Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa
File: 323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa (raw, json)
Hash identifier: NQLMiOVqY2oiGwCk+UQKqUbp4AMid5UZ46tGw2tzbXU=
Subject key identifier: 82:70:61:9F:7F:A4:48:14:7B:4A:0F:EE:20:81:EF:0F:FD:47:EA:2B
Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Certificate serial: 1ECB77A20290EEABAD37BBFDB6CAC743194AF815
Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa
Signing time: Wed 01 Jan 2025 04:00:37 +0000
ROA not before: Wed 01 Jan 2025 03:55:37 +0000
ROA not after: Wed 31 Dec 2025 04:00:37 +0000
asID: 23679
IP address blocks: 2401:2900:3f00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:cb:77:a2:02:90:ee:ab:ad:37:bb:fd:b6:ca:c7:43:19:4a:f8:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Validity
Not Before: Jan 1 03:55:37 2025 GMT
Not After : Dec 31 04:00:37 2025 GMT
Subject: CN=8270619F7FA448147B4A0FEE2081EF0FFD47EA2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:df:a9:b9:1d:d6:a8:b3:42:44:b3:92:6e:c6:
b2:93:90:38:50:76:cd:44:c9:82:48:4f:31:34:13:
d8:07:40:27:80:67:26:12:48:76:d1:81:b2:60:a1:
3d:af:e4:66:4f:5b:2c:1a:a6:77:22:38:1d:dc:1c:
fc:80:69:0a:87:e7:a9:90:08:5f:00:9c:37:2e:a4:
f5:fb:a3:5e:10:9e:6e:6d:f9:58:3d:55:bf:a9:ae:
e3:07:ed:26:4b:7d:a1:2e:2e:37:ea:38:db:c9:9f:
ef:93:13:10:77:f4:09:67:fb:a7:e5:2a:b3:a0:93:
74:ec:86:b6:9b:e3:69:57:22:ba:fc:23:8a:d2:6f:
b0:6a:52:37:04:a8:c0:be:f5:5f:41:59:78:99:03:
df:e2:4c:83:fb:66:57:2d:69:9d:0d:79:c7:72:a8:
ad:bb:8b:48:7f:84:b4:37:7e:73:fd:65:80:96:5c:
ca:52:f5:75:a6:fa:71:69:a2:35:46:20:a6:fd:f7:
99:6e:94:f7:98:e3:34:91:e8:39:16:b9:d3:f4:e2:
de:be:e8:4e:f3:66:ac:74:d3:9d:e6:e8:a7:92:a9:
04:55:5d:12:8b:19:49:04:fc:b8:eb:7d:16:a3:cd:
1b:d9:8c:33:a8:74:7b:56:41:94:cd:93:ff:b0:7c:
1e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:70:61:9F:7F:A4:48:14:7B:4A:0F:EE:20:81:EF:0F:FD:47:EA:2B
X509v3 Authority Key Identifier:
keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:2900:3f00::/48
Signature Algorithm: sha256WithRSAEncryption
bc:b7:99:04:73:d9:aa:5c:26:55:1b:3d:a5:b9:84:ec:53:c5:
e1:23:5b:d8:51:6c:bb:87:4a:dd:83:4e:96:21:96:b4:d1:d6:
03:97:5b:73:85:84:6b:b6:f7:63:a3:dd:a7:83:99:30:76:07:
1b:3d:4c:b3:0b:a8:63:ef:0c:eb:82:3b:e6:3d:9d:00:8d:26:
02:19:9b:56:de:94:ad:50:52:f6:ba:5d:dc:1a:43:be:e4:76:
de:7d:1d:c9:60:d6:5b:3d:d2:95:e8:e2:72:9e:80:60:3c:56:
64:c2:c9:e2:2e:3c:35:48:77:b8:1d:6d:d1:9e:f3:77:68:b8:
c6:91:00:48:ac:e0:01:79:8c:4e:8d:e4:60:e2:de:6a:81:ce:
24:5c:0b:2e:39:97:c4:83:0a:e4:6a:d8:f5:8d:9a:6e:f0:e9:
c1:a3:29:c1:8d:e2:58:db:88:04:30:46:7e:96:30:58:dc:15:
0b:b7:9a:39:9d:e7:0f:2b:4e:23:97:96:c1:1b:4c:8e:51:89:
22:d4:78:48:80:d3:51:6a:44:18:47:64:ab:15:5d:63:55:10:
dd:2b:78:b5:2b:20:7a:2f:92:24:47:3e:06:e6:c7:77:e4:e5:
1a:3a:e7:59:db:0a:d2:cc:f5:cf:aa:68:18:45:12:36:45:6b:
0c:61:e1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:33 2025 by rpki-client