Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: bJxVEFJqkVbKOiwNNB4H5sD/W8/g/dcBZzqgF/Ln6iY=
Subject key identifier: B8:73:C2:22:11:08:A2:4D:77:4A:3F:17:B0:5F:3F:2F:B0:00:9F:58
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 4B51384EEED277D69FF50E0A172DDBAF30238270
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:42 +0000
ROA not before: Mon 01 Jul 2024 00:59:42 +0000
ROA not after: Mon 30 Jun 2025 01:04:42 +0000
asID: 38500
IP address blocks: 2403:2700:4004::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:51:38:4e:ee:d2:77:d6:9f:f5:0e:0a:17:2d:db:af:30:23:82:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:42 2024 GMT
Not After : Jun 30 01:04:42 2025 GMT
Subject: CN=B873C2221108A24D774A3F17B05F3F2FB0009F58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:62:fa:e9:d2:6f:2c:72:e1:dc:51:5d:32:4e:
45:ff:d3:40:3b:49:47:57:35:12:da:eb:e0:86:38:
72:33:65:a4:be:02:58:14:f3:c1:5d:8b:60:df:30:
51:6b:3b:9d:6a:12:bb:f4:63:f0:a6:e6:32:d3:c3:
90:97:56:50:9a:e6:62:09:da:18:2a:0b:d9:88:fc:
5f:e9:36:37:e0:23:34:21:74:70:77:7b:71:9d:30:
00:f5:3e:56:8c:44:8c:15:83:55:cb:e0:4e:d5:bf:
de:55:4c:9e:bb:44:79:1f:fd:56:b8:34:17:c8:69:
c6:e2:aa:90:f1:d6:81:76:b9:23:55:88:3a:d3:65:
1a:4c:da:72:ff:24:ae:cd:b3:61:41:38:f0:aa:ae:
59:3f:ad:50:3f:27:e7:53:5f:92:ae:5b:5c:72:4b:
4e:f3:1b:2d:c4:ab:72:20:1e:10:d8:0d:4f:88:f5:
0c:00:56:1e:75:52:80:47:f6:ad:fa:3e:be:76:a8:
94:d3:bc:fe:90:86:34:6d:f2:78:f8:04:f3:93:07:
b6:57:9d:d7:28:a5:f6:94:f1:7e:00:86:9e:c8:67:
eb:c9:74:42:fe:1f:8e:55:68:00:b0:2d:fd:6b:39:
7e:91:5a:64:95:1e:8f:da:52:c4:23:20:94:c8:68:
05:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:73:C2:22:11:08:A2:4D:77:4A:3F:17:B0:5F:3F:2F:B0:00:9F:58
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:4004::/48
Signature Algorithm: sha256WithRSAEncryption
42:48:d3:56:8b:05:c9:5c:7b:80:c6:fe:e8:5f:be:ff:cf:10:
36:2f:e1:64:9b:c4:67:7b:5d:1e:a0:64:24:ea:08:0f:ee:09:
a9:9d:d2:e4:ba:a3:55:b9:b8:ea:2d:26:f0:b2:8a:2c:54:e9:
e1:e2:44:63:b4:c2:7e:c7:48:bc:6f:54:e0:67:ae:a9:c6:7c:
e1:5e:1d:0b:ff:04:83:30:84:a3:11:b5:3c:d4:5c:1e:3d:d3:
03:03:2a:43:9a:ae:c2:43:11:81:a7:6e:cd:1a:6d:6a:3b:95:
7e:28:07:0e:ff:ee:fc:30:74:4a:c4:b7:a9:96:35:5e:e6:97:
0c:71:fd:ad:11:98:8c:77:6c:69:97:2b:5c:19:9d:36:5d:2e:
5d:51:58:2e:c1:92:76:f2:37:99:73:90:fe:f8:e8:72:ee:40:
b2:39:50:e3:cd:cf:e7:2c:d4:b3:b4:f1:24:c3:cd:f9:c4:cc:
4e:e8:7a:6c:42:1d:91:ec:6d:58:9b:5d:ae:fb:bf:ee:1b:54:
aa:d6:a4:b0:87:07:8e:f6:f0:fd:42:20:35:fc:62:20:a7:b9:
f5:d9:4d:28:f2:b0:ec:e9:f7:ec:7d:13:15:7a:80:80:35:9d:
e8:cc:f1:8f:34:03:87:8b:37:1b:d3:0e:62:f6:d1:5e:d2:00:
8c:41:b8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:46:01 2025 by rpki-client