Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa
File: 323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa (raw, json)
Hash identifier: jSQKKM5t1FotHl9IvmmOV1bpO2Bm+Ktc/PrlSfNtDhw=
Subject key identifier: C0:05:82:83:68:F4:BE:C6:45:85:E4:ED:3A:FD:F1:24:22:2F:2D:66
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 0ED5D6598729974D6F901CDA3112BF79E8AE81C9
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa
Signing time: Tue 10 Dec 2024 05:54:35 +0000
ROA not before: Tue 10 Dec 2024 05:49:35 +0000
ROA not after: Tue 09 Dec 2025 05:54:35 +0000
asID: 153087
IP address blocks: 2404:97c0:5000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:d5:d6:59:87:29:97:4d:6f:90:1c:da:31:12:bf:79:e8:ae:81:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Dec 10 05:49:35 2024 GMT
Not After : Dec 9 05:54:35 2025 GMT
Subject: CN=C005828368F4BEC64585E4ED3AFDF124222F2D66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b0:1c:71:f5:24:2f:ce:58:cb:27:50:2e:2b:
a9:42:3f:e4:5e:ca:d4:e0:4c:24:3e:12:d1:7d:29:
82:bd:32:6a:63:89:ca:83:95:9c:a3:da:a2:df:1d:
0d:0e:bf:90:5a:2f:eb:07:18:48:ba:fa:94:c7:89:
ac:9e:51:9a:1f:ca:7a:92:01:7c:ae:42:df:e5:7c:
7c:d1:1a:78:18:5e:7c:d6:1a:22:ac:ca:23:f4:fa:
1a:a9:88:a7:a5:8e:c9:6a:0c:5e:1c:d3:1a:ec:b0:
c0:2d:d8:01:69:56:43:b0:00:a1:3c:de:28:b9:1c:
b3:cf:91:82:d9:87:b6:de:47:ed:3c:9f:a4:8c:ef:
1a:4c:3c:bc:01:03:c1:d6:56:2c:65:3f:2a:48:17:
a3:40:6e:ea:e2:66:fc:a9:29:1b:65:c4:8f:89:36:
b6:14:c1:90:ca:10:eb:20:20:b9:8a:26:ef:7b:0f:
a5:1a:01:79:ca:fa:77:78:c3:45:13:88:a0:66:dd:
41:dd:7b:76:38:33:fa:c6:17:92:e7:a2:37:3d:5a:
9d:bd:32:a3:16:d2:17:d8:90:2b:55:f6:7f:e9:18:
de:0a:b9:ad:1e:c8:46:66:91:70:29:86:cd:13:c6:
af:7a:41:5d:6c:b5:72:bd:82:b0:3c:ce:fd:c0:f1:
f4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:05:82:83:68:F4:BE:C6:45:85:E4:ED:3A:FD:F1:24:22:2F:2D:66
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
0e:e7:27:39:43:98:b1:36:d1:86:f6:60:da:fc:3d:f7:2b:50:
16:c2:d3:3a:df:a3:ba:7e:75:95:1b:77:7d:72:ce:ef:41:fb:
39:e2:2f:9b:35:d6:48:d8:5f:f0:b1:88:76:71:6d:df:3c:ee:
db:08:1a:a6:62:fa:88:94:e2:1e:be:4e:fd:86:33:0e:cc:b6:
53:ca:a0:4a:cf:1c:7e:1f:1d:f3:48:77:e0:e7:3b:38:6d:7d:
1a:02:56:62:54:07:b2:eb:be:15:15:a3:aa:52:f2:38:a9:f1:
8f:14:cf:48:3f:0b:d8:fe:2c:b4:6d:d6:9d:32:9f:8c:c2:28:
3e:31:17:2d:d1:36:a1:98:d1:14:ed:e2:47:a9:f8:52:46:13:
9c:64:37:d5:a0:31:18:81:e3:ab:09:ea:bc:f0:d6:33:50:56:
32:43:13:a5:de:fb:ea:e8:5d:ad:af:8d:26:04:9f:23:8d:ee:
18:bf:b5:da:7b:a0:5a:86:db:ab:bb:90:48:53:8a:ab:ba:ab:
9a:f0:51:dd:e6:72:55:c0:90:e2:12:f6:23:3a:9e:6a:a3:c4:
43:73:fa:03:0f:8e:89:0f:85:f4:96:81:30:8e:22:b2:38:c3:
50:12:1d:44:7d:d1:70:81:f2:47:ec:81:93:81:05:8d:4c:54:
e2:62:d7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:55:01 2025 by rpki-client