Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa
File: 323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa (raw, json)
Hash identifier: 6Z6gxTWfD3ARKqfG9o8QF6TpfuXdMJbjFHfFmTtyniQ=
Subject key identifier: 5A:F6:0C:3A:DA:23:84:0B:FA:3A:2C:68:BA:AF:4E:54:50:97:7E:25
Certificate issuer: /CN=90173425DBB7D1DBD164BBA26F4657B17A266A97
Certificate serial: 72865DF5BF45DE9852B1860E34CAECD8D28912DD
Authority key identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa
Signing time: Thu 19 Sep 2024 08:00:00 +0000
ROA not before: Thu 19 Sep 2024 07:55:00 +0000
ROA not after: Thu 18 Sep 2025 08:00:00 +0000
asID: 136057
IP address blocks: 2001:df7:7a00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:86:5d:f5:bf:45:de:98:52:b1:86:0e:34:ca:ec:d8:d2:89:12:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90173425DBB7D1DBD164BBA26F4657B17A266A97
Validity
Not Before: Sep 19 07:55:00 2024 GMT
Not After : Sep 18 08:00:00 2025 GMT
Subject: CN=5AF60C3ADA23840BFA3A2C68BAAF4E5450977E25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9c:e7:75:db:e8:0e:db:52:7b:81:d3:1b:92:
67:33:a2:17:3f:a7:08:3a:b6:5e:7e:94:c1:26:33:
97:81:5a:28:16:fa:04:56:fe:cd:9f:e6:fc:58:07:
73:b6:8a:49:f6:7b:0e:23:52:90:5f:90:a5:f6:32:
82:57:e2:d8:a5:57:2f:e3:ec:ef:b0:76:83:d8:e9:
39:d2:40:90:ed:af:89:07:5a:6a:5a:84:45:70:a9:
22:c2:89:78:10:de:ee:71:c6:59:fc:7a:a7:48:3d:
90:79:71:a7:14:60:8c:71:a3:77:81:98:ed:15:ae:
da:65:c9:a7:c3:f5:1b:ca:96:1f:4e:06:14:b5:4d:
e9:c8:59:22:03:06:59:d3:81:ca:53:ac:2d:f4:a0:
6b:9b:27:89:9d:90:4a:e6:0f:a6:d5:8b:71:e4:79:
74:f1:cd:25:4d:d6:b4:8d:6d:03:d9:ae:7d:43:de:
02:03:48:7e:2e:71:70:37:83:8e:c5:51:52:05:a7:
70:85:a9:8f:8c:81:87:f3:86:52:69:1f:5b:37:f0:
26:66:b4:ec:83:78:a4:25:e1:6f:ba:83:0e:59:b1:
d3:5c:69:17:ab:99:32:49:86:1f:17:39:f9:d1:ee:
0a:c8:a9:88:89:66:76:e1:f2:bb:6a:75:70:cd:04:
8b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F6:0C:3A:DA:23:84:0B:FA:3A:2C:68:BA:AF:4E:54:50:97:7E:25
X509v3 Authority Key Identifier:
keyid:90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:7a00::/48
Signature Algorithm: sha256WithRSAEncryption
8a:d5:3a:a2:f2:8f:76:96:04:df:70:48:52:e7:2f:f4:a1:9e:
5e:17:00:5f:47:fb:5a:82:b5:0e:f6:84:f2:b2:df:bf:d1:4f:
ff:ef:37:e2:a4:43:89:e4:49:3e:e5:a1:ab:9e:51:0e:11:8e:
a1:57:b5:ee:e2:b3:49:d6:28:3e:59:dc:82:36:e0:e6:2c:43:
