Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: Nx3qQJMdNLWU3WsVT7wiF0FSDjf5gMJBP4h96zNXRt8=
Subject key identifier: C4:21:26:19:76:53:77:AD:94:CE:60:F3:5A:0A:5A:25:44:1E:08:C6
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 247C68A1B8BC56EC31C2A4C4A4EB5D0E7742C30C
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:54:40 +0000
ROA not before: Fri 02 Aug 2024 12:49:40 +0000
ROA not after: Fri 01 Aug 2025 12:54:40 +0000
asID: 153087
IP address blocks: 2404:97c0:266::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:7c:68:a1:b8:bc:56:ec:31:c2:a4:c4:a4:eb:5d:0e:77:42:c3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:49:40 2024 GMT
Not After : Aug 1 12:54:40 2025 GMT
Subject: CN=C4212619765377AD94CE60F35A0A5A25441E08C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0b:03:54:ea:84:8d:9e:eb:ea:0a:94:c2:8a:
13:1f:9e:01:d8:13:b0:fe:cb:d2:71:1b:3d:60:eb:
8a:89:8e:28:7a:ad:23:8b:6d:f7:69:95:31:85:72:
69:08:40:cb:1f:45:5b:65:3c:9a:87:19:68:a1:8e:
69:68:ea:47:72:e5:cf:b6:ad:15:92:31:d3:a8:8e:
73:4a:2e:83:52:b3:10:16:ea:92:81:c0:d7:51:c9:
8a:34:bf:06:f6:df:b5:16:df:a9:da:07:28:27:1f:
9f:38:65:e0:d2:b3:86:4e:c1:61:3e:9b:06:20:b6:
c2:8a:2c:3d:f1:88:83:80:db:41:8e:00:eb:12:1b:
e0:c5:17:ef:8b:73:65:2e:cd:70:15:b3:46:07:ea:
81:6e:a9:82:ee:52:66:a5:34:cd:30:8d:4c:4f:fe:
a0:65:1e:c6:03:e0:37:19:33:f3:06:78:33:dc:52:
76:d3:06:6b:06:e3:bc:de:84:56:06:4e:95:b2:ab:
36:66:23:38:5d:e0:10:79:09:4b:c5:43:4b:5e:07:
a1:86:b3:c9:90:d7:9a:fb:08:31:15:79:a6:15:e7:
66:f8:85:d2:c8:55:d3:5d:79:70:07:f0:9b:e0:21:
0e:ee:78:b7:a2:4f:63:11:8c:b5:14:99:44:c0:ed:
12:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:21:26:19:76:53:77:AD:94:CE:60:F3:5A:0A:5A:25:44:1E:08:C6
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:266::/48
Signature Algorithm: sha256WithRSAEncryption
39:30:77:33:8e:5a:e3:4c:f1:15:7c:32:3f:97:56:a1:87:23:
f7:37:ea:37:fb:cb:72:08:27:30:b3:9e:83:7d:94:f0:07:56:
27:4a:7b:9a:19:75:e3:28:f9:39:96:4f:21:66:96:c2:63:1e:
30:0e:47:44:f0:9c:77:01:82:a0:96:9c:d7:f3:05:e7:55:cc:
bd:12:db:ce:ae:ee:32:f1:8b:76:30:94:cc:6b:c0:ec:bb:98:
b2:bf:25:db:c8:1c:2f:67:10:1f:92:c6:9c:08:32:9b:97:03:
fc:35:10:14:07:a2:a1:dc:86:c3:5f:dd:b2:af:b7:2e:4f:e9:
3b:fd:d8:6c:e5:94:22:e7:a4:bc:44:28:a0:c1:f7:07:1b:d1:
1c:08:86:d4:55:e8:76:78:a8:ca:24:31:dc:e1:11:5d:a9:66:
af:fc:2a:4b:f9:c6:10:44:b8:95:9f:e1:a4:c3:88:8a:1d:a3:
ee:0b:7d:2b:60:0b:10:09:ee:8c:11:4e:4d:b4:41:be:91:ab:
de:a8:b4:f5:02:6f:04:82:80:0d:9c:bb:62:68:32:bd:d0:d8:
58:e9:75:b0:df:b0:7f:c2:9d:0d:75:25:0e:5d:74:dc:6b:4d:
52:0d:ac:67:fc:4b:05:e5:7f:e7:4b:54:c0:91:42:fb:bb:e5:
91:f3:e4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:28 2025 by rpki-client