Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: OientE2JzIoeW6YBoPqoL9eo6M30m404IRoS8tB7bdc=
Subject key identifier: 34:87:AD:D8:EC:AE:BD:40:B0:F9:94:A8:D3:E9:C4:75:DF:7C:17:1F
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 65307A18525F9FD3A23EEAC8E2A363C7A734D54B
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:56:04 +0000
ROA not before: Fri 02 Aug 2024 12:51:04 +0000
ROA not after: Fri 01 Aug 2025 12:56:04 +0000
asID: 153087
IP address blocks: 2404:97c0:3146::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:30:7a:18:52:5f:9f:d3:a2:3e:ea:c8:e2:a3:63:c7:a7:34:d5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:51:04 2024 GMT
Not After : Aug 1 12:56:04 2025 GMT
Subject: CN=3487ADD8ECAEBD40B0F994A8D3E9C475DF7C171F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:77:be:24:03:6a:c2:45:95:a8:a0:c4:12:c9:
ec:0f:d2:cb:c4:1d:25:25:d0:05:58:0c:ea:b7:aa:
1c:85:1c:10:34:e6:53:2d:5a:12:ad:20:2c:e4:ac:
10:bb:b7:b6:18:7c:28:af:39:47:dc:78:f1:fc:11:
d0:18:c7:e5:fb:eb:7b:f0:c2:3a:68:c4:a6:57:09:
50:27:42:d9:03:15:13:5f:52:13:ee:0c:de:14:34:
17:09:fa:39:5d:8a:ba:2e:49:93:c5:cb:8a:03:e5:
63:7d:37:06:51:02:2f:4a:22:f9:0b:19:af:3e:66:
94:7c:73:89:a9:e1:a8:0f:ae:59:9b:f9:6b:b6:e8:
15:36:bc:d8:8b:43:e7:2e:7e:77:a9:ce:7d:b7:4c:
59:bc:6d:c9:80:f6:ac:92:25:e5:47:ab:05:d1:cf:
95:41:15:fb:f9:e4:7b:8a:5c:20:27:4f:67:c9:10:
0c:41:01:b9:05:52:2c:15:98:68:38:57:8a:15:27:
31:e5:27:12:8d:b1:23:c6:01:31:ab:8a:a9:d4:4c:
51:8e:23:bb:85:d9:86:58:df:07:df:48:39:09:b1:
55:e3:70:e7:6b:be:66:a6:46:14:cd:3d:fc:2a:dd:
0d:fe:9d:0e:57:7d:de:be:f5:6f:92:87:60:64:05:
71:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:87:AD:D8:EC:AE:BD:40:B0:F9:94:A8:D3:E9:C4:75:DF:7C:17:1F
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:3146::/48
Signature Algorithm: sha256WithRSAEncryption
28:aa:3b:71:12:ce:24:f7:1c:90:14:d0:02:91:4c:25:35:c2:
85:f7:2e:09:45:0c:1f:7a:f4:db:e8:09:5f:23:88:4d:9f:eb:
4a:7f:e8:7e:1f:58:bc:30:9f:28:5e:e9:5d:0f:de:15:6d:9f:
81:fe:18:c0:09:d1:80:43:83:8a:a2:a3:60:c6:57:4d:c6:e2:
76:c7:0a:b9:d2:33:f5:19:0f:43:d1:2f:6b:7c:4b:27:0b:83:
46:d8:66:16:65:90:a9:fe:27:c1:e0:f0:2d:9c:f5:ef:d4:31:
29:cc:67:a4:fa:da:af:b4:0c:67:7d:a3:a2:28:95:7b:4f:30:
bf:bc:41:83:42:b2:57:d6:13:67:ea:b2:c3:83:50:ce:25:22:
ea:dc:ab:de:b0:52:a9:13:a3:9d:e0:a1:92:ba:04:1d:7a:ce:
38:93:c3:af:30:8a:44:ff:92:f3:9d:18:a2:34:8d:34:e5:ad:
76:79:69:5f:e0:5f:bd:a9:8f:9f:ef:92:f0:4a:af:7c:31:2c:
db:c6:91:c0:97:87:39:4a:61:84:55:2d:a2:24:da:a5:17:d7:
79:f1:35:2f:8a:0b:94:1d:04:82:ef:dd:28:60:1d:19:ad:87:
37:cf:1d:6c:be:86:b6:c8:39:b6:33:d4:92:2c:29:28:54:68:
ef:52:f1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:22:18 2025 by rpki-client