Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa
File: 323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa (raw, json)
Hash identifier: GUSl7LUTkCNLq3kjAIVktijnSt4hBS8Y9L517womeqQ=
Subject key identifier: FA:FE:C3:2B:F9:D5:90:13:FE:A3:78:9D:42:56:43:31:4E:A0:75:60
Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97
Certificate serial: 52B14AF48135E3805D37D741CCCA5505EB03BD8F
Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa
Signing time: Mon 01 Jul 2024 16:00:02 +0000
ROA not before: Mon 01 Jul 2024 15:55:02 +0000
ROA not after: Mon 30 Jun 2025 16:00:02 +0000
asID: 138866
IP address blocks: 2404:fec0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:b1:4a:f4:81:35:e3:80:5d:37:d7:41:cc:ca:55:05:eb:03:bd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97
Validity
Not Before: Jul 1 15:55:02 2024 GMT
Not After : Jun 30 16:00:02 2025 GMT
Subject: CN=FAFEC32BF9D59013FEA3789D425643314EA07560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a4:f0:82:ec:05:fe:e3:1a:cc:64:40:a8:ec:
88:bc:4f:9f:ce:da:35:ef:26:8d:c6:6e:36:d1:50:
85:2d:d4:b0:14:86:83:70:4f:2c:3b:8e:5f:b3:dc:
b3:49:92:26:2b:1d:d5:bd:91:c5:aa:36:de:da:46:
fa:5a:d8:24:d3:fb:52:6f:97:a3:91:51:d1:45:c0:
ae:bc:67:7f:60:bf:f5:cc:ed:43:c5:a7:19:48:2b:
ca:f3:ee:9a:cc:8c:9d:3f:1e:9e:25:3c:54:c9:1b:
ca:9a:29:f8:f0:fd:29:aa:b7:a8:04:7e:fe:ec:1e:
74:4f:4c:e2:6e:4b:94:8b:a8:a4:8d:ad:d0:f7:5f:
a2:aa:6c:e4:e7:81:c7:15:1e:e6:db:dd:9c:a5:f4:
03:64:c4:56:a6:8e:ab:ea:f8:61:a9:1e:86:34:45:
82:4d:8e:00:13:76:0b:98:1f:04:66:ec:cb:2a:f8:
c9:e2:cb:9b:ae:43:32:2e:57:f0:d1:b0:a9:5a:ca:
c6:58:2f:52:50:db:1b:f8:90:19:a6:f0:05:89:2e:
6d:d4:17:ff:60:7d:3c:90:e5:89:da:7d:b5:09:80:
6b:81:81:64:64:44:51:2b:e6:18:52:c8:c3:05:3a:
e3:7e:13:a3:67:d0:98:20:c3:a7:7e:59:ab:47:2a:
4e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:FE:C3:2B:F9:D5:90:13:FE:A3:78:9D:42:56:43:31:4E:A0:75:60
X509v3 Authority Key Identifier:
keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fec0:1::/48
Signature Algorithm: sha256WithRSAEncryption
6f:e2:c5:4c:f1:c2:d6:aa:8e:ab:94:18:21:4e:8a:43:4d:78:
a7:04:d0:94:d8:81:6f:dd:5e:4b:68:41:ba:89:ec:e5:b5:56:
4e:8e:ad:ae:ce:c2:81:3d:02:ee:be:4b:a1:89:68:8b:71:ff:
0a:c4:43:15:50:69:6f:40:fb:6e:3a:c6:47:5f:13:8b:62:d7:
4f:5c:98:0e:ce:dc:3c:e5:ed:da:9f:3d:1f:0d:fc:42:9c:36:
63:27:66:c4:9c:ab:56:37:92:e6:4e:e8:55:d4:58:7f:ba:93:
c4:c7:fb:09:d1:ed:7d:c4:47:04:b8:96:57:54:a2:da:25:bd:
1f:2d:90:e7:6d:6e:57:39:4e:99:ba:31:c3:cc:81:c5:75:74:
90:c4:d0:b8:f6:3e:d5:54:8f:aa:f2:fd:bd:cd:84:99:34:69:
41:d1:6e:7c:71:08:5e:ba:ca:f5:b1:6b:45:c6:81:36:99:ae:
5e:6a:20:7d:16:3f:10:e5:3f:c9:ea:a1:d4:d9:2c:db:91:cf:
82:da:d3:5d:ce:15:2f:cf:51:2b:8c:ad:36:0a:5e:46:b3:9f:
07:2f:09:9c:d8:e6:48:d2:fd:3d:9b:e0:57:1a:d4:6c:4d:92:
bd:76:71:53:a3:19:d5:f0:55:95:bd:b4:6b:38:a1:0a:63:a3:
1e:6e:0c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 11:17:38 2025 by rpki-client