Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430313a323430303a3a2f33322d3438203d3e203338343936.roa
File: 323430313a323430303a3a2f33322d3438203d3e203338343936.roa (raw, json)
Hash identifier: WcZedbtbDeoMeDn154Qr3HUVpC9zoY1jluXAeU6wgb8=
Subject key identifier: AD:33:8C:E5:EC:AF:3F:1F:9B:00:35:FB:75:B8:49:2F:7B:82:A9:E5
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 5D046006EF98C17499192FAEB820975FC92F2E23
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430313a323430303a3a2f33322d3438203d3e203338343936.roa
Signing time: Mon 01 Jul 2024 01:05:34 +0000
ROA not before: Mon 01 Jul 2024 01:00:34 +0000
ROA not after: Mon 30 Jun 2025 01:05:34 +0000
asID: 38496
IP address blocks: 2401:2400::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:04:60:06:ef:98:c1:74:99:19:2f:ae:b8:20:97:5f:c9:2f:2e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Jul 1 01:00:34 2024 GMT
Not After : Jun 30 01:05:34 2025 GMT
Subject: CN=AD338CE5ECAF3F1F9B0035FB75B8492F7B82A9E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:2e:a1:9d:fa:6d:e0:a6:ab:4a:59:46:6b:
e4:10:aa:f5:3d:12:20:c0:fd:7b:d3:d7:8a:4d:51:
3d:0c:50:5b:88:93:e6:fd:e4:8e:09:2a:e4:ed:ea:
3f:4e:15:dd:cf:21:45:66:44:30:8c:6b:eb:6b:8e:
3d:8a:0b:0f:15:37:1b:eb:b6:32:54:57:9c:05:20:
31:5e:1c:91:0e:ab:a5:b6:12:4e:8e:be:df:8c:b5:
30:38:4c:27:39:cc:73:20:8d:5d:5b:2b:1d:d7:f8:
f4:84:70:17:35:ec:cb:24:bf:30:b9:98:47:fe:28:
2a:46:f0:d4:0a:cf:5a:8e:2b:fa:3a:5b:87:52:5f:
0d:fe:e6:36:1c:d8:98:e9:c8:52:be:97:f4:92:0e:
86:5f:b8:c9:75:4a:b4:46:65:b9:4a:51:35:75:9f:
00:78:89:77:03:d6:31:13:a6:67:a6:8d:6b:69:8b:
8c:04:f3:9f:e9:8d:58:59:22:a7:81:eb:9a:67:55:
21:05:fe:56:e9:b7:f1:30:d4:ec:e0:04:8c:74:0c:
67:08:22:2c:15:fa:67:af:a0:1f:18:2f:b1:45:6d:
70:1a:c5:30:20:77:17:a1:2e:ee:5d:71:a8:7a:8b:
ad:3d:b4:33:e9:e1:8f:d0:6f:e4:4a:50:52:f7:f7:
b1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:33:8C:E5:EC:AF:3F:1F:9B:00:35:FB:75:B8:49:2F:7B:82:A9:E5
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430313a323430303a3a2f33322d3438203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2400::/32
Signature Algorithm: sha256WithRSAEncryption
a5:86:47:1e:e3:f4:9a:19:5e:9d:9f:ed:0f:57:f8:90:5a:10:
1a:62:aa:c6:0b:3f:ad:9f:fa:68:e7:31:ed:1d:7b:85:db:aa:
61:74:77:54:66:9d:3f:3b:65:bc:f9:9e:c1:1a:52:a0:e8:6f:
61:ab:07:c9:1c:9c:66:0b:18:e0:f6:e0:85:ed:c2:61:30:ae:
09:01:83:ac:67:ae:b5:05:c1:cf:54:6b:75:a0:64:3c:e8:00:
02:5b:e6:31:f5:52:9f:c3:8d:ea:11:f7:78:6f:4e:32:50:b6:
91:fb:3f:8a:10:4c:52:44:ac:93:4f:6e:28:49:b4:3b:86:b9:
08:bc:2c:e4:20:1e:ad:18:e6:32:07:88:0c:dd:19:9e:98:f8:
e8:00:91:b5:7e:d2:fc:a8:0a:0f:b1:0c:54:c3:41:e4:8f:d3:
60:40:cf:ba:a4:ff:95:7c:3a:2b:46:2b:d3:f8:36:be:ce:86:
17:bb:47:1b:13:cf:ee:d7:74:de:18:4f:28:7e:94:49:91:97:
b8:05:55:2c:a0:41:18:a8:2a:72:9c:b8:78:31:e6:4b:d5:bd:
f5:85:8b:6b:3f:cd:a2:9f:f6:90:1f:a4:c9:b5:86:58:49:fc:
8b:05:72:43:7c:94:3e:85:cc:d5:14:3b:e7:eb:68:d0:fa:6f:
b3:42:84:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:47:58 2025 by rpki-client