Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa
File: 323430353a633934303a3a2f33322d3332203d3e20313430303132.roa (raw, json)
Hash identifier: xj74juQcT+CUxiMh/vxPzjondMCg0pv/+MpCN6N8gS0=
Subject key identifier: BA:47:FF:B5:92:8A:6A:24:78:EA:49:A7:3C:A0:D8:58:F1:3E:A4:6E
Certificate issuer: /CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A
Certificate serial: 08F167141C7C9E7AD2EA6065AD90EF60C25B67BB
Authority key identifier: E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa
Signing time: Tue 09 Jul 2024 04:00:01 +0000
ROA not before: Tue 09 Jul 2024 03:55:01 +0000
ROA not after: Tue 08 Jul 2025 04:00:01 +0000
asID: 140012
IP address blocks: 2405:c940::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:f1:67:14:1c:7c:9e:7a:d2:ea:60:65:ad:90:ef:60:c2:5b:67:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A
Validity
Not Before: Jul 9 03:55:01 2024 GMT
Not After : Jul 8 04:00:01 2025 GMT
Subject: CN=BA47FFB5928A6A2478EA49A73CA0D858F13EA46E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6d:3f:f1:07:88:48:e7:23:bb:7d:f8:b3:6b:
c2:ac:6d:9f:b1:69:64:6d:25:34:06:01:3a:69:d1:
e4:f0:5c:3d:bb:2a:19:91:ef:01:c3:fa:a3:05:56:
a7:65:f3:3b:e0:42:66:a0:87:66:9a:65:62:a1:fd:
ba:67:d0:8b:31:4d:b4:dd:b2:1c:e5:ed:67:6a:13:
cd:d0:e6:01:72:62:f4:ed:a3:49:8d:d8:34:04:87:
30:e8:11:af:e7:ca:d0:ae:ad:f5:55:a3:b8:4a:5b:
5e:5a:23:af:cc:6b:d1:8e:e5:33:c6:ae:4b:cb:3e:
a8:bf:be:74:38:69:80:ba:83:63:62:d2:8d:e0:fe:
d2:35:f4:cf:fe:22:3f:d4:d9:4d:ca:ba:c5:b8:4d:
fc:d3:56:2c:85:7d:43:ff:94:7c:50:7b:cd:46:9b:
ff:88:e0:21:ec:bc:75:3b:e3:2e:a4:20:2b:59:f8:
53:95:a9:1d:1b:55:1d:8f:d5:d8:c9:c7:d0:6b:42:
63:5a:96:97:8d:27:7f:8d:72:90:32:c1:e4:86:b5:
56:34:ec:d2:5a:d1:a9:94:08:c5:ee:40:c8:67:a7:
b2:6e:a0:84:23:a5:bf:ac:4c:52:17:ab:98:bd:d0:
d1:18:c9:ad:2f:c3:65:95:cc:1e:35:40:7d:c5:08:
60:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:47:FF:B5:92:8A:6A:24:78:EA:49:A7:3C:A0:D8:58:F1:3E:A4:6E
X509v3 Authority Key Identifier:
keyid:E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c940::/32
Signature Algorithm: sha256WithRSAEncryption
3b:4d:7f:65:08:42:3d:b0:e8:16:3c:ff:14:ca:a5:bb:2e:33:
6e:08:14:9a:3d:c7:00:6a:ce:dc:98:26:d1:b9:05:b1:82:61:
1c:81:e1:4a:9d:cc:13:d1:42:cb:78:e6:f2:70:2e:36:23:d8:
ef:12:2a:4f:65:a5:7c:89:86:7a:96:91:7c:35:8e:87:55:0b:
67:fe:da:5b:cc:2f:16:35:27:0f:c2:fa:53:5b:5b:91:be:1c:
a3:f2:6c:0c:97:31:46:21:54:f4:fc:49:aa:5e:7a:c9:a8:dc:
ec:1a:d5:e5:b7:71:2c:b3:4a:e8:5e:31:a4:92:c4:0f:5f:c1:
b8:2f:d5:78:6a:57:f9:bc:49:94:ab:71:91:2f:8d:0f:e6:63:
01:20:68:a2:5d:61:82:b6:24:19:fb:1d:0e:c1:d5:c7:fc:28:
99:9a:0a:66:38:f4:68:2e:87:5e:7b:71:d6:46:85:0f:55:38:
cc:46:5c:57:49:c8:fc:54:75:f2:28:3d:ea:13:51:16:5b:09:
ab:38:64:da:b9:70:f2:ae:ee:ba:ba:14:c6:59:d8:d4:25:98:
a5:64:12:ef:2a:97:59:c9:7f:57:61:db:26:b6:8a:a0:84:bf:
f4:49:d2:70:45:91:6b:32:06:c2:2b:66:6d:71:b9:ac:1b:6e:
2e:f9:37:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:59:05 2025 by rpki-client