Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: pcjXDYHI1yc76HolbrMi/oz3RSekhdCYyflXUlZg9iQ=
Subject key identifier: 25:0F:EE:79:34:1B:DB:0F:2C:45:64:A3:07:96:7A:B9:BA:E6:B7:96
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 03FDB62949786F9A43EBCF4236F4571F32D89B94
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:41 +0000
ROA not before: Mon 01 Jul 2024 00:59:41 +0000
ROA not after: Mon 30 Jun 2025 01:04:41 +0000
asID: 38500
IP address blocks: 2403:2700:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:fd:b6:29:49:78:6f:9a:43:eb:cf:42:36:f4:57:1f:32:d8:9b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:41 2024 GMT
Not After : Jun 30 01:04:41 2025 GMT
Subject: CN=250FEE79341BDB0F2C4564A307967AB9BAE6B796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5c:c0:5d:3a:83:2c:5c:65:25:1b:09:e8:21:
1a:38:5d:f6:48:ad:45:a7:db:af:c6:a6:b1:11:5e:
8a:f4:ce:c7:8d:f2:ac:9b:ae:4c:bb:a2:89:94:ef:
d2:b3:06:53:84:b7:ba:16:b8:ef:51:df:32:87:13:
7f:02:e3:cf:7b:59:00:a7:b9:8c:a5:ca:a7:a5:7f:
68:ed:a3:55:94:d8:e6:ab:b9:d3:24:15:9e:78:f2:
74:83:dc:c5:13:10:f2:f5:0d:fb:d0:2a:dd:d7:d5:
21:73:d0:83:82:57:c5:a5:cb:30:15:ae:ba:c1:3d:
56:13:6d:c3:aa:98:fe:3f:3d:1c:77:c7:ce:29:d0:
7d:56:7f:fb:39:73:5c:8f:ef:cc:4e:0c:96:54:29:
f6:2d:3f:ba:b0:06:ee:51:41:03:93:e6:7a:e4:ec:
9f:c0:3b:5b:8c:d4:2d:60:db:c2:83:de:07:63:2e:
47:0d:62:a8:71:f2:b3:b6:ff:0c:d6:f8:31:ea:be:
8d:12:80:c6:74:49:82:37:39:95:5f:92:9f:25:15:
4d:de:93:1f:3e:30:b7:f4:85:e4:2b:8c:eb:ea:fc:
53:ae:b5:93:a4:e6:2f:69:2e:24:e7:29:94:9e:24:
f9:04:7d:74:c1:80:83:d7:7e:5a:d6:4d:7b:35:59:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0F:EE:79:34:1B:DB:0F:2C:45:64:A3:07:96:7A:B9:BA:E6:B7:96
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:4::/48
Signature Algorithm: sha256WithRSAEncryption
27:7f:46:81:c0:0a:22:02:72:cc:79:8d:f9:65:b2:99:dd:e4:
8e:bd:8c:37:f2:79:a3:19:f3:13:aa:37:9b:ed:68:34:fa:51:
fe:61:52:92:75:c0:fc:15:9b:26:ea:17:ce:98:35:53:f5:39:
de:91:91:61:af:48:e9:88:b6:81:d7:28:4c:2f:71:6c:a3:96:
60:80:cb:af:82:56:01:f8:da:fe:b4:5e:69:37:26:f5:50:4d:
f2:e8:5d:04:83:76:94:61:a2:c5:be:e8:e9:16:ac:19:17:5f:
76:30:8e:91:65:c6:90:3c:f7:74:51:48:e7:41:ef:32:c8:7e:
3a:4d:4d:9e:ed:bf:cb:a4:62:eb:6c:c3:b0:41:92:f5:58:e5:
7e:ba:d7:d6:07:49:fc:19:7f:b1:62:72:41:df:c3:0a:a1:8d:
d6:0a:dc:7f:39:67:88:9f:b3:b6:61:d0:ee:7d:bf:53:ff:43:
14:1f:f2:5d:26:d1:14:85:42:d9:d8:39:65:0a:d2:0f:3b:ef:
66:81:7a:b1:eb:b5:ad:9f:d0:c4:ae:b4:06:a4:11:af:7c:60:
14:6a:e2:f7:e9:a7:6d:e4:c5:55:5a:d2:0f:09:13:9f:38:f0:
20:81:6d:1c:1a:ae:b1:3e:67:fe:9f:07:7e:0d:ff:f4:17:82:
d6:f8:07:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:17:41 2025 by rpki-client