Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3336203d3e20313332363532.roa
File: 323430313a313363303a3a2f33322d3336203d3e20313332363532.roa (raw, json)
Hash identifier: 0b7ns7LWe1lh+q97xLHcz0n7NxFtE+fPLuYQJ8QmqSI=
Subject key identifier: CE:09:3F:D2:EC:28:3F:CC:0C:D5:93:AE:4C:3F:BB:09:C2:13:62:00
Certificate issuer: /CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Certificate serial: 43072792B3710A2C1D1B1728CEBF17B19698D9D9
Authority key identifier: 2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3336203d3e20313332363532.roa
Signing time: Tue 14 Jan 2025 05:00:02 +0000
ROA not before: Tue 14 Jan 2025 04:55:02 +0000
ROA not after: Tue 13 Jan 2026 05:00:02 +0000
asID: 132652
IP address blocks: 2401:13c0::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:07:27:92:b3:71:0a:2c:1d:1b:17:28:ce:bf:17:b1:96:98:d9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Validity
Not Before: Jan 14 04:55:02 2025 GMT
Not After : Jan 13 05:00:02 2026 GMT
Subject: CN=CE093FD2EC283FCC0CD593AE4C3FBB09C2136200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f8:1e:30:02:80:d7:5b:b9:a6:5d:b7:d9:50:
a7:7c:7f:a6:0f:ca:2c:4b:34:61:b7:ed:3a:08:29:
13:d1:86:48:64:60:ba:0d:9d:8b:5c:20:c4:95:0e:
83:cc:b9:94:07:c3:ba:04:04:57:17:46:2d:55:bf:
7b:9a:2a:4d:7e:5a:56:e7:d7:e4:e2:4a:c7:5b:1c:
52:73:45:64:11:04:20:f1:21:c6:9c:40:70:80:5f:
2b:40:39:90:3c:fe:b2:1f:8e:bf:75:35:c2:1d:be:
14:b4:e3:21:67:a0:1d:10:e0:fe:3e:b2:49:6d:d2:
f2:e5:c2:14:b0:bb:98:78:8d:65:5e:3f:8c:d5:02:
7a:07:55:4f:38:f0:64:2d:36:2c:dd:98:04:ef:81:
29:3a:15:eb:b8:5e:2e:96:d8:c3:7c:2c:ce:f3:c6:
83:30:c0:80:96:23:c3:70:91:8b:70:41:2d:53:eb:
aa:42:1e:0c:75:2f:ca:aa:07:f7:82:e5:fd:69:33:
51:ba:63:7d:71:e1:c9:62:cc:47:46:1c:27:87:21:
74:6e:c2:3a:a9:f1:e6:21:2c:e4:eb:1a:00:42:72:
8b:69:d9:58:19:9a:b6:3a:f7:78:eb:8a:30:b8:30:
21:5f:b0:4d:2d:05:1f:55:65:99:a5:b5:49:f5:a9:
b4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:09:3F:D2:EC:28:3F:CC:0C:D5:93:AE:4C:3F:BB:09:C2:13:62:00
X509v3 Authority Key Identifier:
keyid:2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/323430313a313363303a3a2f33322d3336203d3e20313332363532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:13c0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:9e:c0:05:1d:75:53:18:04:25:0f:95:c1:68:a0:ec:c9:f6:
9f:b5:96:fc:39:75:e5:d8:30:f6:2b:9a:68:97:f4:f3:93:ff:
91:f1:d1:8a:1f:96:86:64:c8:a6:36:d3:a0:89:16:b9:b9:d9:
2f:eb:b3:63:5d:28:86:c3:52:b3:8e:4a:15:74:cd:87:17:3f:
e2:ac:96:aa:2f:8a:02:36:7e:af:de:5a:cd:a2:e0:30:d0:60:
1f:54:d2:ab:e4:78:26:82:ce:5e:7e:e6:be:3f:0c:f8:2b:8b:
18:0b:cd:20:a5:ae:fe:c6:c9:40:09:db:88:17:e2:f7:c9:2c:
f7:86:20:40:2c:a5:5c:59:75:84:12:52:67:31:eb:ec:2a:37:
dc:f9:7f:41:05:0d:12:3a:0e:52:3e:9f:ad:c4:6a:f2:70:f1:
1d:5c:c7:65:cf:f1:71:1a:d6:09:b0:a5:51:03:64:c9:8a:3b:
a7:c8:c4:d3:a7:cc:87:93:e4:d8:b8:d5:e2:b7:22:cd:ed:6c:
8c:e7:23:33:84:41:69:c7:46:6a:c5:e0:19:88:dc:27:4a:24:
a0:a8:0c:38:98:31:fd:d5:45:58:9d:6a:e8:4f:4c:cd:bc:64:
92:ac:22:cc:3e:9f:84:2d:00:2f:45:f6:0f:ee:7a:56:38:56:
8d:10:d8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:08:03 2025 by rpki-client