Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa
File: 323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa (raw, json)
Hash identifier: 9hl66Fb3ZZtaq9RTVyzyMYKvn9CeIA27uiDhLsoWI3A=
Subject key identifier: D9:D8:CF:DB:2D:B0:D3:82:42:DA:9C:59:28:4D:5E:EA:80:2E:77:F4
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 74EE06242D85D3A30E51830E058EA2AFB1FDA38E
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa
Signing time: Tue 10 Dec 2024 05:53:56 +0000
ROA not before: Tue 10 Dec 2024 05:48:56 +0000
ROA not after: Tue 09 Dec 2025 05:53:56 +0000
asID: 153087
IP address blocks: 2404:97c0:3000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:ee:06:24:2d:85:d3:a3:0e:51:83:0e:05:8e:a2:af:b1:fd:a3:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Dec 10 05:48:56 2024 GMT
Not After : Dec 9 05:53:56 2025 GMT
Subject: CN=D9D8CFDB2DB0D38242DA9C59284D5EEA802E77F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:f5:bc:e9:64:07:87:00:31:bf:94:45:4a:
bc:c9:75:97:82:47:0a:bc:6f:64:6e:3c:5c:dc:d0:
33:43:2f:87:aa:d4:90:b0:e4:d9:48:77:ac:14:3b:
5a:4d:1e:96:f6:dc:61:92:0c:46:f0:55:c2:fe:aa:
cd:a7:b1:5f:a1:87:c4:a1:2d:8b:89:d6:7a:ab:e1:
00:63:9d:b0:98:fa:14:cf:e2:a1:f5:ca:13:69:1a:
66:94:03:9a:bd:56:a9:39:80:a2:ee:a0:2c:91:f5:
a1:9b:83:58:9a:40:bb:07:13:d5:f2:8f:b7:c2:c6:
68:1f:f7:06:f8:c3:ad:14:26:14:a6:7e:3d:53:a3:
6b:22:c3:33:aa:40:f7:d3:4c:bd:2a:e7:df:c4:fd:
5f:5c:36:23:ef:8c:c9:52:35:06:71:79:a2:a4:c8:
88:2d:40:7a:6b:e3:ec:48:e1:a7:85:6e:2d:1a:e5:
39:b7:42:3b:d7:c9:b6:60:fd:e1:3e:e2:bd:df:e8:
f5:82:64:24:d2:cd:34:cf:c6:16:08:fa:10:93:45:
93:d2:98:eb:44:4f:be:70:45:66:bf:b0:08:d5:01:
dd:20:b2:6c:cc:36:c0:65:ee:78:6e:87:fb:bb:06:
57:ad:58:fd:ce:51:6a:91:95:10:64:ff:54:a2:c3:
90:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D8:CF:DB:2D:B0:D3:82:42:DA:9C:59:28:4D:5E:EA:80:2E:77:F4
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:3000::/36
Signature Algorithm: sha256WithRSAEncryption
b6:1c:b6:d1:a3:3c:f4:00:b7:2c:1a:b1:91:51:69:0a:93:30:
e6:3f:9e:29:d1:85:0d:fa:25:59:24:82:74:94:c5:5c:cd:1e:
b0:58:28:09:c8:d8:f3:eb:80:e9:c7:76:45:ff:c8:25:3e:18:
e9:f0:dc:71:0b:b5:3f:da:0e:04:e8:a1:70:a1:62:8a:06:03:
c7:9f:08:74:b0:3a:55:e7:c1:ff:65:2b:07:f3:a5:f8:a4:9b:
0d:f7:12:1e:07:21:e6:22:e5:31:48:c2:cf:10:26:ac:4a:9d:
34:7d:4d:95:43:58:1d:f7:b8:aa:bf:81:51:97:04:f1:72:5e:
d3:07:45:c6:6d:48:ef:ea:51:cd:a6:e6:94:fc:cf:ad:ab:85:
ca:91:8e:51:e0:75:73:ac:4d:4d:69:d4:3e:d2:8d:ed:7e:34:
68:8b:95:36:94:9d:ab:19:a0:5e:21:8f:64:76:1a:3e:8a:c8:
35:c9:dc:22:90:14:f3:b2:65:70:53:fa:10:47:e2:ae:74:f1:
fa:d6:c2:d4:29:d2:ab:93:e4:ca:70:d9:a3:ad:8c:96:a6:0b:
28:b9:cc:af:74:d0:fb:6f:96:91:58:80:14:85:56:07:b3:c8:
df:fc:d3:e5:11:e1:52:6e:ae:f8:1c:c8:5d:e3:d6:6e:c5:79:
4a:36:38:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:09:47 2025 by rpki-client