Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: hB17PEtCJXHtTd0Y4OQpJHhxY+uDupt3k39LgXMyKnI=
Subject key identifier: 98:7C:84:F3:9A:35:6E:D2:E8:27:84:71:90:D2:5D:D5:BE:AD:6D:03
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 05D805313DFF5F5670C02DD0C8EA1E9CB687E561
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 02 Aug 2024 12:56:21 +0000
ROA not before: Fri 02 Aug 2024 12:51:21 +0000
ROA not after: Fri 01 Aug 2025 12:56:21 +0000
asID: 153087
IP address blocks: 2404:97c0:3150::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:d8:05:31:3d:ff:5f:56:70:c0:2d:d0:c8:ea:1e:9c:b6:87:e5:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Aug 2 12:51:21 2024 GMT
Not After : Aug 1 12:56:21 2025 GMT
Subject: CN=987C84F39A356ED2E827847190D25DD5BEAD6D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d1:13:ec:6b:58:4d:11:04:93:7a:24:22:b2:
2c:fd:cc:04:2a:49:89:45:d7:f4:d5:fc:08:76:df:
5e:bd:81:3b:3e:2f:71:a3:6a:9c:85:5b:c4:3d:09:
8f:0c:f6:20:39:9e:8f:57:5a:c8:ea:92:52:87:48:
4e:30:c7:fa:0d:93:a0:81:ad:20:0f:c3:93:0d:06:
95:b8:d6:c3:db:91:df:c5:7f:55:16:5f:3b:ec:94:
24:a0:71:ce:4c:3e:81:47:c3:cb:d3:42:7d:1d:14:
b7:07:69:18:92:75:60:bb:fc:b1:05:fb:84:6b:fc:
81:bc:13:38:d3:30:b4:c6:a3:ab:98:e9:03:e7:9f:
9e:82:57:3f:2a:f8:68:b7:f0:05:12:b9:9a:b3:20:
ea:3b:aa:ad:f9:ea:7c:0f:ac:40:76:f7:1f:9f:74:
c8:9a:37:2a:94:83:e9:7b:bf:4c:c9:d0:17:cb:71:
5f:ed:ee:3f:ed:0c:38:17:8b:ba:f5:92:bf:e4:6f:
13:25:e1:49:11:00:30:57:8f:b0:21:08:16:c7:2e:
78:68:58:cf:af:9d:80:db:8b:41:46:83:27:ac:c3:
4b:56:3c:8a:56:9a:8d:b5:41:7c:b7:28:82:38:de:
76:ed:3b:b6:6d:c1:72:3f:06:b6:d1:d7:cf:43:21:
38:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7C:84:F3:9A:35:6E:D2:E8:27:84:71:90:D2:5D:D5:BE:AD:6D:03
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:3150::/48
Signature Algorithm: sha256WithRSAEncryption
b5:fc:b5:2d:d2:a2:71:d8:84:3d:a4:b2:0c:9f:6b:6b:0d:f1:
ce:a1:e3:6b:39:fd:be:a3:0b:cf:dd:1d:1a:79:1e:c7:22:26:
c0:d1:b4:8f:e8:49:f1:7a:09:4e:67:76:6b:cf:4c:c4:b1:c2:
90:51:68:0f:c8:1c:d9:f0:d1:7d:87:8b:3b:74:23:e4:58:c4:
be:5c:3f:26:5a:30:e2:6e:60:bf:70:52:5d:27:a6:63:fb:91:
3f:9f:ef:1f:60:da:dc:8d:73:83:99:de:d8:3a:1e:e7:c1:49:
cc:68:33:d1:fa:d8:7e:11:31:fc:c1:13:50:76:d6:fd:ac:5c:
fc:cd:4c:5a:d8:6e:d2:f6:38:29:ec:84:ec:a8:e0:8b:11:b3:
a8:6b:f2:81:d3:57:13:78:da:a1:e4:27:d1:d5:95:43:60:d1:
ff:71:7e:84:fa:fe:54:6e:eb:45:f5:33:6e:61:cc:86:4b:7f:
74:be:c4:a0:c1:26:65:e3:c8:cd:67:12:0a:1d:70:cd:85:d2:
4f:27:28:b9:61:c5:09:71:c4:20:36:f5:ab:c5:89:e8:2b:2b:
14:41:58:7e:86:f1:a2:40:50:ce:c2:a1:ce:7d:f6:85:a4:8a:
94:b8:af:62:82:4f:fd:55:5d:b4:36:ec:6a:a3:60:fe:fb:34:
51:e9:60:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:18:36 2025 by rpki-client