Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa
File: 323430323a646130303a3a2f33322d3438203d3e203234353236.roa (raw, json)
Hash identifier: pIrm7aPUPJFZ4XifD9qRVgfWPMQmX5/I7DSyyV9fZas=
Subject key identifier: 45:EC:78:2E:B5:AC:20:B1:54:EE:BB:76:43:44:20:79:5A:AE:C1:A2
Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB
Certificate serial: 3BAB58B87FE661E80C07150B6B86CDAA079321BE
Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa
Signing time: Wed 26 Jun 2024 08:02:12 +0000
ROA not before: Wed 26 Jun 2024 07:57:12 +0000
ROA not after: Wed 25 Jun 2025 08:02:12 +0000
asID: 24526
IP address blocks: 2402:da00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:ab:58:b8:7f:e6:61:e8:0c:07:15:0b:6b:86:cd:aa:07:93:21:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB
Validity
Not Before: Jun 26 07:57:12 2024 GMT
Not After : Jun 25 08:02:12 2025 GMT
Subject: CN=45EC782EB5AC20B154EEBB76434420795AAEC1A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:23:05:4b:86:98:f7:33:e4:2e:fe:db:da:06:
b5:6b:7b:57:ff:f0:fc:fa:7e:1d:2d:21:87:6d:ad:
a5:c1:e9:be:20:55:53:5f:a0:5e:2f:a0:24:6e:93:
ec:a4:47:23:41:cd:5e:62:e6:33:c1:00:df:9e:a8:
bf:64:14:81:c9:6d:39:24:05:bd:25:c8:91:21:f7:
17:5e:1a:1b:e4:57:30:a6:a7:6c:b6:55:0a:3d:7a:
1d:ad:dd:cd:c4:f6:f6:48:3e:de:dd:49:0e:73:2c:
ca:30:e8:90:34:0c:1c:35:7d:0f:d8:4c:f7:a6:7b:
a6:4a:b2:dc:ee:ad:2c:70:76:4f:62:12:00:33:e0:
0b:1d:6a:5d:90:19:aa:af:ca:8d:fc:95:b6:97:f7:
3a:0a:09:a1:d3:9c:e6:8b:4b:3b:50:3b:8e:a9:46:
c1:2f:6b:e2:d1:af:54:b0:09:76:3a:2f:69:57:3c:
98:67:c0:d8:a4:bf:35:a7:a6:1c:3d:77:ce:00:4e:
9b:2e:bf:e7:c7:68:f9:76:d1:e7:9f:7c:32:8d:63:
49:d8:36:34:59:62:d5:56:d6:ea:d8:b4:32:9b:a0:
6f:af:a7:de:74:cc:bf:c1:c8:95:46:17:22:30:f2:
59:c4:0e:4c:d3:1c:d3:15:a0:e2:73:c5:4a:b1:9d:
5d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EC:78:2E:B5:AC:20:B1:54:EE:BB:76:43:44:20:79:5A:AE:C1:A2
X509v3 Authority Key Identifier:
keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:da00::/32
Signature Algorithm: sha256WithRSAEncryption
16:70:7b:12:f4:00:02:6e:de:6a:bc:e9:5b:69:0a:4f:fe:49:
c4:cf:8d:86:e8:9e:6f:e4:45:bc:32:51:ac:b6:68:8e:fe:ba:
9d:4a:fc:44:d8:cb:96:61:fc:48:4c:59:f8:9f:69:25:bc:c5:
3e:bc:48:07:c8:f3:fb:af:82:6b:09:60:62:10:d9:b9:13:a4:
45:d2:15:5b:77:c5:2c:56:20:8a:a4:66:fc:f1:23:43:a8:f5:
dd:b8:42:7c:ec:2d:72:a6:53:2a:9d:de:fe:02:5d:85:8e:28:
28:b3:fb:0a:11:a1:1d:b6:95:ef:9b:61:0d:93:7d:4a:93:1d:
0f:7b:92:c1:98:18:3f:40:5b:05:b8:80:4f:82:8f:46:1d:42:
46:29:95:e8:e4:68:52:49:c9:8f:61:f3:84:83:52:c7:66:af:
3a:ec:81:08:89:91:4c:28:cc:3e:eb:bd:39:5c:76:18:f7:4b:
f4:96:84:9a:6c:7e:b3:99:ee:c7:c9:20:89:e4:67:ca:de:7c:
af:ee:9c:fb:8f:65:00:74:8d:da:c7:02:b6:87:12:47:3e:89:
e8:b4:a7:c6:50:39:4d:44:1c:8e:38:41:88:20:10:b8:18:90:
20:12:d8:32:b9:b6:0d:5c:42:de:b4:8f:1c:6a:ba:e9:ca:66:
38:cf:d8:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:56:38 2025 by rpki-client