Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: 9Va+9fvyqyWhSaKKKkowC02TdLLn07mUstrmppit8fk=
Subject key identifier: 38:1E:E2:BB:B5:58:D0:62:6F:1F:3C:9E:1C:4E:6A:11:F3:B5:95:0D
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 188C2CDA18B1E3D8EE9AFEC07B7325821A70FC57
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:44 +0000
ROA not before: Mon 01 Jul 2024 00:59:44 +0000
ROA not after: Mon 30 Jun 2025 01:04:44 +0000
asID: 38500
IP address blocks: 2403:2700:7::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:8c:2c:da:18:b1:e3:d8:ee:9a:fe:c0:7b:73:25:82:1a:70:fc:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:44 2024 GMT
Not After : Jun 30 01:04:44 2025 GMT
Subject: CN=381EE2BBB558D0626F1F3C9E1C4E6A11F3B5950D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e3:9e:50:42:2c:5d:d9:c6:1b:af:4b:04:fb:
a0:ef:13:b6:52:2c:3b:4e:eb:76:e5:76:72:02:34:
9d:b7:18:3b:4c:cf:1b:49:3f:1b:64:ec:db:f4:0d:
f6:97:11:c3:05:c4:81:eb:99:16:99:ad:46:2e:05:
73:c7:bb:91:b3:72:97:98:10:2e:ef:6b:80:85:ac:
5c:50:da:53:a4:87:77:96:55:84:09:3c:65:e5:e9:
de:e0:c7:15:cd:bf:0b:79:a1:37:b3:e6:cb:51:75:
4c:f6:3d:d9:d5:cf:aa:4c:49:64:a4:b2:6b:23:85:
94:19:be:b5:49:7a:fd:ed:2e:21:b8:d3:14:5e:25:
41:c2:27:0f:1d:09:e2:73:db:98:f9:68:4f:20:68:
2c:d4:ff:a4:4e:94:a8:e1:51:24:f4:62:f8:f5:83:
f3:1e:71:b7:54:f5:1e:30:25:63:ed:26:35:e8:d0:
b1:a2:0b:ac:93:7d:f2:d9:47:16:c2:56:a4:ed:fa:
f1:84:ea:fd:be:bb:6e:8b:97:a7:08:22:96:30:7f:
ee:68:57:f3:78:21:e0:b9:fb:e4:69:26:94:43:1b:
dd:a0:84:03:76:23:d8:c5:e2:e7:5d:24:cb:2e:37:
2e:6e:b2:f2:af:87:b7:6f:99:a9:f7:6c:1f:e1:eb:
e1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:1E:E2:BB:B5:58:D0:62:6F:1F:3C:9E:1C:4E:6A:11:F3:B5:95:0D
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700:7::/48
Signature Algorithm: sha256WithRSAEncryption
71:3b:27:22:ce:d6:c1:dd:bf:b0:09:66:c3:de:24:7e:aa:27:
af:a0:62:9f:4b:32:fc:18:3f:d4:46:ec:f9:b6:a1:90:e8:2e:
2f:8c:de:a8:8e:9f:91:38:82:1a:50:fc:00:54:18:3a:c0:1a:
74:5d:8e:82:d0:53:bf:a2:52:72:12:fd:d3:a2:5c:93:3a:f2:
60:87:2e:64:12:71:bc:1b:36:8f:16:e2:c7:bb:40:28:96:55:
26:94:a8:36:c1:0a:0f:6f:b8:bd:1c:68:8d:40:7a:2b:6f:fe:
ab:09:30:48:6d:0f:18:ee:e3:bf:3b:26:03:84:f1:90:6e:1e:
d5:51:22:5f:2b:dc:83:28:ec:82:2d:46:39:11:f7:cc:3c:36:
9d:e0:27:07:7e:ce:d2:cd:0b:00:9e:fb:c5:cb:2c:e2:e7:56:
e8:be:c7:a3:65:96:1e:1b:da:69:3f:0a:ff:09:38:c6:42:52:
aa:ac:29:6b:8a:5b:5a:f0:cb:f8:09:fb:49:d9:d8:59:6c:b3:
71:4d:fe:f2:8a:39:73:98:73:c4:b0:67:41:70:8e:5a:1f:14:
84:b0:b7:2c:1f:f1:fa:dd:5e:98:92:4b:c2:3d:31:bb:4e:de:
c0:de:bd:a0:9f:05:86:5a:90:14:c5:af:e7:d5:f9:34:18:21:
64:4f:6a:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:33:47 2025 by rpki-client