Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa
File: 323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa (raw, json)
Hash identifier: oRfT4X0Sy9tnBNiJsxtxMTFV7eQ+myy/o8BOZoNv2r8=
Subject key identifier: E8:90:51:07:56:70:76:3E:DE:96:E8:18:3C:63:33:F6:74:83:75:3F
Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Certificate serial: 71CFD857F0124340BD1D1DEC89EE7C56284958C8
Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa
Signing time: Tue 28 Jan 2025 05:00:01 +0000
ROA not before: Tue 28 Jan 2025 04:55:01 +0000
ROA not after: Tue 27 Jan 2026 05:00:01 +0000
asID: 139417
IP address blocks: 2404:cac0:1d5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:cf:d8:57:f0:12:43:40:bd:1d:1d:ec:89:ee:7c:56:28:49:58:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Validity
Not Before: Jan 28 04:55:01 2025 GMT
Not After : Jan 27 05:00:01 2026 GMT
Subject: CN=E89051075670763EDE96E8183C6333F67483753F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:29:9d:57:03:5a:a8:80:92:12:d4:93:0f:9f:
a9:70:c6:44:8e:4d:66:ca:d6:42:cd:97:ba:f7:20:
1b:f7:33:e1:19:80:b2:e6:9c:b1:a4:1d:c7:47:53:
85:a5:8b:c1:78:77:03:06:fe:ac:09:92:14:4b:bf:
f2:9b:e4:d7:eb:13:48:08:1f:99:e0:66:2c:0e:c2:
d5:ee:ce:5a:e1:32:0f:c7:b1:42:c9:46:c4:4a:7c:
d5:84:c0:d4:0b:f9:42:0f:7a:0c:39:7c:b7:30:6d:
e0:ba:92:d1:18:5a:2d:47:2f:f7:7c:9f:ab:82:4d:
47:18:e9:80:8e:84:6a:f1:b2:ba:a9:b1:9d:cf:d0:
9a:11:ca:bc:3a:50:20:23:37:36:eb:98:97:65:78:
ef:f8:68:56:20:de:b8:8f:61:3b:fd:ae:91:e2:2c:
94:12:9d:df:60:5e:48:06:83:5d:63:19:a0:82:30:
50:d0:cf:fb:51:6d:02:0a:8d:67:df:d5:71:5d:4a:
be:61:c1:c4:78:d6:a7:ee:75:02:45:cd:dd:c4:44:
d2:af:df:54:77:47:3e:f8:47:1b:6a:d2:bc:81:f5:
6e:f1:dd:76:98:45:60:32:04:16:5c:e0:54:4f:60:
a3:17:91:d7:75:bd:ec:26:9a:6c:f3:75:71:fa:7b:
67:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:90:51:07:56:70:76:3E:DE:96:E8:18:3C:63:33:F6:74:83:75:3F
X509v3 Authority Key Identifier:
keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cac0:1d5::/48
Signature Algorithm: sha256WithRSAEncryption
3f:35:57:5e:9e:2e:2a:00:67:50:de:ca:df:d3:29:77:ef:1e:
9f:50:44:95:2f:2c:34:30:4f:cf:98:58:4e:ee:98:e9:6d:d5:
ff:3c:94:14:51:ff:7e:f2:2e:76:3a:ae:05:b4:d3:c3:5b:76:
3f:d4:18:0d:cd:2b:a4:04:d9:8d:fc:ed:95:98:8c:8a:9c:ab:
99:98:89:88:25:74:22:8d:09:80:b7:4b:95:1a:99:36:92:f6:
80:9b:43:af:9c:2a:6a:56:9e:41:cc:2b:4d:97:85:63:6a:ec:
aa:c5:89:79:af:8f:3f:74:24:82:bf:94:cd:96:5c:06:c6:14:
56:3b:3b:3f:3a:1e:e1:58:8d:0f:22:f0:5b:93:72:ff:7a:43:
f7:f1:1c:14:8e:88:37:68:2b:2c:f8:c3:66:3f:ac:75:05:1a:
3e:95:76:bd:0c:37:e6:ef:9f:7e:7e:10:7d:5f:64:52:be:ea:
e7:db:b7:a0:35:2e:d4:bf:c4:1d:f1:bb:62:de:6f:22:53:f1:
61:08:be:31:b3:52:a5:55:72:51:72:c7:d9:7e:ff:17:7f:08:
e8:f0:3b:ea:e3:dd:e8:e8:88:2a:40:50:9d:1f:15:d7:07:83:
22:e5:53:63:f9:7c:bc:9e:1e:15:9d:21:f1:43:33:23:c4:d4:
50:e6:16:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:19 2025 by rpki-client