Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa
File: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (raw, json)
Hash identifier: To2RtUGQFhlqilx+fqPMxzWWGUOkUvTK0ofRYTXx5FY=
Subject key identifier: 62:A8:D6:09:E9:CD:47:12:68:AF:C2:F3:7F:66:7E:13:23:C4:43:04
Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6
Certificate serial: 63C69A29EDFFB734E4866B75BDFE987C7C843208
Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa
Signing time: Fri 05 Jul 2024 07:00:02 +0000
ROA not before: Fri 05 Jul 2024 06:55:02 +0000
ROA not after: Fri 04 Jul 2025 07:00:02 +0000
asID: 134623
IP address blocks: 2403:80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:c6:9a:29:ed:ff:b7:34:e4:86:6b:75:bd:fe:98:7c:7c:84:32:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985976A4B3081770748882703E16497964D05A6
Validity
Not Before: Jul 5 06:55:02 2024 GMT
Not After : Jul 4 07:00:02 2025 GMT
Subject: CN=62A8D609E9CD471268AFC2F37F667E1323C44304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f9:ae:b3:ea:8a:b9:e3:69:ca:93:d1:7f:d7:
4d:3d:e7:c4:1e:52:ff:5d:1c:ef:49:13:b1:75:b5:
3f:78:fb:25:3f:5e:26:fe:0c:f7:12:13:cf:6c:ad:
1c:6f:93:8c:d7:8f:46:be:6a:53:e1:45:e8:81:44:
9b:7d:cf:fb:a5:ba:38:f1:62:27:e1:53:91:60:52:
ce:23:39:ff:37:7d:8a:e4:16:6b:9e:81:0c:87:a5:
94:31:b3:e5:68:35:d7:91:e8:e9:ce:f3:9b:af:0c:
f2:f0:e3:82:b1:80:bb:e8:de:91:20:67:f1:bc:be:
8d:29:bf:6c:5c:58:b3:97:00:2a:6a:ae:d1:32:b7:
cb:71:05:0a:28:cf:48:02:53:a1:78:65:b1:af:92:
75:ae:bb:b3:1a:cb:5c:01:97:dc:0c:90:36:eb:77:
43:3b:36:9a:f8:1a:f7:d4:50:d6:d2:46:dc:7f:35:
d1:14:82:04:2e:8d:7e:b9:11:14:d0:bb:d9:92:62:
21:2b:62:38:c9:49:05:69:ef:87:41:5a:73:93:e7:
6d:d7:c6:05:3f:83:07:e2:06:20:e4:68:94:75:0b:
47:a0:f7:c8:2a:fc:ee:5a:73:5b:d5:a3:87:3f:c4:
64:02:fb:35:da:c7:47:d0:c1:9d:12:d8:16:44:26:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A8:D6:09:E9:CD:47:12:68:AF:C2:F3:7F:66:7E:13:23:C4:43:04
X509v3 Authority Key Identifier:
keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:80::/32
Signature Algorithm: sha256WithRSAEncryption
ab:27:3c:06:42:d3:9b:79:67:2b:59:c6:6a:f3:6c:ee:40:9a:
9b:82:a2:3c:e7:68:45:cb:fc:3c:e7:bb:52:12:a1:09:5d:f6:
30:a7:4a:7b:0d:7b:c6:47:17:bb:c6:b6:4b:fc:d1:fa:ec:e7:
38:0e:bb:55:11:0e:b2:f8:2c:b2:36:f2:56:19:5d:c4:23:38:
aa:69:4f:cc:65:26:52:cd:d1:87:79:84:b2:2c:30:2c:34:51:
12:8a:15:04:44:ee:34:fb:83:d1:7b:bc:84:56:6e:89:db:03:
e4:47:7d:15:84:76:dc:41:cc:2c:21:9d:03:dc:4e:f8:71:7f:
9b:d4:b2:f0:9f:e4:c6:5c:57:17:8f:85:b7:f8:4c:e0:71:7a:
57:11:ad:a9:de:ef:3b:1a:b4:3f:0b:d8:7c:45:a3:e1:c2:ed:
4e:e7:e3:a6:69:09:02:cb:01:24:c3:ac:d8:6c:45:aa:0b:3b:
c4:13:e2:04:18:52:9e:58:fa:61:8f:cb:73:b3:68:55:26:79:
8e:ed:5f:ee:70:ec:13:32:27:1d:16:a0:20:2d:69:97:54:73:
e9:0c:0f:4b:7f:c3:8b:8c:82:49:b2:03:7e:eb:63:cd:3d:5f:
83:72:1b:91:f2:d0:28:a1:c1:9a:3e:7c:22:db:d1:6c:f1:6a:
df:11:93:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:33:02 2025 by rpki-client