Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa
File: 323430333a396634303a3a2f33322d3438203d3e20313338303734.roa (raw, json)
Hash identifier: 1il+bYXQjl2Z5M2afvU115zEzq23jQfoWNPWBzr6QnM=
Subject key identifier: 19:E9:3E:57:04:8B:56:C7:1B:06:92:15:35:86:97:62:2F:2B:9E:13
Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Certificate serial: 3438FCE3E2C439B7076E9A59C4F630403EA1CCCD
Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa
Signing time: Mon 01 Jul 2024 01:05:39 +0000
ROA not before: Mon 01 Jul 2024 01:00:39 +0000
ROA not after: Mon 30 Jun 2025 01:05:39 +0000
asID: 138074
IP address blocks: 2403:9f40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:38:fc:e3:e2:c4:39:b7:07:6e:9a:59:c4:f6:30:40:3e:a1:cc:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Validity
Not Before: Jul 1 01:00:39 2024 GMT
Not After : Jun 30 01:05:39 2025 GMT
Subject: CN=19E93E57048B56C71B069215358697622F2B9E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:31:60:d0:0a:a9:e2:9a:e0:58:08:56:ec:
99:65:a4:f6:1b:a9:1c:f5:9f:01:c0:78:2e:15:fb:
ee:c1:d0:19:7a:0a:25:58:cc:27:5e:d1:6f:8f:da:
b5:20:5f:93:e2:c1:61:8f:ed:fb:7e:e7:ea:f2:74:
c7:e7:46:9d:58:a2:10:99:bd:1d:1f:df:8b:3c:1d:
ea:b0:48:47:7f:12:e5:8b:b4:ec:fd:c8:f2:ff:9c:
93:df:81:e9:1b:c1:a2:7f:6c:fe:63:e3:3d:2c:25:
b1:43:96:0f:21:21:86:87:6a:ad:f6:b1:ca:6b:88:
a0:88:ab:23:e3:94:1d:b7:aa:99:25:95:f8:a0:7a:
3d:5f:84:d1:76:ab:3c:21:91:35:64:ae:67:60:de:
b0:33:62:a0:fc:68:68:9c:45:68:eb:71:fd:d4:28:
6d:aa:52:48:ff:7e:62:fe:a4:52:82:4f:82:e4:b7:
46:98:ca:d3:35:4e:fc:eb:63:d3:ae:3c:80:45:ae:
8c:de:ff:15:25:0c:ba:90:93:31:ff:51:5e:f2:31:
0d:66:c2:16:0c:eb:5a:25:4c:ea:e8:57:db:67:c6:
64:df:57:5b:8c:3b:80:50:f7:06:d6:6a:18:1b:21:
fe:64:63:13:4c:e4:2f:96:6f:ae:a9:27:84:a2:a7:
f8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E9:3E:57:04:8B:56:C7:1B:06:92:15:35:86:97:62:2F:2B:9E:13
X509v3 Authority Key Identifier:
keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:9f40::/32
Signature Algorithm: sha256WithRSAEncryption
88:e2:e2:a5:d8:a3:ed:99:78:88:34:e0:7b:72:f1:2d:3a:b6:
30:dd:19:87:8b:6b:f3:4c:12:ca:2c:7d:f5:dd:db:66:ce:52:
d8:71:0d:6a:43:6b:e3:b6:52:ea:00:ff:67:ef:ab:59:06:50:
5e:34:ac:ed:1b:3a:d3:94:b1:d7:ec:73:68:2e:00:fd:a5:7a:
07:5e:a8:8a:7c:83:e8:03:8d:77:b0:b7:2c:f1:28:e5:83:dc:
00:b5:33:59:71:a8:51:07:c9:4d:18:67:60:e6:26:ae:93:cd:
a4:89:f5:97:72:e3:25:16:0f:12:44:6b:47:8b:1a:5b:21:57:
90:24:55:84:4a:68:93:42:b4:09:3c:2f:8f:30:08:81:1a:02:
50:72:1c:5a:5f:78:2c:01:58:23:03:7c:e1:33:b4:fe:e8:57:
d8:a8:55:fd:40:6d:9d:e7:ec:89:3c:ae:ea:b1:09:c5:d4:d7:
80:b2:7e:76:d2:ff:bd:84:ee:a5:71:5b:b9:f2:9f:4d:75:0c:
a3:58:33:f6:fc:e0:4b:52:7e:c5:04:53:81:17:34:5a:fc:53:
0b:fc:61:3f:41:56:6f:ef:83:0d:33:f6:92:fb:77:9d:bf:94:
b1:ef:03:0f:80:4a:a5:27:10:a6:57:41:33:a0:30:33:d1:0a:
f6:59:24:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:53 2025 by rpki-client