Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa
File: 323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa (raw, json)
Hash identifier: NT/dB4cpM5dJrrSnHuwRtbMOq0ZMdStbV27PAKZMthY=
Subject key identifier: 14:BE:EA:F7:5A:12:45:D2:E0:1A:CE:D4:2C:1F:94:63:F8:06:44:D4
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 5798830C9D07EB8327532232CBDE34D7E729DC64
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa
Signing time: Fri 10 Jan 2025 12:00:00 +0000
ROA not before: Fri 10 Jan 2025 11:55:00 +0000
ROA not after: Fri 09 Jan 2026 12:00:00 +0000
asID: 140423
IP address blocks: 2406:20c0:5000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:98:83:0c:9d:07:eb:83:27:53:22:32:cb:de:34:d7:e7:29:dc:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Jan 10 11:55:00 2025 GMT
Not After : Jan 9 12:00:00 2026 GMT
Subject: CN=14BEEAF75A1245D2E01ACED42C1F9463F80644D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f9:52:74:9e:2d:30:c8:34:af:08:21:35:c8:
5d:55:f4:8f:9f:d7:ed:d0:c4:b9:b9:0a:40:a8:9e:
38:c9:93:7b:61:e9:89:4d:dd:79:02:dc:b1:ee:1a:
e8:23:2a:0b:10:66:b4:58:48:ce:5a:ca:ac:87:9b:
e1:76:7c:70:f1:72:ec:2a:bb:9d:a7:a4:e5:b7:44:
cb:a4:63:79:92:e9:2a:66:bc:2a:04:d7:00:e6:09:
37:90:df:66:19:6f:08:7b:3a:68:d1:ae:e3:63:70:
4f:ea:fc:fe:bb:16:ec:35:8c:dd:0d:7b:73:58:e9:
25:2e:19:a8:b9:d3:9d:7b:99:98:2c:03:31:dc:1f:
28:15:a7:e1:ae:87:a1:94:93:99:9c:c1:08:60:74:
c9:da:ef:bd:c4:51:5e:c5:44:df:b7:6f:79:a8:0b:
91:e9:e5:98:5c:b4:cd:80:ad:19:de:d2:35:c9:48:
2a:33:cb:7a:dc:50:95:fb:cf:11:73:85:8b:93:c4:
57:54:aa:8b:26:72:5c:12:f1:8c:26:06:f1:a2:ff:
44:c0:75:df:a3:8e:36:89:f9:28:de:c4:fa:48:f0:
f8:ca:d2:a1:2a:28:98:af:ea:cb:31:e0:24:25:6b:
e1:b7:b7:56:36:0c:a7:04:d0:1b:8b:8e:8a:3f:ea:
4a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BE:EA:F7:5A:12:45:D2:E0:1A:CE:D4:2C:1F:94:63:F8:06:44:D4
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
a1:c5:30:a3:fb:b1:8f:99:ba:10:3d:bd:4d:12:1d:61:10:4a:
4c:69:00:32:10:d3:0c:bb:02:1d:b3:28:02:cb:09:e2:64:c5:
44:9c:66:64:4c:44:a4:a6:f6:5b:a0:72:0f:f6:e0:3d:38:5f:
d1:28:d2:cf:99:88:78:24:9a:c0:a7:6e:2d:8e:59:91:41:73:
67:d1:61:1d:f0:0e:b6:2e:96:a8:ad:7c:e4:b5:8c:2e:2f:eb:
14:b3:47:38:45:a7:e2:11:f5:e3:e4:38:d7:ca:6d:60:43:a8:
d1:73:18:c1:b2:64:c8:ea:0a:f3:f3:43:bb:7f:d5:02:89:55:
34:e2:53:f9:77:1f:2e:35:a2:61:dc:32:30:f0:35:45:f3:93:
d8:33:be:67:46:37:d1:be:d2:29:9a:01:af:b3:89:b3:82:19:
1d:21:ac:04:52:3d:ea:8d:88:75:0a:11:5c:d9:d1:05:23:1c:
ac:04:80:5b:3b:af:29:38:e3:d3:93:11:d6:ca:4c:03:6c:59:
ae:fd:c5:aa:9d:f5:19:a0:bd:49:1f:cc:00:2b:e2:13:15:64:
f4:3b:46:d8:28:c1:1b:d9:91:28:4b:44:35:f8:16:e6:92:8d:
2b:71:b7:f9:28:d8:76:1d:06:a6:6a:a1:88:64:54:c4:09:fc:
54:1f:22:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:54 2025 by rpki-client