Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa
File: 323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa (raw, json)
Hash identifier: 440yzb75Q1ifuPJKBrQv7u7fvgNxfcKqc/noGFO7Q4s=
Subject key identifier: 1F:A1:15:6D:AB:46:7F:EE:48:2B:9C:51:76:8D:F8:3A:B8:63:FF:E9
Certificate issuer: /CN=926C43E6DACC18978406A2C9C57272491FFF9536
Certificate serial: 66DEB86769AF2E74D076C70C1FE9EE3D3D094819
Authority key identifier: 92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa
Signing time: Thu 20 Jun 2024 10:00:01 +0000
ROA not before: Thu 20 Jun 2024 09:55:01 +0000
ROA not after: Thu 19 Jun 2025 10:00:01 +0000
asID: 141075
IP address blocks: 2001:df4:da80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:de:b8:67:69:af:2e:74:d0:76:c7:0c:1f:e9:ee:3d:3d:09:48:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926C43E6DACC18978406A2C9C57272491FFF9536
Validity
Not Before: Jun 20 09:55:01 2024 GMT
Not After : Jun 19 10:00:01 2025 GMT
Subject: CN=1FA1156DAB467FEE482B9C51768DF83AB863FFE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:7f:b5:a3:17:3a:d8:c5:a2:ee:0a:f8:27:
80:2f:b4:eb:5b:30:e6:a9:39:76:ae:31:80:4d:4e:
d3:6a:c0:cb:52:26:1d:f3:42:42:03:b1:99:17:71:
c2:b4:b7:be:74:4d:ac:6d:d2:9c:5f:bf:0a:5f:71:
da:37:2b:b5:f5:ad:25:65:b8:61:c3:e4:35:c5:34:
38:d4:21:77:94:ae:71:0f:fc:0d:3a:ef:97:54:37:
16:98:67:4d:68:f7:d8:dd:ca:69:cf:f0:97:d8:47:
4c:02:56:2c:74:75:40:ef:78:6a:6b:36:3d:f2:b3:
51:23:2c:ea:c0:66:90:3a:9d:c5:5c:41:7a:45:0a:
1d:21:65:20:b7:14:59:08:97:fb:61:b7:26:71:9b:
90:95:36:de:fd:e0:77:ae:42:f9:99:5b:c8:3c:99:
25:ba:05:c2:85:d4:01:50:4c:41:45:18:82:87:af:
69:f4:2c:4c:54:a5:44:0b:1f:76:30:5d:a2:68:c3:
25:d4:ba:bf:f2:26:0e:35:a0:e4:1e:81:fa:58:b7:
ed:e4:2d:8c:a8:c4:7d:ce:55:d2:26:de:bf:05:c8:
7a:ba:cd:26:02:f0:43:52:7f:40:bc:5c:1b:1d:72:
92:cb:95:30:7c:25:78:c2:ba:6b:c8:17:69:4c:f0:
09:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A1:15:6D:AB:46:7F:EE:48:2B:9C:51:76:8D:F8:3A:B8:63:FF:E9
X509v3 Authority Key Identifier:
keyid:92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:da80::/48
Signature Algorithm: sha256WithRSAEncryption
94:e1:50:a8:2b:17:dd:83:8c:06:e8:fa:e4:48:83:de:36:97:
c4:2d:4b:5c:d5:e5:8a:5a:dd:aa:67:c3:1f:3e:60:8b:4c:68:
39:be:75:f8:29:b4:76:54:8b:77:dd:a7:3b:6d:0b:a3:a8:0d:
d2:eb:2a:22:c3:00:27:fb:c7:d2:42:35:81:f9:3a:25:8d:18:
5b:70:01:31:38:96:7f:4a:20:fa:df:d6:a1:85:3d:ec:e4:ee:
92:8c:37:e2:2c:62:6f:4e:84:0d:72:8b:a8:31:90:70:a6:59:
e0:09:25:2d:c4:d6:93:3a:10:45:e9:f6:a5:7b:df:8c:0c:7a:
bf:e2:bc:0f:08:09:5b:2c:a5:da:7e:da:a8:65:8c:73:87:81:
91:6b:eb:cd:94:1d:87:00:3e:82:e8:2d:34:61:67:fa:d6:85:
aa:1c:60:6c:66:cd:6b:0a:9d:d2:6c:ac:81:5d:68:5d:3a:f8:
29:29:20:4a:92:39:76:ca:a9:01:33:d5:67:16:65:38:59:03:
34:53:d1:d4:06:81:8e:c4:51:80:2b:20:f0:d8:85:6a:51:7a:
07:49:cb:0a:3f:61:6b:75:06:95:fc:92:1d:cc:df:9d:88:53:
07:83:32:ee:95:77:39:0a:bf:6b:13:0f:98:f0:eb:f1:5b:df:
8b:80:88:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:16 2025 by rpki-client