Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: NFkRw8bwxFLIifX7aQiKZVV8CWqOItWrH8iNT2mFb50=
Subject key identifier: 60:67:8A:34:96:2C:A9:A7:4F:1D:78:0B:76:E6:EA:73:4F:E3:33:58
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 206FB8037013DD579011F4466EFE2CEAED4F11EF
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa
Signing time: Thu 08 Aug 2024 01:49:10 +0000
ROA not before: Thu 08 Aug 2024 01:44:10 +0000
ROA not after: Thu 07 Aug 2025 01:49:10 +0000
asID: 153087
IP address blocks: 2404:97c0:1530::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:6f:b8:03:70:13:dd:57:90:11:f4:46:6e:fe:2c:ea:ed:4f:11:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 8 01:44:10 2024 GMT
Not After : Aug 7 01:49:10 2025 GMT
Subject: CN=60678A34962CA9A74F1D780B76E6EA734FE33358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:43:ae:08:3f:aa:2c:f7:55:92:56:80:ec:3c:
f3:52:45:4f:63:6b:1c:95:f7:f5:35:42:9c:9a:94:
78:24:23:09:10:36:89:ee:3c:9e:07:29:a4:67:0f:
c6:26:e6:2b:4d:05:48:e2:13:2d:9e:87:b1:25:63:
be:d9:79:fc:39:bf:51:14:fc:43:f3:8c:43:fb:12:
5b:db:9f:1f:85:e0:b0:61:a1:19:d5:ca:01:0b:28:
39:7c:73:42:f4:20:f1:90:3c:3b:39:a3:03:86:dd:
e0:df:37:9f:90:d5:ea:fb:85:48:3c:6a:32:e4:bd:
18:50:78:db:08:60:7d:8d:7d:4b:60:e2:d5:ec:2c:
de:db:fe:7a:73:31:b4:d1:b8:c8:43:4a:8f:15:2d:
82:19:ca:60:25:48:76:ef:47:ae:19:d7:47:fd:c7:
46:d8:69:75:96:2e:db:82:eb:08:e3:c4:77:ef:0d:
b0:e4:33:a1:4b:73:50:09:a9:97:de:6f:a7:ae:ce:
de:4f:89:70:49:46:66:57:29:f7:5d:2b:84:9a:ef:
51:06:51:a2:c0:19:bd:ff:75:8e:05:7b:0f:17:7e:
21:22:18:0a:dd:90:f2:0f:1e:ce:5a:29:5f:55:4f:
87:cf:9a:2f:13:e6:5d:a6:4d:e0:f9:cf:93:cc:bb:
33:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:67:8A:34:96:2C:A9:A7:4F:1D:78:0B:76:E6:EA:73:4F:E3:33:58
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:1530::/48
Signature Algorithm: sha256WithRSAEncryption
06:63:a1:7b:f4:9a:9f:73:14:cc:ab:c1:86:ae:2b:21:7e:89:
dd:37:55:62:7a:c6:4d:c5:02:18:24:10:5a:24:1e:fa:8b:df:
eb:b2:b4:c5:3f:68:ae:02:23:73:c8:61:60:e5:89:a4:78:1d:
97:1d:1a:22:c3:d3:3f:db:98:bd:34:c6:4f:d9:75:bb:14:05:
70:87:e0:a3:db:20:6a:1f:f0:b2:46:02:4d:a1:15:d4:3b:21:
58:eb:52:42:66:26:2f:62:bb:5c:b0:cd:fd:e9:6a:18:e5:88:
32:6c:54:23:8c:cd:03:5b:fe:4d:43:62:19:81:98:97:6e:55:
83:d8:fd:6d:ae:a1:bc:1a:4e:2c:78:e0:48:24:ee:50:a0:c8:
2c:f9:79:15:0c:9d:a1:e3:8c:e2:da:13:bf:3b:70:5a:ae:0f:
79:61:4a:ea:a3:16:f4:76:34:08:54:c3:57:24:29:e7:73:b4:
88:1a:54:42:3c:9d:ed:4c:29:35:ca:4c:a4:66:04:99:31:bf:
ae:ad:de:ab:67:50:f9:2e:be:9d:15:f6:56:b6:a7:02:29:15:
69:6a:9d:b7:be:af:91:ce:a3:2c:05:44:a1:02:67:4e:f2:65:
8d:46:4a:01:63:b6:b4:6e:d0:26:c5:be:0b:09:8a:3d:68:f5:
6e:1c:40:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:17 2025 by rpki-client