Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa
File: 323430313a643934303a3a2f33322d3332203d3e203234353330.roa (raw, json)
Hash identifier: 4+y7rjN8rrx24W4l4v0NhyPbAx+wxdh2Vyt9geBR9nM=
Subject key identifier: 1A:C6:FD:89:F3:E9:C5:B9:73:DD:20:9B:1C:0B:A8:72:1F:0D:B8:EA
Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Certificate serial: 53CBFED8D74B1DA264C89AE2C826A864CFFB8C9B
Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa
Signing time: Fri 20 Dec 2024 07:02:58 +0000
ROA not before: Fri 20 Dec 2024 06:57:58 +0000
ROA not after: Fri 19 Dec 2025 07:02:58 +0000
asID: 24530
IP address blocks: 2401:d940::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:cb:fe:d8:d7:4b:1d:a2:64:c8:9a:e2:c8:26:a8:64:cf:fb:8c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40
Validity
Not Before: Dec 20 06:57:58 2024 GMT
Not After : Dec 19 07:02:58 2025 GMT
Subject: CN=1AC6FD89F3E9C5B973DD209B1C0BA8721F0DB8EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:32:10:37:54:e2:db:36:fa:1e:88:f1:1a:28:
bc:ea:c4:ba:9e:ee:99:1e:88:61:11:03:ba:43:30:
eb:ab:69:4c:74:9d:b5:69:ca:b3:76:a1:11:0d:39:
0e:1c:09:24:7c:6e:4d:e0:f5:4f:4f:f8:9b:5f:27:
ed:4e:54:bd:42:58:be:57:a6:94:f3:95:cb:5e:5a:
34:91:06:91:2a:b2:24:de:bb:51:54:21:7e:eb:f6:
08:b8:ad:51:4c:81:ab:c1:b6:03:3b:8e:b1:71:f2:
90:e8:1a:fa:35:6c:0b:53:3b:b7:86:f0:ea:0d:5d:
82:f7:0e:6b:db:c5:9e:e8:12:af:c4:f7:59:fe:89:
26:c8:33:23:f7:a8:ad:48:23:b6:b7:34:2b:a5:0e:
2d:2b:ff:59:7e:07:6a:e7:41:a8:e1:23:a4:4a:6f:
05:37:08:8f:76:0d:26:d8:ba:31:bd:0e:ba:22:be:
f3:6a:16:10:5b:01:19:3d:b9:67:d7:68:18:4a:1c:
94:cd:60:0e:e0:43:b2:bb:fb:00:40:04:dd:07:4a:
c6:01:35:81:a2:36:46:80:a5:a3:fa:45:39:96:04:
91:cb:14:77:61:6b:3b:3b:84:e0:d4:e3:f6:1b:dd:
97:00:aa:81:4d:fe:64:c1:38:42:24:b8:fc:6e:03:
21:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C6:FD:89:F3:E9:C5:B9:73:DD:20:9B:1C:0B:A8:72:1F:0D:B8:EA
X509v3 Authority Key Identifier:
keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:d940::/32
Signature Algorithm: sha256WithRSAEncryption
95:ef:d4:2a:bd:61:31:4c:4f:71:c0:4e:61:bc:3b:4a:fe:f1:
6f:72:04:7c:b8:3f:d5:95:c5:45:62:68:70:6d:fc:69:3a:61:
1a:86:82:2f:f0:eb:33:4d:1f:2f:b4:3d:08:2e:48:b8:f4:ac:
79:10:a9:3e:d3:b3:c4:22:df:0e:af:90:44:78:5d:8b:6a:c2:
09:6d:32:6d:7d:46:c8:52:d5:fc:f7:27:0e:d8:20:dd:ad:53:
dc:4c:b2:7b:26:c9:bf:39:0a:6b:51:11:c6:b3:3a:7b:ef:d7:
e1:69:84:ab:23:28:f8:26:fa:bc:da:cd:c6:1e:64:b9:f3:c7:
6f:d7:a4:f9:0a:12:30:3b:61:33:9b:5d:bc:ea:2f:e5:91:2c:
3f:8a:f5:03:b3:31:15:3d:44:c4:00:35:df:a1:a4:41:e4:d4:
20:1d:4c:64:51:29:e1:de:e6:19:d3:f1:d2:05:bc:27:e6:39:
e4:e3:6d:51:8e:50:f6:69:07:bc:c8:9b:63:dc:ed:84:07:c5:
e2:cd:74:a2:8c:aa:e8:d8:1b:04:85:48:7c:12:7a:02:2c:e7:
b1:ba:03:2d:7b:60:63:d9:eb:e5:a3:98:f2:dc:f9:43:f0:5f:
89:7e:73:90:97:30:d5:c2:67:54:fe:1d:fc:43:30:69:a9:d2:
c3:44:46:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:35:07 2025 by rpki-client