Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa
File: 323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa (raw, json)
Hash identifier: /Nnh6j9dQCYcuoIKmMpFeUVi7V4lhYfyFAMUQ8KcTyY=
Subject key identifier: 91:FD:4B:D2:65:61:03:8A:87:01:ED:86:1A:3B:10:6F:E6:0C:65:24
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 28A0379C004044A06670722112888D23D9660C21
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa
Signing time: Tue 10 Dec 2024 06:04:53 +0000
ROA not before: Tue 10 Dec 2024 05:59:53 +0000
ROA not after: Tue 09 Dec 2025 06:04:53 +0000
asID: 153087
IP address blocks: 2404:97c0:2220::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:a0:37:9c:00:40:44:a0:66:70:72:21:12:88:8d:23:d9:66:0c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Dec 10 05:59:53 2024 GMT
Not After : Dec 9 06:04:53 2025 GMT
Subject: CN=91FD4BD26561038A8701ED861A3B106FE60C6524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:bf:7d:96:47:d6:ed:40:27:aa:b9:b8:4f:
63:28:a4:16:1f:41:b7:db:0c:64:78:e3:3f:55:7e:
c2:c4:66:19:12:20:ce:87:c9:37:1b:67:85:17:cb:
18:a4:5b:cc:35:62:65:49:f8:78:5a:2e:54:09:11:
19:ef:ae:a4:2d:44:d1:cf:96:37:a0:be:a4:a2:41:
cc:d7:02:ee:53:9d:1b:dd:7c:87:6d:94:f7:81:89:
85:ba:5f:b6:43:fe:2d:f6:c9:a8:d5:28:4e:f9:66:
ea:8f:18:da:e4:64:2f:a2:89:e6:f2:60:e8:1c:80:
e2:d0:aa:ed:67:f7:53:ea:d6:06:36:d7:55:22:29:
39:6c:39:dc:e0:6a:fe:c8:53:d7:18:25:76:22:cb:
c5:3a:c3:e6:99:f4:f2:bb:f8:02:11:54:88:ac:1f:
0a:bb:71:5b:04:d7:68:97:fd:10:ab:bd:d2:8a:5e:
b9:d6:72:52:05:13:d0:75:a5:db:e1:c2:eb:42:4b:
c4:15:0b:e9:ce:44:e3:4f:d4:35:37:c3:67:71:2f:
6a:21:30:64:9e:8a:aa:4a:bd:ff:c5:a5:48:9c:a7:
e1:16:cf:5b:11:a1:3b:11:83:5b:b9:8b:50:33:f6:
5c:ee:8c:2d:db:b6:6c:58:9d:05:b9:b6:8d:85:15:
ab:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FD:4B:D2:65:61:03:8A:87:01:ED:86:1A:3B:10:6F:E6:0C:65:24
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:2220::/44
Signature Algorithm: sha256WithRSAEncryption
89:85:7e:76:d3:4a:39:97:ad:f6:cf:d5:04:ac:78:c3:8f:09:
d3:09:d1:92:6c:60:c4:55:37:92:51:65:5b:8d:08:2b:a7:95:
bf:8d:12:da:29:45:df:98:55:17:35:96:6c:96:ea:2f:4b:53:
fe:73:a5:02:be:63:cd:2e:9a:5e:bf:76:26:a3:4f:b7:9b:f6:
8c:41:19:b8:73:6d:e0:77:4c:87:07:ac:9e:27:0a:f8:b1:eb:
da:c8:d3:91:93:d3:fe:82:54:9f:6e:2b:e8:27:19:ba:15:5d:
c7:33:93:b8:6d:78:0a:ec:2b:53:8f:08:28:c6:71:ba:21:d5:
3c:43:38:37:0c:3f:a0:7b:a4:50:5b:f3:2d:2b:55:2a:95:ec:
40:78:ae:f5:5b:2c:cd:f9:10:1a:57:a8:90:57:01:5b:43:c7:
9d:8b:33:82:c2:80:a4:6c:f8:05:a2:12:7f:7b:32:cf:8a:2f:
cd:31:cb:d0:61:6e:2b:1a:06:01:8d:a0:99:03:e4:ca:5b:49:
67:2a:3f:f2:2a:e9:b0:67:f7:ff:77:e6:6c:da:88:05:44:12:
e0:c5:02:d0:a2:6e:70:f4:6f:df:30:6a:4f:6e:0c:69:13:ee:
45:8d:c1:44:d8:5f:c1:3f:08:d6:db:94:55:0c:e2:66:d2:27:
cd:88:27:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:35:20 2025 by rpki-client