Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa
File: 323430323a616134303a3a2f33322d3332203d3e20313337333330.roa (raw, json)
Hash identifier: e/yjVod/7lR4uj/RENV7JfH5TX+LSB9hPgqV7eSiKp4=
Subject key identifier: 04:19:68:3E:BD:41:73:16:39:2A:9B:36:1F:E2:F1:03:38:55:22:43
Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Certificate serial: 4C33D6CFE63E62B1F1EDBE9C7D2EA8DAF15249F7
Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa
Signing time: Fri 26 Jul 2024 03:00:00 +0000
ROA not before: Fri 26 Jul 2024 02:55:00 +0000
ROA not after: Fri 25 Jul 2025 03:00:00 +0000
asID: 137330
IP address blocks: 2402:aa40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:33:d6:cf:e6:3e:62:b1:f1:ed:be:9c:7d:2e:a8:da:f1:52:49:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Validity
Not Before: Jul 26 02:55:00 2024 GMT
Not After : Jul 25 03:00:00 2025 GMT
Subject: CN=0419683EBD417316392A9B361FE2F10338552243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:bd:33:db:de:1c:a9:e7:41:b2:2a:1f:e8:
83:49:4f:de:cf:8e:d4:96:6b:bf:93:72:29:5d:49:
76:38:60:e7:91:ef:3f:ca:28:88:3c:c4:b3:64:21:
64:f4:57:99:d8:30:e1:3d:1d:ff:2e:f1:ae:15:9a:
7e:91:7f:48:bf:76:9c:17:ad:32:79:32:46:87:e8:
5d:9c:e2:36:6b:89:59:fc:91:8e:27:d6:6f:51:2b:
97:58:23:ce:a6:7b:ee:43:04:ec:85:6a:b1:f4:59:
f9:1f:f6:08:7c:28:30:9d:5b:33:2a:7c:c4:b4:1c:
f1:e3:45:b9:9b:86:f0:3c:64:03:7e:7f:3d:32:0f:
3a:0d:ad:c6:0d:fa:21:78:f0:b7:5b:ce:0c:ac:c6:
da:1a:0c:f9:e7:a8:02:bd:04:88:2b:17:4a:cc:a2:
15:8c:c5:08:fa:4d:3f:a9:43:b3:34:e0:04:e1:e8:
dd:c7:0b:a5:36:64:cb:0e:58:bb:2b:98:92:5e:40:
78:8a:00:d3:0d:0d:ca:c1:88:23:d5:0a:9b:3f:6d:
81:dc:3f:e1:a1:4b:63:04:af:44:ce:c4:8d:3c:8c:
38:45:23:15:29:35:1b:e0:e8:51:ee:5a:cc:0c:ed:
88:f5:b6:24:30:f1:65:fa:49:93:b1:5d:3a:01:87:
bb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:19:68:3E:BD:41:73:16:39:2A:9B:36:1F:E2:F1:03:38:55:22:43
X509v3 Authority Key Identifier:
keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:aa40::/32
Signature Algorithm: sha256WithRSAEncryption
83:9d:3d:93:51:4a:65:6e:14:44:99:64:c3:2d:e8:3f:6e:5e:
7d:e1:a0:53:da:40:15:ee:cc:35:d9:ae:c3:a4:cf:46:9d:0a:
de:ac:f1:85:5d:e7:ce:c6:91:31:d4:f6:ea:99:af:d8:1d:59:
e3:f1:7d:b2:63:30:02:de:7c:8d:68:00:f8:0f:75:a2:2a:66:
09:dc:17:60:d9:ac:a2:02:2c:2c:3d:1c:3a:fd:dd:d4:11:f2:
c1:8e:65:84:f8:b1:33:64:81:fb:ce:30:80:df:98:a2:62:80:
37:44:d8:f1:a7:4c:67:31:64:1f:f5:d1:d0:ea:72:bb:0d:8f:
62:af:a3:e9:fe:49:a4:5b:17:86:04:3f:e0:a4:ee:f1:c8:63:
49:9f:a1:61:c3:c4:54:9e:0e:21:fc:d7:40:92:49:1f:d5:68:
cb:31:28:4f:14:7a:45:56:a1:38:cd:a0:f2:83:c0:76:44:c9:
a0:7d:51:64:03:65:20:87:70:26:72:61:3c:7c:1a:2e:f8:c4:
b8:1e:56:1e:17:df:48:b3:10:d4:28:12:88:e1:8e:5c:ea:c3:
fa:f7:3f:4e:b3:43:dd:31:22:b6:a9:a2:ee:37:c9:bd:44:75:
07:4a:38:04:ce:91:51:a3:33:e0:6b:65:70:bb:9a:08:e4:3c:
60:62:25:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:34:09 2025 by rpki-client