Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa
File: 323430323a326334303a3a2f34382d3438203d3e20313336383734.roa (raw, json)
Hash identifier: DPykOYeFqNoag7xb92W8/PrEblwWpE1eWB5cwaAPFZY=
Subject key identifier: 53:1B:D9:6F:A7:EA:FB:B8:77:D1:2E:50:60:3B:19:0E:19:08:BE:A3
Certificate issuer: /CN=2993EFF92300988A33773DD8C4B502F74B907112
Certificate serial: 0B701908736511457A7DBA15EF725A56DC386A90
Authority key identifier: 29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa
Signing time: Wed 11 Sep 2024 13:00:00 +0000
ROA not before: Wed 11 Sep 2024 12:55:00 +0000
ROA not after: Wed 10 Sep 2025 13:00:00 +0000
asID: 136874
IP address blocks: 2402:2c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:70:19:08:73:65:11:45:7a:7d:ba:15:ef:72:5a:56:dc:38:6a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2993EFF92300988A33773DD8C4B502F74B907112
Validity
Not Before: Sep 11 12:55:00 2024 GMT
Not After : Sep 10 13:00:00 2025 GMT
Subject: CN=531BD96FA7EAFBB877D12E50603B190E1908BEA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:25:a9:96:fb:3a:ce:4a:77:af:c5:4e:1b:54:
b8:a6:7d:56:65:36:4e:ff:5e:1f:22:a7:91:e2:33:
82:a9:13:ea:99:8a:16:a8:9d:31:3f:b6:1a:65:6f:
ce:44:5c:28:24:f8:a8:6d:89:80:08:d1:94:c1:c9:
0e:85:03:15:c5:0d:82:b8:c1:45:10:15:21:1e:b9:
6c:39:93:e5:17:12:5f:d7:1b:19:48:85:2e:84:28:
7e:92:ef:b0:38:f5:d2:5d:2d:30:05:64:db:5c:f4:
2d:6f:55:cc:84:88:dc:57:a3:44:f5:b1:ec:47:69:
20:e0:22:59:66:84:69:eb:0b:12:8d:98:38:7c:b7:
51:23:71:d5:72:c1:ee:b1:44:3f:f6:65:81:bc:23:
0f:56:06:ec:35:5e:e5:ed:53:f1:6d:58:40:d5:51:
fa:61:e0:75:01:1f:fd:e8:2f:d9:02:a1:23:d9:b4:
b9:d8:b6:d1:0c:d9:a4:59:3c:71:2c:3a:81:d9:ee:
56:29:10:db:d2:41:2f:85:49:79:32:09:53:5e:5d:
9d:71:b0:b7:62:68:fd:0e:ef:13:fd:76:5c:23:80:
c6:30:e8:16:e3:a1:1c:55:0f:85:16:5e:7b:29:73:
38:09:12:b6:30:a4:e1:4e:78:57:c1:76:25:fe:8b:
3f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1B:D9:6F:A7:EA:FB:B8:77:D1:2E:50:60:3B:19:0E:19:08:BE:A3
X509v3 Authority Key Identifier:
keyid:29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/323430323a326334303a3a2f34382d3438203d3e20313336383734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:2c40::/48
Signature Algorithm: sha256WithRSAEncryption
ba:cd:31:06:4b:e4:da:43:68:2a:bc:ce:91:ea:c3:d2:d6:54:
ed:53:38:e5:77:45:d9:99:3a:06:90:bb:7c:c3:a5:12:b4:3e:
8e:5d:a0:66:8b:e4:1a:e4:09:bb:a8:17:4f:35:b7:42:ef:6f:
2d:8a:cc:11:67:11:ca:6c:c0:6a:6e:3a:77:d2:b7:66:e9:63:
09:6d:e1:83:33:b2:ac:d0:8d:8b:c9:24:b9:51:bf:26:71:9e:
4a:e1:23:25:9f:37:8b:d7:36:20:c1:0f:56:0d:8c:4a:c3:d6:
5c:6b:f9:ff:58:a1:52:cd:94:ec:c0:8a:1b:e6:74:7c:e3:77:
dd:d0:4a:a2:b5:ac:1c:aa:bb:f3:9d:89:c9:c0:0f:9e:d7:be:
74:d6:f0:f4:f7:42:aa:73:8b:92:49:72:3a:45:fd:8c:62:f7:
51:1c:33:49:8c:26:ec:aa:d3:78:31:15:6d:c7:9f:e4:98:69:
c7:3f:ba:8c:bf:91:34:f4:79:63:0f:c5:f9:41:5f:d6:0f:76:
41:c3:39:82:01:5c:d5:24:ee:1d:6e:80:94:e4:48:1d:36:e5:
d7:4f:51:9c:3e:8a:13:3f:16:c7:1a:b2:75:f6:30:da:4c:fd:
97:d2:e4:b2:14:33:b0:49:2a:7c:00:eb:29:d8:6a:1b:3e:ff:
c0:75:f2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:03:43 2025 by rpki-client