Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa
File: 323430343a636163303a3a2f34382d3438203d3e20313339343137.roa (raw, json)
Hash identifier: uZbhPmuZtG5Md74mhofu8RolET7EoiAnsaXNVE7s4XM=
Subject key identifier: F6:F8:2A:07:42:7B:69:58:7A:EB:01:81:A7:06:46:F8:1B:C3:2C:AF
Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Certificate serial: 56DD6E4559277D28082B6C6B330133FF82D174EB
Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa
Signing time: Fri 11 Oct 2024 03:53:18 +0000
ROA not before: Fri 11 Oct 2024 03:48:18 +0000
ROA not after: Fri 10 Oct 2025 03:53:18 +0000
asID: 139417
IP address blocks: 2404:cac0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:dd:6e:45:59:27:7d:28:08:2b:6c:6b:33:01:33:ff:82:d1:74:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Validity
Not Before: Oct 11 03:48:18 2024 GMT
Not After : Oct 10 03:53:18 2025 GMT
Subject: CN=F6F82A07427B69587AEB0181A70646F81BC32CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:6f:53:e8:da:ab:b6:c6:5f:7b:f0:f3:8a:
08:19:f1:a8:a9:96:c0:e7:52:2b:48:fc:65:64:57:
91:f7:35:7b:f7:fa:26:d4:a1:ff:cb:e8:25:15:0d:
9d:a7:93:6e:77:90:b4:fb:4c:82:a3:ff:8e:83:c0:
63:e8:dc:18:7e:52:09:3d:68:9f:8b:5e:56:c2:54:
17:8c:12:67:4c:fa:94:d2:5b:40:c6:31:99:cb:6f:
34:7a:b4:bf:5a:50:a0:6a:02:5e:53:f9:08:d2:3c:
21:d4:c9:c2:f2:bc:c3:90:c9:84:66:4d:8a:54:aa:
32:d2:e0:97:29:21:14:ff:0d:b9:8f:78:9b:e5:4e:
ff:e9:1e:a4:a6:03:41:7d:1f:60:cc:db:24:ab:97:
59:fb:95:e3:30:a7:9c:bf:14:06:8c:1c:34:e9:7e:
95:45:93:88:b4:6b:56:35:19:34:be:64:aa:d1:6b:
af:ba:50:00:bb:a3:7d:9c:6a:b1:7c:b1:4a:68:ed:
44:8b:cc:4d:53:80:da:cd:43:5b:b7:9b:00:0c:47:
f9:b2:69:12:ba:73:0f:ee:12:f3:c1:d1:4a:13:26:
61:e3:21:ed:7d:9d:ad:1e:36:f6:ad:21:0c:5e:e1:
73:76:70:5b:a1:a8:29:f5:ea:ed:c0:7f:ee:6d:82:
ea:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F8:2A:07:42:7B:69:58:7A:EB:01:81:A7:06:46:F8:1B:C3:2C:AF
X509v3 Authority Key Identifier:
keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cac0::/48
Signature Algorithm: sha256WithRSAEncryption
22:2e:28:70:e2:40:99:8a:3f:d1:d8:c5:07:e0:fc:af:bb:06:
82:56:3f:f6:5b:fb:7d:d4:71:be:18:95:74:e0:b0:b3:f4:6e:
e6:98:23:86:8b:b9:46:63:07:49:49:d9:14:74:4d:33:af:45:
0b:ca:dd:a3:36:2d:ff:7a:3a:9f:6f:88:8b:72:0a:17:4f:86:
ff:4d:50:d4:ea:67:a7:73:08:a0:98:c0:b0:88:34:0c:f3:f8:
d7:1a:2e:2e:79:74:53:f2:82:cb:aa:95:80:9c:ef:b8:42:63:
c4:a5:46:de:c6:a8:73:b2:5b:08:9c:27:29:11:60:98:74:a8:
54:e7:95:f7:67:c5:bd:7d:7f:be:e3:79:30:0b:ea:94:df:9d:
75:c9:f8:79:d0:6d:25:cf:d6:ed:2d:83:f9:02:b8:fc:c3:4b:
fe:57:a2:57:0b:f8:81:19:69:3a:94:e0:e4:b7:2e:ed:95:60:
8e:31:23:8c:49:30:c8:87:a8:9f:a2:f9:a0:38:08:be:55:13:
1d:8a:84:4e:b3:0b:20:ed:db:89:85:c2:0f:a4:d7:78:af:60:
60:f8:d1:27:4a:6d:da:51:ff:6c:f8:0d:09:d4:89:61:ca:ef:
29:ba:a9:17:7c:a3:f3:74:0b:8f:49:42:1d:33:83:6b:75:09:
93:09:db:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:11 2025 by rpki-client