Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: nljH86LWGwNNEN8fF5rImf9pAnYykihyJGG8ZFJ+rSc=
Subject key identifier: E4:6A:02:5B:38:C0:B0:C5:87:67:39:02:64:7E:BB:4C:28:90:63:39
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 6CF5EB01351E9EE3C37B88F95A39E88B18DEF60D
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:41 +0000
ROA not before: Mon 01 Jul 2024 00:59:41 +0000
ROA not after: Mon 30 Jun 2025 01:04:41 +0000
asID: 38500
IP address blocks: 2403:2700:4007::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f5:eb:01:35:1e:9e:e3:c3:7b:88:f9:5a:39:e8:8b:18:de:f6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:41 2024 GMT
Not After : Jun 30 01:04:41 2025 GMT
Subject: CN=E46A025B38C0B0C587673902647EBB4C28906339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:79:2d:ec:38:88:6c:8c:3a:e9:79:ab:56:10:
97:dd:90:06:55:bb:73:09:05:c4:53:7f:d4:05:ec:
b3:c1:65:21:44:87:32:9f:23:5d:55:44:56:62:3a:
92:8c:39:a2:52:f2:da:78:0a:46:04:34:4f:7c:3a:
77:9c:09:4e:9d:43:a4:86:96:4b:67:86:ce:96:3d:
72:a9:f7:0f:18:a5:b5:14:cc:10:02:58:b5:d2:7e:
00:26:c6:9d:e1:6e:fc:bb:44:1c:23:97:ae:4b:10:
bb:69:3a:45:7f:4f:ea:f5:e3:8b:37:28:0e:c3:90:
f7:9c:69:fd:7e:b2:78:dc:11:eb:05:d2:31:83:ef:
7f:cc:0e:56:59:8c:c3:8b:e6:67:c1:33:a8:cb:18:
bc:c5:6b:71:5e:6f:f1:54:31:ba:c3:8b:94:5c:10:
a1:98:5a:ab:3c:f1:62:bf:cb:40:42:ae:83:80:43:
e2:27:f0:02:35:28:6c:cd:18:1b:d8:ae:f2:e4:66:
84:78:11:78:33:2f:63:89:41:81:0e:62:2f:65:2d:
2e:72:71:bb:b0:39:6f:21:57:1b:1a:e2:b1:1f:e7:
29:8a:40:64:1c:93:65:96:86:15:65:db:ba:83:6a:
aa:71:3f:4c:b8:1f:ad:89:c4:2d:54:fc:8a:f9:91:
79:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6A:02:5B:38:C0:B0:C5:87:67:39:02:64:7E:BB:4C:28:90:63:39
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:4007::/48
Signature Algorithm: sha256WithRSAEncryption
5f:d3:b7:80:66:9f:a9:a8:17:11:87:14:23:de:67:bf:94:34:
e4:66:0c:ec:49:19:08:0b:ea:10:30:4e:9f:f2:62:34:5a:04:
4e:fc:fe:a5:9e:5e:7e:e1:0d:39:f2:10:3c:a4:d2:46:ff:3b:
47:56:f3:70:84:3c:35:ec:72:53:c1:94:13:01:7a:28:5b:6c:
db:f7:da:46:26:27:6a:09:aa:72:0e:ce:bc:ac:9c:86:53:64:
43:47:f2:de:3f:4c:8f:bc:ff:8e:fa:ef:bc:4c:27:d5:83:7f:
ee:c7:6f:c4:03:a5:5c:91:0b:0d:8e:3d:e5:93:0d:41:4a:a7:
da:7a:7d:09:68:e7:e4:63:9d:e0:4f:d5:27:8f:f4:12:80:77:
54:0e:68:39:8d:34:3f:71:bd:5c:50:be:5b:7d:42:a5:3d:7c:
b4:61:ae:47:d2:5e:c8:93:80:32:97:41:d7:27:59:dd:04:2f:
04:35:b8:f5:92:4a:fc:61:72:9d:f4:b0:6a:d1:41:89:a8:ae:
24:6f:6c:b9:39:51:fc:d0:bb:1e:c9:cc:58:c6:30:a0:7d:67:
19:f5:63:83:49:82:bd:3e:52:13:81:36:34:f0:a1:29:b7:b3:
09:95:64:f3:eb:4a:ef:66:b7:aa:22:0c:39:8b:52:70:b1:c5:
ab:c7:61:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:36:55 2025 by rpki-client