Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203539323831.roa
File: 323430303a636438303a3a2f33322d3438203d3e203539323831.roa (raw, json)
Hash identifier: w3mgpqsf+QCQ0IESSJ7u/cpRjR0jksdX+ZR9wNYh8rI=
Subject key identifier: 14:E2:32:44:09:3D:CD:C2:07:BA:D4:72:E4:2E:16:63:9B:18:A6:1E
Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E
Certificate serial: 4C707DCC7741E65191D7FC028E609C88BA80716A
Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203539323831.roa
Signing time: Wed 12 Feb 2025 08:00:00 +0000
ROA not before: Wed 12 Feb 2025 07:55:00 +0000
ROA not after: Wed 11 Feb 2026 08:00:00 +0000
asID: 59281
IP address blocks: 2400:cd80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:70:7d:cc:77:41:e6:51:91:d7:fc:02:8e:60:9c:88:ba:80:71:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E
Validity
Not Before: Feb 12 07:55:00 2025 GMT
Not After : Feb 11 08:00:00 2026 GMT
Subject: CN=14E23244093DCDC207BAD472E42E16639B18A61E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7a:df:5b:59:cd:c9:1f:28:02:13:c8:1f:e0:
d0:60:ac:9c:a9:55:78:13:c0:0a:c3:d8:bb:1c:96:
6c:b6:ac:8e:2c:d7:c3:2b:6a:43:9d:46:7d:29:22:
e4:6c:c1:ab:f2:2c:50:2b:72:0a:32:d4:f3:73:e4:
20:cf:53:0c:c9:89:5c:32:eb:39:41:cf:12:07:6c:
84:78:49:1e:2e:a5:a6:a9:7a:2b:80:94:61:11:04:
f9:62:1e:51:c2:ad:1b:d7:1f:e2:6f:92:c2:43:a8:
e8:62:5a:56:60:4b:35:ed:9b:80:41:09:22:fa:a5:
d7:c2:2f:dc:2f:ea:8e:9c:8d:ec:39:a2:d9:53:b1:
ba:5a:d4:ae:e3:19:bc:39:f4:a8:dd:62:51:58:f7:
a0:73:99:4b:dd:69:c0:04:8b:11:54:88:a6:b4:56:
59:3c:8d:58:df:18:4b:4e:b2:ce:8c:4d:15:7d:04:
49:a2:4b:29:ee:41:f0:f2:0e:0f:93:af:01:0d:ba:
1c:b1:bb:f6:f2:93:8d:ab:4d:15:f0:a7:ba:60:ac:
cb:a9:2d:13:2c:13:e5:2b:a0:50:a2:fd:78:7a:c5:
bb:b8:09:ef:b7:bc:9b:3b:32:9d:78:c7:35:c6:67:
55:ea:f0:43:52:5c:9f:05:01:66:ee:d3:5d:a0:62:
05:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E2:32:44:09:3D:CD:C2:07:BA:D4:72:E4:2E:16:63:9B:18:A6:1E
X509v3 Authority Key Identifier:
keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203539323831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:cd80::/32
Signature Algorithm: sha256WithRSAEncryption
b6:a9:13:7e:0c:68:24:d6:ee:65:04:e3:c4:3d:7b:94:41:44:
57:c9:a2:77:34:97:a8:66:b1:71:64:c1:07:a5:3c:0b:d5:c8:
f0:8f:5f:fc:f4:9b:4a:34:7f:d2:85:02:53:5d:bb:2e:12:29:
d8:51:72:65:89:df:3d:d2:aa:9c:ff:2a:4c:14:42:d9:b2:67:
38:ef:99:80:68:a2:20:93:ab:89:09:08:6c:08:72:7e:91:9a:
b3:48:85:ce:9e:08:0b:d6:fb:04:aa:d3:65:64:5b:14:21:bc:
91:9a:f0:df:b3:1c:56:a9:29:5c:70:2b:d8:19:db:0b:3a:47:
dd:0a:25:4b:d8:88:9b:bb:87:17:eb:32:ae:f6:1f:48:43:54:
92:d5:59:a7:be:8a:68:cd:bb:e0:61:1c:63:ac:84:e4:0b:35:
30:c9:9a:af:e6:1e:f3:54:6f:f0:83:52:3b:2e:af:17:29:e7:
11:ef:56:dc:b1:ce:e0:05:0d:3a:57:d6:e3:bf:5c:4c:88:75:
5b:87:8a:07:2e:f2:09:2a:df:98:73:05:b9:a9:87:85:e4:39:
6a:d5:86:e4:3f:e0:b5:ff:f8:51:68:ec:74:73:2e:94:c1:47:
09:b3:e9:80:0f:19:02:3a:81:11:2c:06:a8:cf:27:06:bc:18:
42:61:a0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:12:48 2025 by rpki-client