Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa
File: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (raw, json)
Hash identifier: K39jn2y2K6bT6WSylU024emK2v2goVGb5peC7he2S4U=
Subject key identifier: D6:43:4E:11:ED:EE:30:2E:B5:A7:5A:9A:AF:A0:F6:F2:9F:E8:83:BA
Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33
Certificate serial: 07795EBC11693501DB5F43D55B8712DD4E797769
Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa
Signing time: Fri 29 Nov 2024 03:00:01 +0000
ROA not before: Fri 29 Nov 2024 02:55:01 +0000
ROA not after: Fri 28 Nov 2025 03:00:01 +0000
asID: 149913
IP address blocks: 2001:df0:fe40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:79:5e:bc:11:69:35:01:db:5f:43:d5:5b:87:12:dd:4e:79:77:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33
Validity
Not Before: Nov 29 02:55:01 2024 GMT
Not After : Nov 28 03:00:01 2025 GMT
Subject: CN=D6434E11EDEE302EB5A75A9AAFA0F6F29FE883BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:09:c6:0a:27:b5:ae:d1:01:17:35:1b:e2:5e:
31:12:46:ed:b7:4e:74:af:c3:89:03:a1:82:4c:f0:
65:d5:46:4d:00:b9:0f:c8:b2:df:8c:00:de:32:50:
5d:0a:b3:29:ec:75:17:f8:cd:68:ef:55:1a:ab:70:
ac:2d:36:5f:70:4d:db:8b:82:c2:f6:89:e9:71:4a:
76:a2:7b:cc:9e:03:a7:5f:90:61:8e:d8:0c:bd:f8:
53:5d:f4:15:f1:3f:a8:f3:ca:8e:c2:e3:a9:e5:b9:
55:71:50:5f:6b:9a:f5:5c:9e:ed:61:bb:a3:84:0e:
74:55:ce:ea:d1:0a:cc:1c:3f:6a:95:ed:9c:6c:4b:
3e:b0:cd:50:e5:a0:64:eb:e7:30:fb:c9:dd:05:0e:
68:e8:f9:ff:f7:6a:3e:22:32:b7:6c:b4:6a:4b:83:
6f:dd:f3:50:61:7c:65:ad:b7:a1:35:0d:55:ef:b0:
9b:9a:38:2f:4e:c4:8f:c1:b6:4c:01:07:36:04:58:
07:ae:dc:80:3b:d9:90:c6:65:4f:5d:28:94:bd:05:
f2:27:21:35:e3:c9:57:d7:fd:48:1c:37:cc:a1:04:
83:fb:a3:33:8d:dd:2f:f3:d9:66:fc:4b:c6:6c:a5:
52:6d:cd:d7:7b:af:d5:38:99:53:fa:c6:ef:ac:ce:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:43:4E:11:ED:EE:30:2E:B5:A7:5A:9A:AF:A0:F6:F2:9F:E8:83:BA
X509v3 Authority Key Identifier:
keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:fe40::/48
Signature Algorithm: sha256WithRSAEncryption
20:e8:d5:62:2b:0b:19:32:e3:4f:18:e7:0d:13:e8:24:f3:2c:
37:c5:91:b9:af:dd:94:ef:aa:f7:13:11:10:a9:04:96:35:84:
52:89:32:27:33:08:9e:9f:8b:f3:1c:a8:a4:3a:00:a1:7a:ed:
8b:34:81:b5:46:0b:6b:cc:45:de:21:01:fa:e0:ef:97:ec:a1:
51:9c:07:62:a9:c1:e7:4c:fa:26:ed:48:5a:6c:40:a1:8e:48:
f4:bc:c4:17:20:d1:14:c5:f1:44:3f:6f:94:a1:d3:91:9c:25:
55:df:c2:de:7a:c5:a9:c2:52:08:b7:16:64:61:b3:ed:eb:6d:
fc:90:03:59:32:35:02:29:cc:33:4c:1d:c4:27:25:62:24:5a:
70:f2:a7:7d:e2:bf:3c:4c:09:59:9f:71:fe:9a:2c:d5:d9:2c:
f5:36:d9:44:68:e4:22:18:f5:3d:ce:01:85:35:f5:18:82:50:
3e:43:32:d2:0e:3c:f1:27:e4:c5:24:dc:ec:d9:64:05:1b:09:
a4:d9:53:4b:ed:32:92:24:43:e2:5b:b3:22:35:a5:07:19:e7:
56:23:58:57:63:d6:a5:0f:81:38:bd:f7:d0:24:d8:5e:77:a6:
3c:1e:e6:b5:45:b0:0c:cb:cc:29:c9:0e:f1:de:c1:13:79:7b:
e4:8e:1a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:45 2025 by rpki-client