Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa
File: 323430313a313730303a3a2f33322d3438203d3e203535363636.roa (raw, json)
Hash identifier: fv7w6z62outeFY04yktIZFxsP8pQo+LaBilVbns7Fng=
Subject key identifier: BA:B9:8F:81:5C:92:0F:C2:27:2B:7D:C7:A0:A8:BE:C1:B8:0F:5F:03
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 4999A02CE91CA70F2C9E389EF234409DE7EC5762
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa
Signing time: Mon 01 Jul 2024 01:06:11 +0000
ROA not before: Mon 01 Jul 2024 01:01:11 +0000
ROA not after: Mon 30 Jun 2025 01:06:11 +0000
asID: 55666
IP address blocks: 2401:1700::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:99:a0:2c:e9:1c:a7:0f:2c:9e:38:9e:f2:34:40:9d:e7:ec:57:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Jul 1 01:01:11 2024 GMT
Not After : Jun 30 01:06:11 2025 GMT
Subject: CN=BAB98F815C920FC2272B7DC7A0A8BEC1B80F5F03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d2:5d:9e:a1:67:05:01:31:79:74:b4:09:9c:
f0:6a:86:71:8e:e6:18:82:cc:33:34:3f:4b:4d:b6:
7d:2b:f5:61:56:c0:f3:ef:8b:b9:4e:16:c0:cc:9f:
d5:a5:34:56:6b:77:83:da:1c:8d:b7:95:f7:e1:84:
44:0d:db:5b:f8:a0:c5:8e:b5:a8:03:22:25:ea:78:
df:8c:3e:24:ee:17:e1:78:22:d6:0a:e4:a8:98:6f:
18:64:ca:f6:c9:90:40:85:16:26:25:ee:37:8e:4c:
90:be:c3:5b:fd:74:74:81:1c:28:35:56:40:56:00:
03:81:ea:6d:08:82:cd:5e:f0:4a:02:18:c8:1b:e2:
bd:15:58:2a:cb:26:a5:75:d3:ab:f3:30:6d:b5:67:
d8:9a:bb:98:33:57:3e:b7:6b:66:b6:33:6a:b5:23:
05:4b:d2:f0:78:4f:5d:97:aa:4e:44:36:85:92:bb:
d1:7a:f2:4f:01:9f:34:40:e9:44:67:01:3d:78:9f:
04:50:8a:d9:65:90:af:e0:34:ef:11:50:ff:82:86:
68:09:8c:23:b2:b2:a9:3b:ea:13:b0:a0:f7:3e:53:
56:37:49:58:57:69:bf:f2:c2:b6:ec:e3:a7:b8:33:
b4:cf:12:a8:43:b5:85:f2:d7:a5:43:f3:8f:84:53:
58:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B9:8F:81:5C:92:0F:C2:27:2B:7D:C7:A0:A8:BE:C1:B8:0F:5F:03
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:1700::/32
Signature Algorithm: sha256WithRSAEncryption
a8:ff:2d:b9:b9:81:0c:42:9a:f7:4e:be:16:19:68:94:43:ba:
fd:6f:51:0b:b6:65:e0:7d:b0:cf:71:71:96:f9:bd:fd:17:34:
5e:b7:bb:f9:2f:30:f4:49:06:1a:bc:83:bd:7d:68:53:bc:2e:
be:e9:c0:e3:1f:f5:57:a4:48:9d:1a:4a:e9:49:a5:96:38:75:
be:0d:9f:07:8b:60:f5:39:b7:a1:cb:5b:e1:60:8c:00:db:04:
27:21:9c:0f:17:7c:a9:02:b8:ef:08:a2:bc:0c:d7:56:cc:e7:
35:99:68:36:ef:3e:ba:0a:64:de:bc:a8:47:5d:bd:1c:03:03:
c1:a3:61:50:57:42:dd:2b:22:a6:f8:da:b9:20:2a:d5:73:80:
51:2e:ed:2b:74:b1:e6:65:b4:32:70:d4:97:20:c0:42:83:69:
12:58:42:f0:60:9a:ea:ff:70:f7:87:6f:e9:cf:30:b5:28:e9:
10:17:56:5e:b3:05:b9:5c:0e:31:58:bd:8f:2a:4e:85:d9:bd:
9c:ce:fd:18:ea:ee:d8:90:85:6b:ca:29:09:72:49:4b:df:f1:
6e:c9:3b:8d:ab:88:20:a0:f1:f5:f1:33:da:f9:47:2d:2c:3b:
62:39:e2:50:1e:f8:8d:29:37:05:54:4e:c2:70:fd:bc:f4:cb:
46:8d:35:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:38 2025 by rpki-client