Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa
File: 323430303a666230303a3a2f33322d3438203d3e203535363730.roa (raw, json)
Hash identifier: lgxk4KiMeAbMInJr9CjWAOKKcw6Ql0u5vJeO30mSdIc=
Subject key identifier: ED:19:22:C4:F8:51:82:80:83:FB:6E:16:B4:9E:01:08:E3:F5:4F:D8
Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E
Certificate serial: 0C105517A26E33BD63C4A00F4813AC6FCCBF91D2
Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa
Signing time: Tue 18 Jun 2024 02:00:01 +0000
ROA not before: Tue 18 Jun 2024 01:55:01 +0000
ROA not after: Tue 17 Jun 2025 02:00:01 +0000
asID: 55670
IP address blocks: 2400:fb00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:10:55:17:a2:6e:33:bd:63:c4:a0:0f:48:13:ac:6f:cc:bf:91:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E
Validity
Not Before: Jun 18 01:55:01 2024 GMT
Not After : Jun 17 02:00:01 2025 GMT
Subject: CN=ED1922C4F851828083FB6E16B49E0108E3F54FD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:69:14:9e:2a:c2:26:c4:7f:02:05:bd:eb:2c:
5f:1a:f5:6b:fe:17:74:e0:43:37:be:f5:00:bd:a2:
76:20:56:26:26:3a:26:c4:c3:a4:10:41:2e:59:6c:
de:46:56:a8:c5:b1:08:44:1c:c6:51:6f:5b:fa:12:
c6:55:81:dd:4c:e5:e2:66:04:4c:db:01:bf:a0:77:
bf:5b:3a:44:e0:81:8b:9f:5b:b8:4e:3d:e8:75:7f:
35:b1:7e:42:94:f8:fd:99:19:db:de:2b:cc:53:2c:
69:8b:07:c0:f9:96:ae:45:b4:5d:f6:f6:fd:89:72:
b0:79:a2:b3:16:33:74:61:ec:60:99:a9:20:40:aa:
34:29:a0:6d:be:3d:d0:d3:bb:ad:ec:c7:e4:5b:3d:
49:ae:ea:ac:9c:ca:1c:1c:6e:1a:7b:b1:3c:d6:ff:
ae:a6:5a:33:9c:c0:51:e7:be:f8:d9:45:57:77:d9:
1b:2a:39:cb:cd:e8:43:72:9e:a5:31:37:af:79:95:
a9:91:6a:ae:3a:da:79:3b:07:e8:94:1f:6b:29:44:
64:b1:b0:b7:84:09:63:0a:b0:7a:4f:36:b5:f9:a8:
db:70:1e:eb:96:03:5c:94:56:32:e7:5d:9e:3f:6b:
ef:48:ed:43:c3:45:1d:02:90:9a:8e:57:a0:8c:fb:
cd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:19:22:C4:F8:51:82:80:83:FB:6E:16:B4:9E:01:08:E3:F5:4F:D8
X509v3 Authority Key Identifier:
keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:fb00::/32
Signature Algorithm: sha256WithRSAEncryption
08:fc:f2:5c:b8:48:7b:e9:eb:41:23:bd:49:55:40:c9:8c:57:
8d:7d:a0:68:1f:24:2e:33:9a:15:e9:18:f0:65:e3:af:c4:05:
5f:0a:b5:8f:3c:6b:e7:bc:6f:2f:79:d7:04:d6:48:f7:3b:fd:
31:0b:06:f0:00:3d:41:e3:0b:95:a5:ec:9e:c9:2d:e7:72:06:
b5:88:e9:de:6d:4d:93:e0:4f:5b:35:c7:17:b1:83:69:d4:e2:
ee:49:1c:5f:ab:a3:c1:d8:ab:0b:5b:d8:6b:9d:cf:ad:c6:d7:
5e:70:f1:cc:67:a8:e6:16:5a:a6:2f:10:e7:94:f2:55:52:ea:
f6:e7:9e:2c:78:b4:27:41:02:ff:17:23:5c:71:88:43:54:89:
52:7a:e7:86:c3:dd:22:87:9e:b2:83:7e:b2:27:e3:cd:b2:b7:
c5:a4:62:63:61:2d:12:1c:70:a8:78:46:71:b0:40:31:19:4b:
19:a4:7b:f6:52:b3:f3:66:e6:13:a0:9d:ba:c5:97:c3:bd:b7:
16:41:47:f2:ac:72:2e:79:df:ce:fe:21:9e:28:27:66:ce:58:
ec:99:2e:1c:e9:cb:4e:f5:de:1a:22:f8:b9:bc:89:a3:c5:16:
0f:7e:d9:50:82:3f:e4:64:31:91:15:89:aa:8d:69:bc:89:59:
18:7c:ac:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:24 2025 by rpki-client