Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa
File: 323430303a663334303a3a2f33322d3438203d3e20313331373436.roa (raw, json)
Hash identifier: 6yavDvIc4pSEZOii3wG3tpQ49E/AOM1JrdsShPejo+c=
Subject key identifier: FA:7B:E7:F9:28:45:E3:A2:45:F0:D7:68:62:E0:D6:EA:00:8E:DA:EE
Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800
Certificate serial: 6D69920260B55EF35D7EF6FDD06C0BE0ADFFCC5F
Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa
Signing time: Mon 01 Jul 2024 01:05:42 +0000
ROA not before: Mon 01 Jul 2024 01:00:42 +0000
ROA not after: Mon 30 Jun 2025 01:05:42 +0000
asID: 131746
IP address blocks: 2400:f340::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:69:92:02:60:b5:5e:f3:5d:7e:f6:fd:d0:6c:0b:e0:ad:ff:cc:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800
Validity
Not Before: Jul 1 01:00:42 2024 GMT
Not After : Jun 30 01:05:42 2025 GMT
Subject: CN=FA7BE7F92845E3A245F0D76862E0D6EA008EDAEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:13:a0:e3:fa:1f:66:98:ab:f9:79:14:6c:
e4:ed:e4:17:62:3b:da:80:b4:e5:2c:fd:03:c8:f6:
3c:1a:70:b9:a4:fa:58:6d:d0:e7:82:7a:b3:3e:6b:
1c:47:04:db:90:25:ab:3b:93:4f:ff:93:55:1e:3f:
93:1d:13:28:29:c1:af:5e:a7:39:7c:02:49:84:3e:
35:5d:e0:07:95:26:19:59:34:c6:2b:ac:9d:41:51:
4a:4f:26:e8:7c:eb:12:72:fd:f5:6e:68:ef:7c:f6:
6f:e1:22:20:f0:4e:c0:56:21:d4:9f:5d:bb:eb:b7:
7a:bb:a2:f5:44:dc:1d:dd:a8:af:d3:9f:bd:4d:29:
21:42:53:6c:19:41:5e:c1:59:57:a8:5b:88:5d:ab:
dd:3d:da:25:c8:73:51:ad:87:dc:74:b0:22:44:59:
93:c9:91:d2:49:43:9e:08:ce:bd:5e:e9:20:a2:27:
95:87:25:f7:75:59:f5:b8:cd:5b:32:44:02:f3:5c:
58:82:81:32:c0:27:52:f2:39:45:d1:5a:93:67:24:
0d:45:bc:38:3f:55:fb:4a:12:ff:42:4f:92:23:e1:
97:35:a9:7f:02:50:82:52:a9:5e:76:d0:96:74:d1:
44:91:b6:8a:aa:e3:53:1b:e5:c7:e4:68:d4:f1:30:
b2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7B:E7:F9:28:45:E3:A2:45:F0:D7:68:62:E0:D6:EA:00:8E:DA:EE
X509v3 Authority Key Identifier:
keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:f340::/32
Signature Algorithm: sha256WithRSAEncryption
05:01:1e:57:6f:d3:90:08:1b:2b:ff:48:a4:62:8a:34:a3:91:
8a:c7:37:d1:d4:1c:6f:3a:49:22:37:8d:db:cd:7f:76:99:79:
5f:f3:73:51:9f:1c:8f:0a:3b:0a:c0:fe:0a:63:46:48:3f:73:
c1:ad:b5:b2:2b:f2:63:e5:56:28:22:b8:a0:cb:d9:9d:7f:f8:
bf:cb:73:72:46:5c:6f:eb:1b:4b:b2:ec:6d:1b:c0:31:8b:37:
77:ed:20:64:6b:21:09:a0:40:96:cd:62:5d:ce:b8:51:97:ad:
29:e2:8d:90:77:e2:d8:da:4a:8c:78:7e:bb:0d:da:9e:24:c3:
ae:76:a7:79:88:7d:da:29:10:99:ed:f2:05:4d:95:5d:21:3d:
23:bf:47:c1:c0:1d:fe:bb:8a:54:ca:1b:62:2a:4f:31:45:f1:
32:65:f8:fd:a1:20:3a:94:5a:bc:b6:bb:2f:98:3d:73:d7:f1:
04:a9:64:29:a4:3a:77:d1:8c:d0:d7:2f:2c:16:a2:52:bc:46:
52:ad:7d:de:ac:b5:04:2e:f3:99:81:a0:c7:92:c8:44:99:1d:
7b:87:c2:38:1e:09:02:1a:b6:a4:77:2f:9a:f0:31:a6:15:a5:
3d:8c:8c:a9:20:88:a8:9f:25:03:72:f5:64:2d:c1:20:69:1c:
5e:a7:8b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:42:55 2025 by rpki-client