Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: ubtrKNhwXXcr0ETIWIdxgHH4b+DjI98JUXi9y4XDjsA=
Subject key identifier: 53:10:5C:21:7E:8C:71:73:C6:D9:70:8F:3B:59:F6:BB:F9:EC:96:A1
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 353BFF7E2740D519A91AA0BF0FE801F6B4D1AE0C
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:45 +0000
ROA not before: Mon 01 Jul 2024 00:59:45 +0000
ROA not after: Mon 30 Jun 2025 01:04:45 +0000
asID: 38500
IP address blocks: 2403:2700:4001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:3b:ff:7e:27:40:d5:19:a9:1a:a0:bf:0f:e8:01:f6:b4:d1:ae:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:45 2024 GMT
Not After : Jun 30 01:04:45 2025 GMT
Subject: CN=53105C217E8C7173C6D9708F3B59F6BBF9EC96A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f7:da:d5:39:01:81:f1:6a:ea:2d:36:34:29:
84:61:77:3d:90:fa:67:bc:5d:0a:13:b1:20:10:fe:
c8:55:7a:9d:2e:95:9b:fb:24:c3:fb:ab:a7:64:e5:
be:c5:32:92:4f:3d:1a:05:36:fd:da:84:f8:31:26:
2e:f4:99:57:c3:51:50:da:2d:6a:b4:77:d1:b9:93:
0f:54:77:7d:a2:3a:e4:b3:e7:5d:04:88:10:b0:08:
4a:6f:0c:96:6f:9f:70:44:06:da:39:ab:48:54:7c:
bb:81:07:4e:cb:82:7e:74:da:43:46:2b:ad:81:dd:
ac:67:c7:09:82:ed:cd:bf:50:cb:ec:42:c9:c4:9e:
35:7e:69:4c:01:37:fa:e4:fb:0c:23:2c:ab:1c:a9:
5f:95:db:e6:5e:36:5c:a2:c5:51:e4:0e:d0:b5:95:
a7:6b:95:a0:e2:3f:e2:92:85:c4:28:c0:de:a6:20:
b8:e9:7d:61:2b:a2:bc:d9:bc:bc:08:4d:bf:99:e2:
df:49:04:c8:bb:7d:12:ea:cc:dd:86:33:2a:ed:46:
49:b6:58:66:dc:f8:49:90:f7:0a:37:6e:a2:35:16:
80:45:8a:ec:4b:44:7b:bd:db:32:76:f8:b7:ec:ee:
c1:a9:d3:c2:4c:a6:d4:62:35:23:b6:3f:0e:cd:7b:
f5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:10:5C:21:7E:8C:71:73:C6:D9:70:8F:3B:59:F6:BB:F9:EC:96:A1
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:4001::/48
Signature Algorithm: sha256WithRSAEncryption
30:35:ae:d3:9f:96:d5:7d:3c:8e:7b:e9:79:f1:85:55:11:6b:
7a:7e:8e:07:19:01:41:59:dd:69:94:e1:3e:71:d2:ab:5b:85:
af:48:e9:6f:14:37:b8:bf:d6:24:79:05:4e:6d:68:21:60:12:
41:2b:62:81:b4:d8:ba:b2:f7:56:f6:06:da:04:24:0f:b9:73:
98:a8:cd:eb:cb:43:ea:64:0a:c9:5f:88:6f:ae:be:36:5d:0a:
ae:78:a2:8f:f3:34:dd:78:99:15:4b:ea:15:4b:4b:68:84:04:
82:8e:79:2b:a3:c8:d3:43:62:3d:d5:70:4b:d1:e8:f6:6e:aa:
16:9e:d4:3d:2d:d2:e0:70:1a:49:31:bb:d2:e4:9e:2c:8e:2e:
45:e0:9d:cb:12:e9:f1:12:01:fe:d7:22:ea:4d:bc:b9:95:af:
b4:48:cd:47:47:48:ba:15:d8:4c:4a:0d:6c:83:f0:6d:0c:0c:
c1:12:c8:95:0a:77:38:02:e5:9c:50:0a:a4:9b:3c:78:21:a5:
05:a4:b8:57:b7:4f:23:26:61:cf:50:53:8b:4a:2a:15:10:d4:
99:e2:77:c6:ea:1f:bc:3b:d7:c5:1c:ee:b2:0c:4e:f7:47:c2:
42:bc:49:17:fb:ef:19:e1:2c:49:c3:72:ca:ab:49:c6:7f:1a:
8a:2d:70:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:39:18 2025 by rpki-client