Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f34382d3438203d3e203435333132.roa
File: 323430343a663863303a3a2f34382d3438203d3e203435333132.roa (raw, json)
Hash identifier: EZ5R/pGx/aq53PhKyY/Pb8gWMwjrSB2+xtva+OYLXDI=
Subject key identifier: 03:3E:C0:5C:3E:BC:71:68:94:10:A2:46:68:BF:18:4D:16:D9:AF:63
Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Certificate serial: 62898A928EB303457FBCBF3A6B67B54284DAE6CD
Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f34382d3438203d3e203435333132.roa
Signing time: Tue 26 Nov 2024 07:01:54 +0000
ROA not before: Tue 26 Nov 2024 06:56:54 +0000
ROA not after: Tue 25 Nov 2025 07:01:54 +0000
asID: 45312
IP address blocks: 2404:f8c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:89:8a:92:8e:b3:03:45:7f:bc:bf:3a:6b:67:b5:42:84:da:e6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441
Validity
Not Before: Nov 26 06:56:54 2024 GMT
Not After : Nov 25 07:01:54 2025 GMT
Subject: CN=033EC05C3EBC71689410A24668BF184D16D9AF63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bb:5b:3a:06:17:40:e4:a0:1d:6a:47:9c:c6:
3c:01:99:c8:32:8c:49:b1:8e:c4:8c:a8:8a:42:7d:
55:38:39:8f:c7:7c:77:60:18:ee:92:d3:5b:bb:67:
1b:47:6e:3a:f1:c0:15:07:45:c9:60:01:9e:09:7d:
47:f9:72:6e:7a:d6:01:ff:d2:ae:d2:fd:32:dc:46:
6f:fc:30:93:53:33:ed:85:b4:88:e7:98:68:a5:40:
ab:91:af:61:17:bb:c0:56:e9:6b:4c:3b:ca:da:4e:
7b:8b:fe:d1:e8:93:37:1e:78:94:f2:bb:f2:f2:46:
d8:a3:f1:63:0d:a2:d1:59:d4:d8:78:5a:2b:02:0d:
ae:67:3f:92:bb:8e:42:26:dd:72:0b:4b:40:fb:1f:
d8:bb:57:3b:4e:53:79:31:21:8a:31:e6:7f:d0:1b:
28:3f:28:50:f3:7d:91:66:5c:de:32:24:5d:cf:21:
e6:3f:f3:62:d4:47:de:5d:3b:30:3a:0a:bc:3d:b5:
cd:16:c4:0b:5f:1f:7e:e8:ab:ab:58:35:62:9f:2e:
b9:d7:db:a0:1c:aa:91:8f:d3:27:7a:a0:02:c6:d7:
51:f0:db:29:ca:a8:7b:f7:e9:34:91:a8:22:fb:5a:
55:33:f4:9a:1d:76:dc:59:d2:34:f2:62:60:69:18:
6d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3E:C0:5C:3E:BC:71:68:94:10:A2:46:68:BF:18:4D:16:D9:AF:63
X509v3 Authority Key Identifier:
keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f34382d3438203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:f8c0::/48
Signature Algorithm: sha256WithRSAEncryption
48:fe:d7:22:c4:70:e6:bf:2d:48:9c:e2:1b:1a:4f:1b:d5:06:
58:e5:33:e1:81:1e:30:98:48:50:fe:2e:a8:fe:f4:3c:8a:72:
73:70:9c:08:44:3f:c4:9a:63:2d:6c:b3:70:6c:2b:b5:14:6f:
bb:cb:d4:49:c6:49:00:29:24:14:09:b5:84:01:de:ed:88:4d:
35:e6:eb:4a:30:c8:5e:c3:5e:8f:22:06:bf:53:68:5f:3d:a2:
0d:38:5c:6a:ea:84:1a:4d:67:a3:a6:5e:89:0f:0d:f6:d7:80:
a2:4e:3f:f3:23:03:a5:df:f8:b5:d7:f6:05:4b:ff:b5:f2:c4:
04:d7:8d:df:54:f0:e8:5b:e1:ae:44:36:09:1c:5f:da:e3:e7:
ec:1e:4c:f8:dc:6b:3e:ca:c1:e4:7b:ba:a1:c6:95:f8:c6:6a:
8b:c2:bb:41:64:1a:d5:68:11:af:49:a0:ad:c8:0d:e7:6a:c1:
66:2e:72:6d:a1:c4:17:cf:3f:b5:28:0c:f3:b1:4a:2e:3d:93:
91:1c:0a:50:fd:19:81:85:b6:b9:89:b9:14:c4:35:b7:6b:ad:
82:cb:24:ad:c3:11:d7:96:fd:4d:c0:b9:62:d2:e8:c8:bd:fe:
65:e9:82:3f:02:65:f5:58:80:4a:e5:d0:4c:c7:ac:6a:92:4d:
b9:3e:42:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:03:27 2025 by rpki-client