Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa
File: 323430373a613563303a3a2f33322d3332203d3e20313432333339.roa (raw, json)
Hash identifier: MqPsWsjfl+dvyk5ktsSY4CI6tIF3C/cx5WnXAN8LB/s=
Subject key identifier: F0:E7:37:CE:E8:E9:41:9F:13:03:53:15:34:A9:FF:CA:E5:30:14:EB
Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45
Certificate serial: 0636F19C4661574BF05261E405F996AA07BBEA49
Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa
Signing time: Fri 23 Aug 2024 18:00:00 +0000
ROA not before: Fri 23 Aug 2024 17:55:00 +0000
ROA not after: Fri 22 Aug 2025 18:00:00 +0000
asID: 142339
IP address blocks: 2407:a5c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:36:f1:9c:46:61:57:4b:f0:52:61:e4:05:f9:96:aa:07:bb:ea:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45
Validity
Not Before: Aug 23 17:55:00 2024 GMT
Not After : Aug 22 18:00:00 2025 GMT
Subject: CN=F0E737CEE8E9419F1303531534A9FFCAE53014EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:95:24:35:8e:87:17:1f:fe:06:e1:c2:5b:d4:
cf:66:6a:97:18:a4:b8:98:9e:67:1d:a2:fc:7a:ae:
5b:16:da:59:9c:d4:b6:1d:48:c8:6d:99:46:e8:53:
1e:ae:95:f0:8d:56:53:3a:00:16:ab:25:22:57:cf:
22:4d:33:c2:ec:61:32:f5:78:aa:18:b5:85:52:1d:
59:c0:eb:92:b6:9f:d9:81:37:7a:5e:47:ac:e9:ce:
4a:48:ef:3c:23:ce:35:35:ec:75:db:de:88:b2:13:
74:2a:b2:bf:56:1d:2b:c8:ea:55:54:25:bf:e5:12:
92:b4:01:6b:e0:5a:68:79:32:7e:8d:cc:9c:5c:e0:
8f:84:b2:d6:d4:fb:4b:ec:e9:a6:c0:7c:06:5f:09:
55:da:3d:16:18:f9:62:a9:e1:ce:2d:73:47:81:f7:
c4:01:98:48:95:58:f8:4b:40:18:49:15:cc:05:26:
c9:59:e6:bc:07:4c:fc:54:a6:ec:88:d7:72:8c:67:
60:61:1a:0c:5a:4b:af:f6:b3:ab:c1:73:da:22:8f:
d2:2a:ea:bb:df:5d:ab:2d:69:a9:0c:de:a1:f9:47:
d6:ec:af:cb:23:eb:d2:70:80:54:88:f4:b3:35:e9:
62:bd:76:17:78:73:f4:05:83:ce:00:a7:93:6d:87:
74:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E7:37:CE:E8:E9:41:9F:13:03:53:15:34:A9:FF:CA:E5:30:14:EB
X509v3 Authority Key Identifier:
keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f33322d3332203d3e20313432333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:a5c0::/32
Signature Algorithm: sha256WithRSAEncryption
3a:e6:a1:c0:1b:38:fb:bd:a1:30:cd:3a:0d:9a:00:52:61:ce:
17:00:d1:0c:65:a9:50:4f:19:16:9a:ef:96:9c:23:e1:92:74:
fc:b7:d7:e8:25:6f:97:80:73:cc:9d:38:63:43:40:b9:c7:b8:
f2:22:0e:26:29:75:3f:5a:59:99:41:e0:9b:c9:79:2d:81:5b:
46:df:12:28:ae:01:a7:85:92:00:4a:0f:48:d8:59:6f:6c:ff:
15:2e:0b:15:60:a4:33:9b:dc:5b:8d:72:87:3a:ec:41:7a:4d:
89:67:d7:bc:b8:4a:c5:22:33:66:d8:23:a3:db:34:48:ff:ca:
0e:5d:15:1e:f6:df:21:22:69:91:1e:3b:d7:a4:9d:4e:e1:7d:
e1:4a:d8:b3:69:94:27:a3:1a:64:06:ff:96:42:8c:be:df:98:
66:85:ae:88:3f:9e:7c:96:79:ef:e9:e6:18:02:c8:9a:8f:d4:
0e:69:48:fd:28:8c:1c:90:70:82:c3:cc:58:35:d1:7f:84:64:
7e:e4:40:dd:0a:72:bf:4e:cb:ec:8f:d9:3d:b5:e0:f8:85:eb:
44:ac:24:ec:fe:a4:2b:4d:1a:f5:54:e7:ef:fd:94:00:ed:8f:
04:4e:cd:8f:98:4c:b6:49:4c:3d:40:f1:5a:1c:19:04:42:5e:
47:87:3f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:00:46 2025 by rpki-client