Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa
File: 323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa (raw, json)
Hash identifier: sl/cNrLjimhUwgJlyiEL9+yWJE0qkI5bXAAutsG+vfs=
Subject key identifier: EF:4D:A7:A2:4B:38:AA:BE:0F:0A:21:4F:ED:F3:B8:32:D9:97:B3:BD
Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C
Certificate serial: 6A0FA930A3744F93E6CA7E11A5D9498A671715DB
Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa
Signing time: Wed 26 Jun 2024 12:00:01 +0000
ROA not before: Wed 26 Jun 2024 11:55:01 +0000
ROA not after: Wed 25 Jun 2025 12:00:01 +0000
asID: 142366
IP address blocks: 2407:b4c0:cc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:0f:a9:30:a3:74:4f:93:e6:ca:7e:11:a5:d9:49:8a:67:17:15:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C
Validity
Not Before: Jun 26 11:55:01 2024 GMT
Not After : Jun 25 12:00:01 2025 GMT
Subject: CN=EF4DA7A24B38AABE0F0A214FEDF3B832D997B3BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:02:3f:3f:44:18:7e:a2:5e:1b:78:10:f5:
93:58:e2:03:79:1e:58:09:eb:6c:f8:80:f4:55:74:
22:d3:fc:76:6c:bc:f7:89:3b:98:c5:c2:d4:d8:85:
8d:83:83:6a:4d:3f:70:0e:b9:b1:19:30:df:a6:cf:
0a:2c:75:9e:cb:ec:f8:4a:19:13:c1:8f:35:ad:70:
2e:63:f5:cb:14:e6:93:ef:e2:77:22:cc:a7:18:65:
7e:a7:72:d0:75:2b:99:3e:b4:31:33:79:e5:3f:0e:
76:24:e6:93:64:5d:a2:be:d3:82:7f:32:22:f4:a8:
98:02:e4:20:4c:82:fc:8a:87:7f:d4:36:b1:94:08:
f6:b1:66:81:c9:13:42:a0:3d:4e:a2:53:66:af:02:
35:f9:7e:d2:a1:20:d2:cf:c2:1a:48:40:52:2d:14:
22:28:f4:18:3c:5f:e8:c6:a5:1f:91:83:b3:42:33:
2c:e2:41:d3:f0:c5:4c:fa:ae:a4:40:e7:04:6b:be:
24:89:89:e6:61:6b:ec:28:43:0c:f3:10:24:10:43:
1c:8b:ea:68:df:04:7e:3d:6f:6d:8d:0e:de:8a:04:
2a:08:8d:b4:e9:22:5a:7a:89:d7:c7:2b:05:7f:67:
6b:b0:25:72:76:ca:bb:bd:24:55:78:bf:ab:a1:9f:
a6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4D:A7:A2:4B:38:AA:BE:0F:0A:21:4F:ED:F3:B8:32:D9:97:B3:BD
X509v3 Authority Key Identifier:
keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:b4c0:cc::/48
Signature Algorithm: sha256WithRSAEncryption
3a:42:4b:60:52:ca:9f:5d:b5:09:31:30:38:65:ec:0d:68:34:
c9:10:99:c0:39:db:57:b5:8c:28:00:b5:34:b8:a7:27:91:c6:
af:dc:33:58:b2:b9:f5:c7:52:6c:c1:8e:d3:c2:be:6a:ca:af:
f5:ca:cb:97:05:e1:59:8a:17:7d:87:a9:15:71:4c:8c:70:f0:
f6:4d:15:f3:5a:fd:f1:c9:6e:54:b4:0d:7c:50:88:d3:c5:c6:
f8:3a:3c:3f:29:5d:18:29:f4:9d:2a:09:f2:11:28:68:89:0d:
70:3b:69:eb:21:31:46:42:54:87:77:fb:94:d4:cc:68:ac:5e:
a0:8e:8f:8d:f1:bd:2e:3f:fd:4b:9a:98:a6:26:f6:5c:8b:0b:
7d:36:4e:fc:8d:19:a5:4f:4c:6f:b3:e8:cc:60:ab:a0:d8:c9:
eb:6f:07:f4:73:a0:94:7a:51:a0:47:21:13:0a:67:99:a4:a2:
83:b0:c8:96:64:f1:81:c2:d5:2c:b8:ba:4e:5a:27:73:7c:9f:
28:bc:07:c0:d8:53:1a:61:31:0a:31:23:92:90:f9:c6:f0:4a:
4e:5e:b3:fa:90:21:4b:ef:77:ae:66:d9:15:74:5a:93:98:21:
b2:19:71:de:f3:83:1d:3d:cc:5b:84:0e:03:6e:f0:23:a7:34:
65:6e:dd:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:36:30 2025 by rpki-client