Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa
File: 323430353a383734303a3a2f33322d3438203d3e203436303139.roa (raw, json)
Hash identifier: a7znhfBNHys+TKNktu9lUaJAAJAo87DRguXsLyL1Vu0=
Subject key identifier: CD:D3:FB:A6:55:2B:BD:95:39:64:B0:D6:77:D6:11:01:CE:41:C9:72
Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5
Certificate serial: 4A03E7C553BF908193C9A12625C2BF0357DBDED5
Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa
Signing time: Mon 01 Jul 2024 01:02:23 +0000
ROA not before: Mon 01 Jul 2024 00:57:23 +0000
ROA not after: Mon 30 Jun 2025 01:02:23 +0000
asID: 46019
IP address blocks: 2405:8740::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:03:e7:c5:53:bf:90:81:93:c9:a1:26:25:c2:bf:03:57:db:de:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5
Validity
Not Before: Jul 1 00:57:23 2024 GMT
Not After : Jun 30 01:02:23 2025 GMT
Subject: CN=CDD3FBA6552BBD953964B0D677D61101CE41C972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:7a:12:3e:0b:4c:83:a2:9a:5e:c7:b9:ae:20:
f1:0d:4f:fd:43:88:2b:99:1b:f0:e4:bf:dd:d9:c9:
6e:18:81:dd:d7:77:96:61:c1:4a:11:de:fd:0d:cf:
db:e7:fc:e7:8f:69:42:20:cd:fd:e4:75:e7:1f:b4:
90:fc:01:0a:ed:98:cc:3c:33:0e:05:d7:7a:d7:55:
9e:ac:87:3b:23:a8:1f:22:71:f0:a3:c9:bd:07:8f:
1a:e8:fb:c5:c4:2d:c9:dc:6d:ab:f8:9f:01:c8:45:
03:03:96:97:30:95:0f:93:82:3f:f1:7e:28:0c:0e:
30:e0:98:de:1f:fc:52:66:d5:84:91:b1:bd:0e:ce:
3a:5c:3f:04:2f:75:28:8a:f4:32:b0:49:7a:ad:74:
19:51:fd:bf:49:94:39:09:d5:eb:b8:01:98:ed:73:
95:3f:b9:e9:0a:0d:22:4a:2d:83:dc:76:1e:8d:93:
7a:de:17:3a:eb:e8:13:b4:ab:10:9f:c9:3e:b5:ba:
6c:c7:a0:3e:bb:b7:5a:fa:22:fb:cf:04:d2:9f:59:
84:ac:d8:52:4a:43:0f:d7:3f:1d:f6:1e:31:8e:f7:
d1:fc:3b:3b:48:bf:ea:04:84:fe:31:12:d2:f8:78:
18:87:2e:b1:fe:98:8b:9b:83:93:9a:82:c6:23:35:
2b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D3:FB:A6:55:2B:BD:95:39:64:B0:D6:77:D6:11:01:CE:41:C9:72
X509v3 Authority Key Identifier:
keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:8740::/32
Signature Algorithm: sha256WithRSAEncryption
79:53:3f:3e:ff:53:fc:4e:ef:d0:09:1d:0f:4b:fd:48:0e:43:
70:b5:70:26:2f:73:ce:0e:89:5f:e5:26:d5:f6:05:71:1f:d9:
a3:2f:a3:69:75:db:6e:84:db:ed:d9:e3:77:66:fb:5f:b3:a2:
79:8b:67:a4:cc:32:77:08:2c:dc:97:26:39:b1:8d:d7:d8:b1:
88:cc:f5:44:bb:be:8a:9a:c1:78:db:f5:e6:12:42:e7:4a:b2:
11:8f:95:e4:9a:d5:28:69:19:0c:d8:a4:06:6f:60:b0:11:14:
12:3c:c7:cb:c2:62:00:05:bb:92:7f:94:ff:fa:e2:22:5b:20:
76:41:50:de:58:17:9a:f8:9b:04:e2:38:38:96:f3:1c:32:05:
79:0e:c9:e5:65:69:92:6c:41:e5:75:b5:0d:1d:a4:11:41:6a:
ad:25:fe:3f:67:7b:e0:0f:c8:6a:54:4d:c3:93:26:59:e8:89:
fc:b9:f7:cc:7c:04:0a:81:06:d9:ed:9e:9c:4d:83:4f:98:1a:
b2:8c:6e:ce:ea:96:81:07:1d:14:3c:9d:c3:f9:6d:4c:fe:27:
a4:19:5b:6f:ce:c6:f4:b7:0a:ed:25:fd:f2:df:56:ba:e1:cb:
a0:41:72:4d:32:54:d9:d9:41:5a:fb:7b:8a:dd:c0:04:d1:c7:
69:2f:9e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:18 2025 by rpki-client