Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a343030303a3a2f33342d3334203d3e203633353031.roa
File: 323430333a666338303a343030303a3a2f33342d3334203d3e203633353031.roa (raw, json)
Hash identifier: BgpyECI68sQoV8aBe+6ptXJeBAqLh0geF+YrfUUTPU4=
Subject key identifier: 11:3C:84:F7:A1:08:A6:A8:55:07:2F:1D:5C:28:6D:C7:AD:06:E4:82
Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Certificate serial: 22C19A9D903EFF69E7DC4B175312D8611BE15B77
Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a343030303a3a2f33342d3334203d3e203633353031.roa
Signing time: Thu 04 Jul 2024 02:01:39 +0000
ROA not before: Thu 04 Jul 2024 01:56:39 +0000
ROA not after: Thu 03 Jul 2025 02:01:39 +0000
asID: 63501
IP address blocks: 2403:fc80:4000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c1:9a:9d:90:3e:ff:69:e7:dc:4b:17:53:12:d8:61:1b:e1:5b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Validity
Not Before: Jul 4 01:56:39 2024 GMT
Not After : Jul 3 02:01:39 2025 GMT
Subject: CN=113C84F7A108A6A855072F1D5C286DC7AD06E482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5f:7a:dd:29:ac:5e:d4:79:d5:0e:f5:26:ce:
2b:24:c6:99:96:4f:b2:1a:37:fb:fb:c0:6b:d9:57:
84:b9:35:57:19:62:51:78:d3:e9:06:19:4e:33:1d:
7c:34:3c:78:66:9a:96:68:c5:d1:77:80:47:6e:67:
de:d7:b0:7d:98:69:14:ce:6c:90:44:31:cb:76:3c:
e2:4e:cf:43:87:8a:0c:9e:4d:95:3b:3a:aa:9a:47:
92:10:08:eb:c0:73:f3:0e:49:b3:45:c9:53:3c:4a:
7d:33:07:7d:db:0a:1d:e5:9d:31:41:66:01:b1:d2:
5d:62:c2:6c:64:dd:1b:3f:ce:d6:19:38:eb:e8:12:
1f:f6:0a:6b:cc:21:89:76:d8:2a:76:c6:0e:67:73:
0d:2e:59:13:f3:eb:8d:da:62:59:19:7b:7d:a1:8f:
10:b1:81:bb:0d:4c:1b:58:5f:45:d8:5e:0b:17:6a:
b2:00:ea:80:93:e3:44:f2:cf:7e:53:cf:c8:bf:06:
b7:a8:f3:ae:ef:b8:13:41:e4:f3:08:6c:9d:66:99:
9d:3a:45:a3:a5:fc:a9:ba:ff:66:e9:a2:42:28:81:
cb:1d:28:5d:ed:5a:42:69:b7:28:9c:02:8d:9c:e1:
43:c9:d0:93:6e:31:d3:89:01:1e:d1:48:86:69:c3:
bf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3C:84:F7:A1:08:A6:A8:55:07:2F:1D:5C:28:6D:C7:AD:06:E4:82
X509v3 Authority Key Identifier:
keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a343030303a3a2f33342d3334203d3e203633353031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:fc80:4000::/34
Signature Algorithm: sha256WithRSAEncryption
1e:77:95:3a:44:59:04:f2:00:9d:50:7e:24:f5:f1:ad:f6:62:
0f:c3:55:32:6a:07:6a:aa:7f:a1:86:f2:3c:18:7d:3b:86:fb:
94:1a:73:ec:2d:5b:50:6a:e2:d2:ff:eb:e5:f1:7e:e0:d3:1a:
5c:87:e7:27:35:5b:dc:3b:4a:8b:2b:61:99:e9:98:07:c6:cc:
87:ea:42:98:14:fe:ef:1a:c9:7d:7c:4c:3d:c5:f1:11:58:08:
27:28:3a:0f:09:7e:a0:f3:5b:20:f9:76:8f:b0:7b:b1:cb:d6:
dd:22:e8:8c:81:64:9e:00:81:50:88:eb:d9:77:ce:a5:8d:36:
36:9d:5f:9a:db:9b:18:c2:4a:a9:97:2a:4a:27:c0:83:ca:07:
56:21:5f:69:15:26:5d:8b:31:e3:f3:0a:ca:04:0d:b9:ad:0f:
1b:90:6b:dd:d4:14:ec:a6:02:21:1a:19:6e:d9:b2:a2:2c:11:
1d:0b:d1:77:19:e6:62:b6:e5:b5:7b:3d:17:0e:4b:16:42:6b:
4e:17:e5:b1:20:58:9e:c7:8a:07:f6:51:19:51:49:d4:1e:b9:
82:16:03:53:bf:45:d9:d9:9c:2a:38:80:ed:48:45:38:ce:85:
f3:13:18:04:47:a6:dd:71:2c:05:22:07:88:49:3c:4d:6b:d4:
1a:99:6e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:32 2025 by rpki-client