Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: WU9iIJCCEVszUCkVzbrQn4pzh0NjSrijWkQICqlPZH8=
Subject key identifier: FF:A2:BA:F7:FA:6A:FA:63:3F:F7:2F:BF:35:2A:24:35:DA:89:54:93
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 7D9E551797E103E9FCCFC1F2927555CD25233B9E
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:45:19 +0000
ROA not before: Fri 02 Aug 2024 12:40:19 +0000
ROA not after: Fri 01 Aug 2025 12:45:19 +0000
asID: 153087
IP address blocks: 2404:97c0:2182::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:9e:55:17:97:e1:03:e9:fc:cf:c1:f2:92:75:55:cd:25:23:3b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:40:19 2024 GMT
Not After : Aug 1 12:45:19 2025 GMT
Subject: CN=FFA2BAF7FA6AFA633FF72FBF352A2435DA895493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cb:c6:60:82:06:34:22:a9:fb:ca:95:4e:ec:
85:21:7b:25:02:63:5c:f4:c9:9b:72:68:c0:d5:67:
43:e7:d4:ed:10:f8:12:7e:b0:c9:92:a4:fd:27:eb:
40:07:94:c7:4e:79:49:58:83:9c:77:de:4a:79:d4:
81:22:28:79:94:af:1a:46:e8:c3:8f:59:33:14:46:
8b:f6:67:c1:08:4f:a0:f1:e4:1a:21:2a:a6:84:7c:
24:be:40:12:52:cc:32:26:eb:b9:c3:fe:82:bc:e5:
40:d0:d8:08:ca:fe:51:12:25:11:e5:65:53:45:84:
18:f7:38:f4:7d:76:47:9d:6a:72:31:02:bc:be:3f:
5c:22:f5:ba:bd:54:31:cc:d7:1f:d2:67:20:16:f5:
8c:70:99:56:27:90:1e:71:bc:20:bc:90:3a:28:91:
80:38:45:fd:8b:bf:22:4f:ea:cb:6d:52:bf:61:ad:
95:1a:20:c5:4e:19:16:28:75:d4:f0:1d:60:93:2e:
ec:1f:d0:70:5f:3d:3e:a0:f9:5a:5f:9d:92:51:33:
3e:24:f9:5d:e7:a4:9f:93:1a:33:bb:16:f0:13:5c:
01:49:eb:fe:bb:ef:0f:29:ea:88:96:2f:43:f4:54:
96:ab:6c:78:cc:ec:8e:47:48:04:36:0b:ca:d4:61:
83:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A2:BA:F7:FA:6A:FA:63:3F:F7:2F:BF:35:2A:24:35:DA:89:54:93
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2182::/48
Signature Algorithm: sha256WithRSAEncryption
20:c9:45:f4:d6:24:d9:a0:86:70:aa:74:3b:c9:d7:09:25:e1:
8c:b1:c6:79:93:24:77:6a:ef:31:66:8e:73:44:ba:39:75:d6:
73:0a:dc:16:fd:bd:b8:b3:6d:89:f0:c0:b7:2d:38:ff:cc:2f:
62:1b:41:09:cc:a5:d9:a5:95:83:59:80:f4:bc:7d:46:75:47:
7d:e4:f6:46:e1:8b:8d:ba:9b:69:83:85:a2:cb:b7:e5:0b:80:
95:5e:7f:ef:2c:03:59:05:68:a6:0c:7f:74:db:b8:f8:d4:84:
f1:ef:93:74:c1:7a:93:20:e7:1d:91:e0:3a:d1:d7:f0:29:a0:
ab:de:00:d6:27:6e:31:d7:54:33:9a:45:2d:f2:3f:81:b0:c6:
f7:2f:5f:63:fa:96:e1:1d:5e:8a:07:5a:56:12:66:61:0d:01:
9d:2c:17:1b:67:1d:f8:69:97:f1:e2:d7:32:a9:d1:20:77:c3:
c0:64:6b:ae:7d:d6:6c:60:54:ef:34:e2:2a:c1:1f:fe:b3:cf:
5e:09:2f:65:57:db:ed:fb:33:7a:9e:6b:cc:d5:aa:05:cc:c7:
91:b7:ee:e7:69:4a:cd:54:b0:d8:8f:d1:7d:78:cc:d1:c9:57:
e1:a0:f4:8d:e8:16:65:d9:8b:ca:49:cc:6e:51:7f:c3:ce:b6:
32:56:36:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:43 2025 by rpki-client