6b:e2:92:c4:53:71:62:7f:a9:0e:fd:24:7f:2c:e6:f9:20:31:
65:74:9d:86:2d:c9:22:d9:e1:f0:68:e4:53:a5:85:82:3b:bd:
b8:e3:17:3d:87:17:ac:69:fd:2e:53:55:38:6b:c5:35:fa:a1:
a6:7e:6c:a6:96:fd:b6:77:34:4e:d1:05:c2:a7:75:52:b0:e6:
e4:84:5c:9d:25:ae:47:32:47:c5:85:b5:7f:b5:1a:0c:a1:12:
f0:22:ec:7f:ac:a6:77:23:5d:f6:3c:1c:8e:81:76:df:63:90:
f7:58:bc:e0:f0:cd:1f:bb:55:1f:3d:f5:d7:97:54:c1:06:c6:
cf:a0:a3:a0:c0:3b:55:e6:a8:d4:60:10:26:44:32:ac:0f:fc:
75:17:93:66:7a:b4:de:55:d2:3d:a8:f0:43:f4:cd:d1:f1:51:
7a:d8:84:5e:75:45:22:9d:31:89:bc:ca:50:f0:c3:f6:ae:48:
9c:bb:51:fb
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUcoZd9b9F3phSsYYONMrs2NKJEt0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3
QTI2NkE5NzAeFw0yNDA5MTkwNzU1MDBaFw0yNTA5MTgwODAwMDBaMDMxMTAvBgNV
BAMTKDVBRjYwQzNBREEyMzg0MEJGQTNBMkM2OEJBQUY0RTU0NTA5NzdFMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnOd12+gO21J7gdMbkmczohc/
pwg6tl5+lMEmM5eBWigW+gRW/s2f5vxYB3O2ikn2ew4jUpBfkKX2MoJX4tilVy/j
7O+wdoPY6TnSQJDtr4kHWmpahEVwqSLCiXgQ3u5xxln8eqdIPZB5cacUYIxxo3eB
mO0VrtplyafD9RvKlh9OBhS1TenIWSIDBlnTgcpTrC30oGubJ4mdkErmD6bVi3Hk
eXTxzSVN1rSNbQPZrn1D3gIDSH4ucXA3g47FUVIFp3CFqY+MgYfzhlJpH1s38CZm
tOyDeKQl4W+6gw5ZsdNcaRermTJJhh8XOfnR7grIqYiJZnbh8rtqdXDNBIsRAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUWvYMOtojhAv6Oixouq9OVFCXfiUwHwYDVR0j
BBgwFoAUkBc0Jdu30dvRZLuib0ZXsXomapcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YmQ0MzQwYi0yMWM0LTRmYzctYTI1OS1lMjM1NGM1M2ZkZDIvMC85MDE3MzQyNURC
QjdEMURCRDE2NEJCQTI2RjQ2NTdCMTdBMjY2QTk3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTAxNzM0MjVEQkI3RDFEQkQxNjRCQkEyNkY0NjU3QjE3QTI2
NkE5Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViZDQzNDBiLTIxYzQtNGZjNy1h
MjU5LWUyMzU0YzUzZmRkMi8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjEzMDMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
93oAMA0GCSqGSIb3DQEBCwUAA4IBAQCK1Tqi8o92lgTfcEhS5y/0oZ5eFwBfR/ta
grUO9oTyst+/0U//7zfipEOJ5Ek+5aGrnlEOEY6hV7Xu4rNJ1ig+WdyCNuDmLENr
4pLEU3Fif6kO/SR/LOb5IDFldJ2GLcki2eHwaORTpYWCO7244xc9hxesaf0uU1U4
a8U1+qGmfmymlv22dzRO0QXCp3VSsObkhFydJa5HMkfFhbV/tRoMoRLwIux/rKZ3
I132PByOgXbfY5D3WLzg8M0fu1UfPfXXl1TBBsbPoKOgwDtV5qjUYBAmRDKsD/x1
F5NmerTeVdI9qPBD9M3R8VF62IRedUUinTGJvMpQ8MP2rkicu1H7
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:00 2025 by rpki-client