Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa
File: 323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa (raw, json)
Hash identifier: QdxgP+LIE5vfPbWUuf26VJO1nnYOAzRgL7//6rKYgz0=
Subject key identifier: B4:3F:48:FA:22:2A:EC:0D:B9:EF:90:69:C5:43:09:BF:0E:8A:5D:B4
Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Certificate serial: 7F7915DDEEBBFC63AE27EBB9D215D1E64FB9923C
Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa
Signing time: Thu 31 Oct 2024 10:00:02 +0000
ROA not before: Thu 31 Oct 2024 09:55:02 +0000
ROA not after: Thu 30 Oct 2025 10:00:02 +0000
asID: 55685
IP address blocks: 2404:e100:3003::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:79:15:dd:ee:bb:fc:63:ae:27:eb:b9:d2:15:d1:e6:4f:b9:92:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Validity
Not Before: Oct 31 09:55:02 2024 GMT
Not After : Oct 30 10:00:02 2025 GMT
Subject: CN=B43F48FA222AEC0DB9EF9069C54309BF0E8A5DB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:73:19:f7:12:67:93:00:15:2e:ab:27:65:ea:
d7:25:aa:5f:57:80:18:67:41:ef:74:db:40:4a:fc:
cc:55:66:f2:23:77:a9:17:f3:b3:a8:d4:d6:21:cb:
ad:c9:83:a5:65:8d:52:4d:5e:56:5b:2e:a7:9c:51:
6c:b2:f2:4d:18:45:1f:23:25:18:e5:ec:5e:33:33:
50:2f:c7:c0:0c:a7:15:e6:16:24:b4:fc:78:cc:1a:
2e:d8:cb:dd:cf:ed:d3:d9:63:81:4e:82:13:8f:a4:
0e:51:99:30:17:3b:15:29:0c:d6:0c:ec:01:2a:5c:
c6:b6:b7:20:9b:22:e9:17:fe:b8:14:90:69:dd:12:
73:46:17:66:e6:10:20:7d:ff:9b:06:a3:9d:7c:d8:
ba:4f:43:e7:c1:66:ac:06:2d:c7:d7:16:93:a0:5d:
fb:1f:9a:ed:a0:9b:e5:ea:d7:68:df:4a:3f:da:24:
60:30:d7:fa:cb:8e:bc:b2:53:37:48:d3:3a:c8:76:
bb:e5:bb:00:4d:72:d3:6c:72:cf:48:c8:eb:de:b8:
ce:ac:ab:1e:e7:71:aa:d7:67:a2:f1:85:34:e1:6f:
ed:c7:37:ca:e6:fa:bc:04:c9:0b:fd:2e:da:76:e6:
76:35:96:db:24:9e:58:dd:2e:d6:b7:79:40:70:75:
93:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3F:48:FA:22:2A:EC:0D:B9:EF:90:69:C5:43:09:BF:0E:8A:5D:B4
X509v3 Authority Key Identifier:
keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:e100:3003::/48
Signature Algorithm: sha256WithRSAEncryption
04:e7:3a:6f:f0:c3:54:fb:ea:68:48:b2:9f:a4:99:80:54:c7:
af:ce:34:73:13:d2:3d:a7:63:84:0d:b9:03:16:82:ca:5c:7b:
72:0d:84:17:74:16:12:b8:8b:ac:84:60:a5:d2:44:c2:55:5a:
e3:44:eb:3a:3d:98:bf:4d:25:77:bb:0f:34:6d:cf:17:36:06:
1d:15:39:03:31:2f:1b:95:3e:49:8e:d1:35:e7:58:50:79:c9:
1d:db:a3:cb:d7:fd:ac:15:30:68:72:a3:ca:b5:7a:2a:3b:68:
11:ab:c7:2a:75:02:56:9c:29:47:88:9d:19:49:70:17:17:10:
eb:e4:44:da:a8:05:62:d9:17:a1:66:77:aa:f8:b5:57:16:46:
7b:41:8b:8c:8f:4a:6b:c5:bc:bd:8a:66:87:78:77:29:38:dc:
28:63:97:b9:27:ea:9a:71:98:dc:48:8f:bc:93:9d:94:8c:0b:
2f:37:50:dc:80:ec:f4:5a:42:b9:1e:17:41:2c:52:7f:7f:0f:
2b:3e:10:0c:cd:f7:d1:92:95:a2:8e:b9:4f:1f:09:7b:c8:93:
e4:bd:5c:21:b1:cb:dc:ab:18:c8:4d:c2:f9:f9:f7:3f:bb:c4:
dd:78:f7:ae:c5:0f:20:ab:dd:87:42:c8:e0:30:ac:aa:4c:56:
c6:4e:ed:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:15 2025 by rpki-client