Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: LXf44cMnNVFP6u5UuVgj4UoOkAZLG+aK8bv6iSUrY/w=
Subject key identifier: 93:35:B7:E1:DB:42:EB:12:3A:53:25:D4:17:F4:C0:45:48:01:AF:D2
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 3D7F186A3BC5C92DD99C676AE93B2ECF2AE07DF0
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:43 +0000
ROA not before: Mon 01 Jul 2024 00:59:43 +0000
ROA not after: Mon 30 Jun 2025 01:04:43 +0000
asID: 38500
IP address blocks: 2403:2700:5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:7f:18:6a:3b:c5:c9:2d:d9:9c:67:6a:e9:3b:2e:cf:2a:e0:7d:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:43 2024 GMT
Not After : Jun 30 01:04:43 2025 GMT
Subject: CN=9335B7E1DB42EB123A5325D417F4C0454801AFD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d8:b7:e7:78:1d:18:6f:7c:d9:9f:f0:0b:4b:
36:e0:95:d3:2c:8f:00:54:2d:cf:f3:18:6d:0a:d0:
5f:ff:20:29:74:fe:39:29:f5:8f:98:7f:f2:97:cd:
29:e0:67:29:4b:27:d5:c8:d3:b1:6f:a0:e9:42:13:
95:6a:5d:f4:73:21:a4:ab:19:1c:ae:fe:07:4b:bd:
05:05:be:f0:f8:65:cc:41:6c:57:72:1c:de:e1:2f:
06:9c:9d:af:0f:ca:91:3a:60:37:b6:39:35:bd:c6:
fd:4a:4e:12:79:38:3d:9e:17:60:cc:88:21:2b:49:
4d:00:95:38:13:4f:b2:be:2b:ca:34:f3:4e:a2:b8:
9d:f7:7d:32:18:be:f7:be:da:89:a6:3e:a2:90:a5:
16:d4:34:6a:0e:9b:bf:c1:0b:fa:6a:95:a7:38:cf:
a1:0b:81:7a:2c:8a:e9:90:45:a8:22:c4:0f:a6:6c:
f4:29:ad:f1:77:26:e8:9e:ca:a4:65:e5:95:66:81:
35:84:73:6c:5d:9e:a8:9b:d5:cb:0f:b2:f2:f1:5b:
f1:58:bf:a6:71:96:e6:17:31:cb:25:57:0b:e2:44:
58:7c:36:2f:06:6e:bb:e9:8b:2c:ce:33:78:19:73:
50:b0:09:e9:7e:2c:e9:4c:dc:0a:08:38:1b:3a:8e:
85:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:35:B7:E1:DB:42:EB:12:3A:53:25:D4:17:F4:C0:45:48:01:AF:D2
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:5::/48
Signature Algorithm: sha256WithRSAEncryption
6c:2f:44:14:18:d3:b4:d2:45:10:ba:2c:67:4a:37:c3:2d:41:
a0:99:e3:cc:c3:64:e0:c8:d4:ae:bf:26:f8:62:a9:5d:2d:3a:
01:e2:c7:62:5b:1b:e5:8f:f0:1f:34:86:fe:ec:29:49:d1:85:
0e:7a:33:fe:04:42:85:29:cb:35:1a:2b:c4:7e:35:eb:1d:c1:
41:ba:ef:1c:41:35:ce:5d:38:6b:b2:5a:3e:ff:be:63:e5:9f:
5a:77:38:81:37:0c:0e:16:4e:fb:0f:3d:74:98:f5:0f:0e:b3:
21:47:f5:b8:0a:e6:98:8f:28:76:c3:da:66:8f:20:c6:7a:be:
f6:fb:14:ac:c4:82:4d:72:02:b4:bc:c0:ac:e7:0a:86:a8:a8:
89:db:f9:7d:3b:7c:6f:1f:3d:65:6e:b6:c5:1a:af:3b:53:39:
8e:46:b3:f7:c0:17:cc:af:34:38:52:bd:fa:1b:8b:84:db:26:
3b:e8:a8:bc:f4:8e:78:6f:40:27:36:ea:33:08:5c:b0:19:c5:
97:41:9d:6d:5c:2b:85:a9:d8:2b:d0:22:4d:55:f4:c6:c5:95:
c1:21:c4:67:ca:40:8c:27:ed:d3:a7:df:95:59:26:cc:a2:9b:
d9:3e:c4:63:87:61:e7:81:04:8d:3d:5a:0d:95:d6:3c:fe:4b:
4d:b3:93:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:17:53 2025 by rpki-client