Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa
File: 323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa (raw, json)
Hash identifier: +8j/+dJRSTef74GymJkmGO/MtwJTWy9qHlKrlCS2oR4=
Subject key identifier: 72:48:3A:A2:B3:56:35:D9:36:4E:0D:0B:69:8D:01:8F:A0:AA:2C:4D
Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987
Certificate serial: 673378B84D12D7D9B7BE010836D3A0747B399FB3
Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa
Signing time: Tue 21 Jan 2025 09:00:01 +0000
ROA not before: Tue 21 Jan 2025 08:55:01 +0000
ROA not after: Tue 20 Jan 2026 09:00:01 +0000
asID: 134637
IP address blocks: 2403:e380:1003::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:33:78:b8:4d:12:d7:d9:b7:be:01:08:36:d3:a0:74:7b:39:9f:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=027DBEC91021154263BB0CF1565833705023D987
Validity
Not Before: Jan 21 08:55:01 2025 GMT
Not After : Jan 20 09:00:01 2026 GMT
Subject: CN=72483AA2B35635D9364E0D0B698D018FA0AA2C4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:30:6e:37:b2:eb:d6:6c:64:7d:94:b1:5b:01:
18:a5:b8:02:c1:39:fb:f5:07:f9:f0:cb:18:93:5a:
0d:26:a6:e3:16:76:50:5f:6f:74:69:ea:e5:4d:5e:
8c:d1:d3:68:70:db:de:74:23:39:43:cd:a5:b4:b9:
4c:13:83:72:f5:29:a7:e2:0a:25:f8:64:12:24:24:
b2:cc:1a:bd:7e:26:8d:6c:c1:78:50:bd:db:4b:43:
d0:e6:94:56:75:41:ba:d8:24:8c:76:50:c9:41:00:
a7:e8:66:29:69:40:ad:35:58:f6:f9:3a:1b:67:54:
62:46:2c:a6:f4:91:79:38:f8:41:cb:d7:1e:17:9c:
11:57:f3:3f:a1:be:80:bf:79:ed:ae:df:a1:51:68:
29:f9:d0:da:12:94:58:23:76:39:8f:da:8e:f2:c8:
a9:66:56:b6:0a:26:81:80:c0:81:9b:73:82:a1:2a:
96:35:2c:13:c8:6f:49:d8:0c:39:cb:bb:0c:74:ba:
4e:ab:44:f2:4c:06:aa:0c:24:f0:da:ae:69:58:c6:
c4:83:7e:db:32:77:6e:a8:04:ca:dc:b6:3f:e3:7a:
2b:42:86:97:1d:b1:77:11:d5:c8:11:42:58:46:c9:
6a:6c:90:1e:f3:a0:61:2d:df:2d:75:d6:48:bd:e2:
94:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:48:3A:A2:B3:56:35:D9:36:4E:0D:0B:69:8D:01:8F:A0:AA:2C:4D
X509v3 Authority Key Identifier:
keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:e380:1003::/48
Signature Algorithm: sha256WithRSAEncryption
55:96:eb:ad:9e:dc:df:16:8f:41:f1:5e:8f:ab:45:40:91:27:
1e:4e:94:1f:af:c7:aa:2e:14:6c:16:66:51:74:cc:02:0a:7e:
08:44:df:e7:ed:94:27:9f:b9:be:3a:f7:31:b1:b3:d9:a8:20:
15:2d:66:6e:37:39:59:19:7b:08:a1:48:16:e6:27:aa:bc:a5:
4e:bb:ce:03:c4:73:a0:77:90:b3:1e:af:53:dc:c7:1d:ca:10:
d2:9d:43:e0:c6:a8:01:24:2a:c1:14:c6:68:cc:1c:ff:4e:c1:
14:43:f3:29:0a:3d:f8:7a:85:d7:0a:02:91:b9:16:82:0f:6a:
f5:27:4a:35:81:bc:c4:2f:c5:e1:26:44:76:b1:ca:6d:92:3d:
6b:45:a5:dc:91:50:dd:b4:9f:49:7c:e6:8d:8c:47:37:e3:55:
90:73:05:4c:45:3f:80:a1:56:de:b2:f7:59:92:a7:40:8c:55:
4d:cf:15:76:65:69:7f:38:70:5b:5c:58:d8:cd:81:94:51:62:
ae:c6:e8:6b:6b:89:68:4c:bc:2f:74:0a:ab:bc:26:0e:c0:fa:
2b:5b:22:d9:bf:e8:fc:77:f2:c9:39:2e:14:d3:67:3e:b8:d1:
12:56:ef:30:3e:08:a4:e0:a1:8b:cf:0c:2e:72:c9:3b:3f:b6:
63:60:e0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:34 2025 by rpki-client