 2025 GMT
Not After : Jan 26 16:00:01 2026 GMT
Subject: CN=4EAFE639C4032D6C9C6DC95B47B16156F0BEA7D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c6:4d:33:1e:1f:27:b5:59:cf:f7:e7:43:c0:
9f:10:99:f4:29:75:fa:ec:37:05:8a:b5:df:f4:a9:
78:93:af:78:e9:96:3f:e1:48:29:ad:c0:42:04:87:
40:f3:f5:3b:c8:3c:e6:89:81:8e:89:81:34:06:ea:
14:7a:a1:99:84:df:8d:d2:d8:0a:8f:b6:72:dc:a6:
da:ef:fb:6f:8b:53:f7:2a:7f:c5:62:a2:a5:42:2d:
a5:12:6c:c7:64:36:2c:4b:ed:a7:54:97:2b:69:f6:
04:87:29:1f:34:d4:28:05:03:50:a0:b4:94:f7:df:
7c:7c:45:fa:1f:48:5a:7f:45:55:1f:d5:e9:7b:e9:
c5:7f:3e:a7:43:19:01:6a:f3:0e:e0:e0:da:5b:00:
bb:56:38:2d:78:a0:28:08:ba:83:d0:f4:ab:82:c9:
7a:49:82:74:15:e1:d9:74:1b:76:9c:f8:a9:80:e6:
30:68:85:91:df:33:4b:fe:b4:3b:93:88:b1:a9:69:
80:65:78:2b:89:07:44:10:82:16:15:cf:09:61:53:
f2:b9:f9:c6:99:7b:68:18:67:2b:f0:97:e6:84:e7:
91:8b:18:47:ad:42:1b:99:f6:48:49:17:24:e0:7c:
a6:0e:0a:88:61:83:e9:8e:8f:46:b6:97:58:24:13:
46:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AF:E6:39:C4:03:2D:6C:9C:6D:C9:5B:47:B1:61:56:F0:BE:A7:D8
X509v3 Authority Key Identifier:
keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cac0:1a5b::/48
Signature Algorithm: sha256WithRSAEncryption
4e:30:ca:56:f2:a5:10:6d:b7:ed:ad:c0:a7:eb:c5:63:6d:60:
df:35:1a:c0:21:f3:bd:f9:ee:cc:d9:7f:66:b6:fb:98:ec:16:
99:40:fb:ca:60:76:f0:64:b7:1b:63:fd:2c:3b:e3:67:e9:67:
2d:ff:f0:de:bf:54:d0:cf:20:50:ca:89:b4:a6:52:96:78:fd:
53:bc:2e:49:4b:d0:de:21:7a:39:eb:72:01:89:e1:28:e9:86:
bd:5d:9f:cd:d7:e5:c9:3d:07:28:15:10:f3:a8:30:c1:85:fb:
4c:c3:29:3e:76:c1:cc:0d:e1:e2:18:84:7a:b1:27:2a:da:37:
32:08:83:0e:3f:d8:7e:25:5b:9b:54:04:d5:04:20:15:f7:87:
80:78:22:b2:de:60:83:e5:da:bf:1c:f1:86:73:1c:6a:35:50:
cd:ce:ac:12:dc:07:6f:8c:1d:52:b7:54:ae:12:4e:9e:bd:c5:
18:49:55:a2:47:e3:48:f7:f6:da:43:fd:3d:61:73:49:58:80:
ec:14:6d:b5:0e:3a:0d:5a:5b:36:62:d0:97:b2:d7:c4:f8:f1:
98:77:e7:6e:11:ac:74:47:31:46:22:dd:35:06:65:84:23:3e:
87:14:0d:57:a4:94:4b:b7:cb:48:19:c5:84:26:01:7b:e3:0e:
66:7d:a7:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:10:41 2025 by rpki-client