Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa
File: 323430363a343563303a3a2f33322d3332203d3e203634333030.roa (raw, json)
Hash identifier: mExYqLdL0Yo1eS6gHZR1YzCOV2yWVv/IrbWEOLxL0ms=
Subject key identifier: 03:C9:8C:FA:92:1B:B7:90:C9:5D:37:85:20:6A:DD:04:24:00:D3:C3
Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89
Certificate serial: 239265F98433C1F00081EBE3476586903EAF4D27
Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa
Signing time: Thu 11 Jul 2024 19:00:01 +0000
ROA not before: Thu 11 Jul 2024 18:55:01 +0000
ROA not after: Thu 10 Jul 2025 19:00:01 +0000
asID: 64300
IP address blocks: 2406:45c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:92:65:f9:84:33:c1:f0:00:81:eb:e3:47:65:86:90:3e:af:4d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89
Validity
Not Before: Jul 11 18:55:01 2024 GMT
Not After : Jul 10 19:00:01 2025 GMT
Subject: CN=03C98CFA921BB790C95D3785206ADD042400D3C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:0b:75:5a:7e:fd:1a:38:a9:d8:15:ba:28:
bb:16:59:9c:ed:83:0d:b7:25:11:b5:0d:cc:2e:61:
3e:15:cc:63:1c:6e:93:df:dd:0f:43:c4:92:47:08:
54:69:09:ed:9e:f3:72:49:ae:ac:30:f0:75:3f:30:
6b:cf:33:bf:fc:0f:81:97:a0:4a:e9:22:b1:e9:45:
b7:79:56:91:d3:b2:e8:96:d5:e8:a3:d9:7e:77:99:
16:38:00:6a:a8:b4:05:ea:d1:ec:03:d5:ca:0a:56:
1f:9b:4b:cb:42:c1:e4:e3:7c:2a:43:9c:4c:cb:95:
19:4b:c1:66:a5:37:04:f9:e4:3b:2c:c0:81:bf:c6:
b5:5d:6e:e6:bd:e0:c5:b7:52:ba:c3:d5:6a:e6:fe:
f7:2c:b2:4b:66:a6:51:ba:0b:2b:ea:97:c7:b4:89:
1c:de:d0:e4:e9:32:e4:70:d2:2c:e5:f2:3d:f3:bc:
20:17:3f:28:48:c3:37:eb:08:ce:a0:e2:d2:69:d4:
7b:6a:ad:01:bd:d6:8a:61:66:54:f8:6b:88:7f:9c:
89:5f:06:70:85:7e:5f:a6:a7:17:cc:da:d1:65:2f:
9b:c9:32:d9:d8:e6:1a:58:aa:d7:36:45:31:52:e3:
ea:1e:8b:4d:52:a0:5a:f6:9b:2e:ca:11:31:31:5c:
cf:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C9:8C:FA:92:1B:B7:90:C9:5D:37:85:20:6A:DD:04:24:00:D3:C3
X509v3 Authority Key Identifier:
keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
63:41:cc:42:c4:e2:63:e4:c3:57:2f:23:80:fa:71:c9:8c:58:
eb:29:73:18:6d:fa:19:e7:99:e1:a5:c4:83:20:75:95:45:99:
63:d1:a0:ed:bc:17:6d:15:9a:57:25:29:6c:4e:15:4b:21:b3:
8b:3d:65:d2:cf:f3:74:c0:27:66:7e:b8:4d:b5:ff:fc:3d:2c:
90:fa:00:af:39:38:11:8a:e8:05:19:12:d7:2a:61:05:3c:4a:
82:b0:58:3f:90:37:e1:14:bf:e5:df:9a:bc:d2:a6:db:de:0c:
b3:33:43:35:38:9a:74:26:0a:0b:6a:ee:b3:40:78:58:42:4f:
16:8e:84:f4:e2:11:6c:a3:6a:a3:17:75:f7:88:7b:b7:8b:a1:
e2:5e:55:8d:d9:17:21:3b:b7:76:57:e2:18:34:cd:de:4f:09:
10:1b:93:95:48:0e:d9:36:64:f3:f6:8c:98:21:99:a1:7a:f5:
ee:54:6b:4d:bd:e5:10:a8:8c:ee:8a:2b:17:05:61:ef:9d:1c:
f7:56:6e:07:1a:6d:da:ae:92:c2:c3:fa:1d:23:5b:94:66:57:
3c:f5:4a:9f:7d:d8:1c:82:72:83:0b:e2:9d:85:f4:4d:7a:b9:
53:6e:29:0a:e7:8f:a3:e4:52:af:75:ff:8d:d6:49:9f:e6:b9:
f9:7c:70:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:20:12 2025 by rpki-client