Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: 12pdM9rfbbkYajK/nwmDGtWUUhxH3JX87vj6ihCil6g=
Subject key identifier: 55:08:E6:62:1A:C4:49:62:DA:F9:37:33:8E:BB:1D:28:0A:F2:1F:0D
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 47F58F0ED5D615FF69CE90CE94DF23570D3C2369
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:48:14 +0000
ROA not before: Fri 02 Aug 2024 12:43:14 +0000
ROA not after: Fri 01 Aug 2025 12:48:14 +0000
asID: 153087
IP address blocks: 2404:97c0:2230::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:f5:8f:0e:d5:d6:15:ff:69:ce:90:ce:94:df:23:57:0d:3c:23:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:43:14 2024 GMT
Not After : Aug 1 12:48:14 2025 GMT
Subject: CN=5508E6621AC44962DAF937338EBB1D280AF21F0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1c:7e:e9:cc:31:dd:48:2c:d7:39:1a:f9:7f:
a8:04:e3:44:a2:5a:d1:bf:ab:8d:49:40:61:42:72:
e4:1a:60:2f:e4:77:31:8d:a1:6f:24:c5:91:e2:8e:
64:5f:13:ea:d2:7a:8e:c4:88:25:8d:49:cc:a4:67:
c8:48:5d:f2:1e:4c:9e:14:03:5f:8b:fc:f6:b8:29:
4c:df:e8:5f:1f:20:80:00:fa:a2:9b:d3:6f:8b:ae:
eb:cf:99:34:94:68:78:e6:89:e5:0e:51:0e:01:3e:
b9:81:77:96:46:ec:3f:e1:ae:47:e4:33:28:c7:8c:
db:b2:59:73:eb:59:65:b4:e4:f9:5d:8d:9a:14:40:
4b:38:f8:28:2b:89:2e:04:69:f0:8d:1f:39:78:31:
32:aa:be:1b:5b:65:00:df:e2:3c:00:4e:ba:c7:0c:
67:93:b4:b1:90:d4:96:6f:83:b1:02:dc:d2:4c:a0:
fe:26:63:ce:65:11:b0:88:f6:c7:02:2e:a7:a7:23:
e7:62:be:ee:fc:dc:38:5d:6b:18:b5:94:03:62:57:
de:62:b3:5f:cc:58:6c:9a:6a:e1:ab:e2:0b:48:e6:
46:ff:a2:2d:3c:5d:c4:ec:91:be:2f:a8:94:a0:00:
a8:18:f8:f9:2d:94:9d:2a:3e:13:4c:46:91:ae:08:
46:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:08:E6:62:1A:C4:49:62:DA:F9:37:33:8E:BB:1D:28:0A:F2:1F:0D
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2230::/48
Signature Algorithm: sha256WithRSAEncryption
2d:27:c6:bc:6d:6e:4c:11:ee:64:1c:e0:93:cd:70:98:9f:6e:
c0:bd:29:4a:aa:1b:29:34:c7:4b:40:87:d1:ab:6e:94:1b:44:
40:ec:56:93:1c:92:62:61:c5:5a:fa:82:a8:8b:7a:c6:49:1e:
9c:76:44:5b:5c:bf:78:99:60:1d:4b:a7:d6:0b:4c:76:7b:b1:
44:0d:b8:1e:f8:6f:6c:07:c7:c2:ce:f1:45:ba:89:57:0a:2b:
38:ed:80:ed:3a:1d:1b:72:95:4c:19:f9:d3:a0:bf:07:22:6f:
b6:fa:10:d7:5b:d5:89:d2:8b:ea:11:d3:20:97:66:ca:82:3b:
76:52:3e:6b:f2:2b:c7:e9:43:d8:29:87:ba:a1:1b:b9:bc:d8:
00:97:4f:ee:c1:cb:11:d5:e9:35:4c:94:0d:45:86:6b:7a:00:
3e:49:e1:3b:ab:ab:6f:11:54:e2:be:6c:f3:e7:54:4a:dd:85:
36:83:32:80:05:f2:6a:56:be:cd:65:4e:3f:4f:64:5c:c3:ce:
e4:72:f8:79:23:06:2b:99:d2:ee:97:35:b5:34:cc:81:d5:44:
a8:5f:82:e1:6e:f8:80:24:9f:17:c4:bd:0e:d2:1c:a5:6b:d5:
31:25:97:86:8f:bf:8a:fc:cc:fc:87:08:0c:86:c3:a9:80:17:
8f:81:07:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:23 2025 by rpki-client