Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa
File: 323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa (raw, json)
Hash identifier: 5XnaCGHslfCtmQ4d1ojvnrSjZW/pWfqK9DkysuAzYII=
Subject key identifier: CF:66:69:7C:C5:45:6B:57:EC:BB:8B:8B:C0:C8:85:A8:ED:E2:86:59
Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Certificate serial: 1DD51A5EF5D9B2243AD872660D5430995B844629
Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa
Signing time: Sun 02 Jun 2024 14:00:01 +0000
ROA not before: Sun 02 Jun 2024 13:55:01 +0000
ROA not after: Sun 01 Jun 2025 14:00:01 +0000
asID: 140413
IP address blocks: 2406:13c0:f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:d5:1a:5e:f5:d9:b2:24:3a:d8:72:66:0d:54:30:99:5b:84:46:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE
Validity
Not Before: Jun 2 13:55:01 2024 GMT
Not After : Jun 1 14:00:01 2025 GMT
Subject: CN=CF66697CC5456B57ECBB8B8BC0C885A8EDE28659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:05:4f:b5:b2:7f:c1:c2:c3:4a:a1:88:26:2b:
ba:34:14:d7:5f:9c:d4:91:da:85:04:60:bb:68:02:
4c:c9:b9:a0:1d:5f:e5:3c:d9:33:14:19:90:07:83:
88:98:fd:01:fa:83:34:69:d0:dd:d5:26:4f:e3:e7:
e4:0f:9a:a1:dc:37:82:98:a5:91:2a:ce:fe:28:d8:
27:09:74:db:1d:8e:89:1c:f1:47:67:05:79:d0:d6:
33:3f:24:19:1e:c9:41:e8:fc:01:76:07:aa:7e:97:
a6:29:49:38:33:ed:c7:2a:43:a7:db:11:7e:09:0d:
4b:e6:19:c3:85:cf:e5:36:c6:6d:9f:d2:b0:8f:91:
18:76:6c:b0:4b:bd:fe:d8:3b:8e:0a:9f:3c:53:bc:
ca:6e:30:24:8e:9b:a9:f9:2b:59:fc:a8:fd:f0:7e:
37:19:8e:45:0d:ff:1d:fe:59:93:16:10:21:48:12:
a0:85:d8:d3:5f:51:23:01:75:f2:08:08:cc:be:3b:
12:fc:1b:77:1f:f8:6a:89:7d:76:e2:5a:a8:20:23:
a3:da:38:d9:2e:0e:3d:37:07:a0:4c:2f:ea:76:9a:
06:d9:35:39:f3:e9:fa:a0:7d:73:9f:bc:57:fe:c8:
08:94:79:c7:4d:29:67:ec:16:02:d2:07:f6:09:cd:
24:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:66:69:7C:C5:45:6B:57:EC:BB:8B:8B:C0:C8:85:A8:ED:E2:86:59
X509v3 Authority Key Identifier:
keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:13c0:f::/48
Signature Algorithm: sha256WithRSAEncryption
92:9b:ad:3b:46:a8:ee:e0:09:3e:91:9e:ba:37:37:49:17:29:
13:88:0d:98:03:19:4a:cb:55:44:26:a4:7e:7f:95:8e:d6:16:
10:57:b2:e6:f2:dc:f5:7a:90:c3:df:77:84:9d:7b:f3:62:3b:
02:66:3c:e3:95:86:cf:ce:f9:92:07:8a:6f:96:5c:12:f8:f4:
5f:0d:db:8d:fc:ab:66:2b:5d:f8:50:78:c5:b7:bb:55:2f:5d:
24:14:28:f2:d3:85:a6:4c:02:45:76:f7:45:49:87:52:d0:07:
2a:82:b8:9e:b8:5b:d2:c2:c8:a8:77:ee:ec:78:bc:c7:e1:20:
d5:87:38:7d:dc:13:22:a6:2b:60:f7:be:e3:67:14:e0:15:7a:
1a:a7:70:01:54:c0:a6:b3:37:d8:7a:99:93:68:a7:a3:b3:7d:
dc:e6:8b:5d:60:e8:d9:55:24:34:e0:70:b3:5f:e8:a4:e1:ae:
96:90:7a:10:6e:e0:81:34:24:4d:15:e2:46:0b:67:b6:ee:f6:
7d:3d:6c:f7:74:3e:15:de:31:da:a7:b5:cb:7a:d3:50:5b:d2:
83:73:f3:c0:38:62:fd:2b:76:f3:a5:a1:d9:f3:05:46:2b:af:
ac:05:32:ad:41:51:bd:d2:ca:c4:6b:f4:18:62:8e:e0:cb:00:
84:20:c7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:20 2025 by rpki-client