Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa
File: 323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa (raw, json)
Hash identifier: jzAqzS+UM0D1OlBXnCUhpQdP3zDL5sXG1VXuhoHVU1Y=
Subject key identifier: 76:EB:BC:0A:31:3F:62:F0:62:57:2E:50:C5:DC:CD:CD:E7:9B:07:49
Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45
Certificate serial: 3A01A1E2D15E5C3EC6BE0D781ECCED6F89FB78D1
Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa
Signing time: Thu 01 Aug 2024 02:49:35 +0000
ROA not before: Thu 01 Aug 2024 02:44:35 +0000
ROA not after: Thu 31 Jul 2025 02:49:35 +0000
asID: 142339
IP address blocks: 2407:a5c0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:01:a1:e2:d1:5e:5c:3e:c6:be:0d:78:1e:cc:ed:6f:89:fb:78:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45
Validity
Not Before: Aug 1 02:44:35 2024 GMT
Not After : Jul 31 02:49:35 2025 GMT
Subject: CN=76EBBC0A313F62F062572E50C5DCCDCDE79B0749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0e:40:d2:7d:98:79:bd:52:37:ef:b1:de:10:
cb:52:e4:87:7d:57:53:eb:4c:61:93:65:45:ce:c2:
02:92:11:b9:00:15:13:8b:e4:4a:8c:6a:ec:df:a7:
b7:ab:b7:ec:30:ac:51:1a:32:ad:52:2c:dd:49:76:
c7:bf:18:68:8d:90:e0:ee:df:54:ea:e8:e8:34:19:
f9:21:f2:dc:08:33:b2:8e:54:c7:a1:46:fc:92:36:
53:ed:ec:36:25:e3:03:b0:bf:de:52:7a:e4:89:b5:
c0:9c:ce:d9:6c:d2:e6:d8:27:64:43:96:b4:26:c5:
ee:3e:b5:c6:9f:ab:60:50:2a:6a:06:bc:0f:ed:6a:
56:ad:db:10:fe:3f:c1:c7:b3:87:7a:26:15:79:56:
d6:67:67:d4:83:03:5d:f0:f9:d6:c2:78:0a:e2:37:
88:1a:fa:0e:74:c1:c4:da:28:1a:cd:70:35:3d:96:
7e:9f:1d:d2:a1:f3:cb:e2:5c:b0:4d:d9:2d:3d:c4:
8c:aa:ab:8a:d8:ca:48:16:ce:4f:2a:80:e4:57:05:
d3:e8:e9:c1:c8:3e:ac:7b:46:12:88:29:dd:2b:69:
91:b5:c5:8f:dd:23:3d:e4:c6:f0:3f:c8:83:31:0e:
33:aa:5d:40:39:27:e6:af:82:52:c7:d9:32:91:0a:
86:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EB:BC:0A:31:3F:62:F0:62:57:2E:50:C5:DC:CD:CD:E7:9B:07:49
X509v3 Authority Key Identifier:
keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:a5c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
45:39:d0:e4:fe:5c:02:31:ea:57:f6:62:19:d1:f1:68:e2:fd:
a0:1a:15:eb:7d:41:0e:65:82:ee:0d:fa:ca:58:5d:98:8f:27:
a7:0d:23:66:87:40:38:28:20:e0:28:5d:a1:24:81:85:ac:bb:
54:6a:f0:ec:92:9d:ff:86:0c:8b:09:1f:7c:df:f0:41:4d:cc:
7d:5f:9e:e5:b5:6d:a9:54:b0:62:f1:17:3f:5f:d1:a2:cc:c3:
ef:96:34:fe:65:1e:c2:a4:76:1d:56:ed:1f:3e:fa:0b:f9:b4:
2a:dc:97:0f:b4:8a:e1:12:fc:75:1e:54:c1:7a:5f:87:c2:bc:
3a:8f:d3:8d:24:03:98:fa:58:5e:78:b2:13:f5:aa:b1:7b:15:
d9:5b:fa:cb:00:6c:86:e2:b9:96:ab:60:87:8e:12:ae:db:57:
33:02:89:1a:a7:63:42:40:07:5a:f0:6d:d8:45:18:f0:35:5e:
cd:d7:62:72:c2:e4:81:63:58:7a:0b:95:42:75:45:27:de:ac:
23:ac:55:ca:64:6d:e4:24:74:bc:39:cd:07:25:2a:83:16:07:
44:da:fb:22:d4:fb:5a:7e:a5:e5:80:ce:37:c7:40:ec:8d:50:
ce:db:ee:8f:5b:7e:13:d4:1d:ed:a1:3d:83:d3:83:37:0f:83:
cd:c4:64:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:02:02 2025 by rpki-client