Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa
File: 323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa (raw, json)
Hash identifier: xT7ihnYBd4rPeXcE6bxebb3PZ9+Wox5KB2ZBowr8kH4=
Subject key identifier: 87:06:1E:05:FA:42:C6:88:99:C9:C0:9A:04:C7:25:25:B7:BF:61:75
Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Certificate serial: 5BBCED1DEF290EE7BA70E8D0A88B068753EF8478
Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa
Signing time: Thu 18 Jul 2024 09:00:00 +0000
ROA not before: Thu 18 Jul 2024 08:55:00 +0000
ROA not after: Thu 17 Jul 2025 09:00:00 +0000
asID: 38759
IP address blocks: 2001:d68:7::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:bc:ed:1d:ef:29:0e:e7:ba:70:e8:d0:a8:8b:06:87:53:ef:84:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Validity
Not Before: Jul 18 08:55:00 2024 GMT
Not After : Jul 17 09:00:00 2025 GMT
Subject: CN=87061E05FA42C68899C9C09A04C72525B7BF6175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:25:9b:21:dd:20:b8:14:cd:69:3d:f0:a7:dc:
ba:d6:2d:a5:0d:34:9a:dd:8a:fe:8f:4e:4a:ca:06:
4c:89:61:5f:66:e1:26:47:7c:ed:16:ba:de:02:6b:
63:67:cf:0c:60:35:24:c7:c9:80:26:9d:de:15:89:
f5:97:b3:93:96:31:46:bb:30:92:52:d9:1f:b4:35:
a4:73:ed:24:6f:f7:c6:45:8c:35:e2:63:94:ed:87:
76:41:6b:f6:2b:29:4d:0e:1d:85:91:ca:fa:dc:56:
0c:27:87:de:b2:ef:71:6f:0b:bb:1e:16:77:55:9a:
96:d3:fe:cb:4a:08:a7:1c:d0:3a:e8:68:18:7f:bf:
d4:4a:f4:ef:15:69:f3:a8:f5:48:18:35:3c:76:a6:
7c:74:6a:ad:41:32:9a:37:3b:18:36:bc:8c:60:d5:
b1:3f:0b:67:10:f3:29:63:37:b4:41:0b:81:25:4a:
ae:a7:78:a6:e4:7c:02:ad:a5:2b:7b:af:cf:8c:4f:
26:3d:dd:0d:57:7a:ab:b3:42:1a:53:9c:a4:ce:6e:
47:4a:41:1f:a6:09:b4:15:86:ff:73:cd:c2:30:e3:
a3:ae:a9:6a:6b:d6:0a:a1:c0:92:52:6b:d2:d2:bc:
5b:6e:2d:59:fc:fb:8b:03:fd:b4:55:ed:1e:76:c4:
88:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:06:1E:05:FA:42:C6:88:99:C9:C0:9A:04:C7:25:25:B7:BF:61:75
X509v3 Authority Key Identifier:
keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:d68:7::/48
Signature Algorithm: sha256WithRSAEncryption
3e:f8:c8:32:0f:9d:9d:ce:ae:0d:f6:fe:21:74:72:7d:3a:c0:
c2:8a:54:3a:85:08:c3:4c:d9:62:2d:d5:0a:92:94:dd:ee:77:
75:3c:9b:e0:9a:c2:28:b2:f7:31:c3:9d:34:82:59:b2:01:48:
d5:d5:9c:15:3a:48:3c:73:3f:5b:69:ef:31:2d:f7:05:81:93:
5d:b2:50:23:f1:6c:5a:7c:82:09:fc:dc:82:5c:94:dc:14:a7:
18:eb:f7:df:90:0b:2c:1f:68:b3:0a:83:29:98:00:74:81:c9:
ec:52:4c:f1:03:66:67:85:de:e6:c6:08:3b:fd:6c:f7:64:d5:
24:2d:31:17:de:53:f3:30:09:e6:75:fe:25:6a:e0:c8:84:71:
bb:c1:be:6c:6e:ae:2b:1c:c0:50:53:f2:52:29:10:cd:29:13:
a9:a0:1b:41:d2:ca:a8:62:06:a0:5a:9d:a9:55:5b:76:a2:33:
37:46:0f:81:df:22:9b:58:71:d7:bf:a9:7b:e2:11:60:be:88:
84:1a:1a:30:c1:49:28:a6:ef:2f:06:81:2d:4f:4f:48:99:e3:
76:25:c6:2a:9f:4d:2a:ac:37:8e:3f:5f:bb:5d:8d:d7:2f:33:
a7:36:51:02:ea:20:0b:98:4a:b0:d5:cb:41:dc:4f:1f:72:38:
54:6c:04:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:41:34 2025 by rpki-client