Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa
File: 323430333a323730303a3a2f34382d3438203d3e203338353030.roa (raw, json)
Hash identifier: JAWW9TR5qdXEQheEQ6Pi0DKQmsSqwOVr9zv7aeHhx34=
Subject key identifier: C3:E8:AD:DB:EB:4D:E8:F6:25:97:FD:C8:D8:5C:CC:15:4C:4D:42:6C
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 44F44E3446B89F4F075C0DA6908256E786879160
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:46 +0000
ROA not before: Mon 01 Jul 2024 00:59:46 +0000
ROA not after: Mon 30 Jun 2025 01:04:46 +0000
asID: 38500
IP address blocks: 2403:2700::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f4:4e:34:46:b8:9f:4f:07:5c:0d:a6:90:82:56:e7:86:87:91:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:46 2024 GMT
Not After : Jun 30 01:04:46 2025 GMT
Subject: CN=C3E8ADDBEB4DE8F62597FDC8D85CCC154C4D426C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:19:e6:ef:9e:3b:9f:16:98:20:86:08:6b:
c9:20:63:43:59:7c:60:65:5a:86:71:34:f6:7c:d5:
81:d9:39:a6:9c:83:28:a7:3a:98:4a:b7:46:40:4a:
8b:d2:3e:57:f6:a8:7d:31:6b:7b:dc:b3:43:9e:66:
b6:f5:23:91:a8:41:3d:72:1e:ef:8e:89:4f:c4:2d:
f7:43:af:27:b6:cc:3f:18:50:3d:3e:1d:91:aa:1f:
ab:49:5f:48:88:f9:65:ac:df:d5:c2:3b:d6:11:34:
37:6b:26:55:78:81:45:f3:75:fe:71:67:ba:40:91:
91:90:c6:b5:99:55:2c:8f:23:06:70:e8:29:79:62:
60:1e:e7:6a:06:d4:cd:f6:f9:2a:cc:f1:ad:18:67:
00:d8:c4:ce:bd:a1:0b:75:f2:29:47:d4:87:17:23:
69:c4:82:65:f1:b1:fa:85:98:47:12:ca:ec:9a:30:
37:2b:bc:9e:6f:72:b0:32:bd:cf:19:ff:d7:b9:11:
51:15:f6:a2:e0:6d:6b:ba:a1:c9:64:67:f2:d7:b5:
ea:9a:4e:de:2b:19:02:b3:cd:dc:bd:09:08:4a:34:
26:ac:cf:dc:85:67:71:91:e1:b5:96:39:fa:8c:53:
65:e8:a5:06:d0:a3:ab:1c:0c:57:5a:dc:b8:b6:2b:
55:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E8:AD:DB:EB:4D:E8:F6:25:97:FD:C8:D8:5C:CC:15:4C:4D:42:6C
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2700::/48
Signature Algorithm: sha256WithRSAEncryption
4a:63:e0:f3:52:15:0b:8e:3d:22:b8:97:18:39:0e:5f:f4:bb:
e7:31:16:bf:d6:d4:9e:ce:6c:ae:58:ea:e2:0d:9d:66:9d:25:
96:b7:91:65:5e:59:f5:1e:33:2e:c1:bb:6e:83:5b:f3:8d:8b:
11:bd:60:d8:85:21:57:33:c1:69:6b:65:eb:e1:5c:9e:f7:5c:
46:66:2c:6b:33:a7:ae:c4:88:8f:3c:38:92:c5:1f:26:30:55:
d2:96:2c:a4:60:78:3a:1e:9a:0c:7b:a4:2e:69:b8:37:ea:46:
a9:02:ae:cf:9e:d2:c3:15:8d:fc:3d:d0:dd:5a:e7:b7:c4:7a:
4e:4b:35:34:f8:57:fc:96:b1:99:84:d9:b1:dc:b5:44:22:fd:
55:88:9f:d2:f8:14:ce:1c:b6:6e:f9:da:6d:c5:8c:0b:fa:bc:
51:2e:7a:7a:7e:60:c7:5c:b2:66:68:9d:4f:9f:bd:3e:dc:2d:
21:0c:de:d9:ef:25:e4:b4:99:8e:92:7a:be:53:c5:fe:6d:28:
95:3e:cb:2a:40:75:fc:4c:55:6d:df:89:a0:1b:cf:91:99:3c:
87:9e:33:d3:6a:c3:3c:09:e1:1f:0e:a6:73:a6:77:c0:49:8d:
3e:9c:da:47:b6:5f:aa:f9:b6:75:4b:ca:d9:d6:6b:48:8b:12:
0c:3d:b9:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:17:06 2025 by rpki-client