Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa
File: 323430353a646238303a3a2f33322d3332203d3e20313335343539.roa (raw, json)
Hash identifier: hKo6E/o6Gy5GtrWGlJyRHI/i/XIPoeDrySJ7ORVFIBM=
Subject key identifier: C8:14:1D:97:1D:10:FC:C6:41:66:F9:CC:55:04:A9:79:74:48:20:F7
Certificate issuer: /CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448
Certificate serial: 2A244C6CFF28B441F0751AD09A8D095595211082
Authority key identifier: 73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa
Signing time: Wed 20 Nov 2024 18:00:01 +0000
ROA not before: Wed 20 Nov 2024 17:55:01 +0000
ROA not after: Wed 19 Nov 2025 18:00:01 +0000
asID: 135459
IP address blocks: 2405:db80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:24:4c:6c:ff:28:b4:41:f0:75:1a:d0:9a:8d:09:55:95:21:10:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448
Validity
Not Before: Nov 20 17:55:01 2024 GMT
Not After : Nov 19 18:00:01 2025 GMT
Subject: CN=C8141D971D10FCC64166F9CC5504A979744820F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:48:87:49:bc:22:75:cc:53:51:73:46:3a:
9c:84:7a:76:c5:73:f8:fc:5c:70:b4:f5:81:7e:21:
52:ec:e8:f2:3f:52:84:73:43:44:85:90:eb:c0:3d:
ee:84:5e:53:c4:b5:ef:01:51:5a:4e:2c:e9:78:73:
0f:ca:62:4a:9e:2e:6e:d5:3e:38:7b:fe:19:58:85:
44:f4:24:7b:a3:6c:59:5c:c5:23:04:7d:85:d1:c6:
10:2a:30:bf:41:67:3e:88:ef:f5:67:9a:97:7f:37:
6b:52:72:5a:35:2d:66:8b:c6:2e:6e:07:d9:94:51:
75:b7:76:d7:7f:8c:d4:cf:ba:19:08:80:57:6f:59:
cf:22:9b:bc:ee:18:5e:b8:c6:cb:4e:6b:a5:79:d7:
37:17:6b:d0:f5:2c:19:4c:2d:9e:e9:67:87:9c:66:
0b:3b:70:bd:25:12:6d:28:e5:f6:dc:ed:22:27:89:
43:81:ad:ba:b1:a1:4a:a5:1c:50:f9:e2:7d:6e:fd:
68:fe:dc:f4:8d:3c:71:10:12:78:ab:f9:03:18:00:
59:63:72:06:1d:4f:29:58:d2:45:64:a2:c0:db:99:
be:88:60:f9:9a:64:e6:8f:7e:f4:d2:68:c3:bc:0f:
95:9d:10:d4:40:78:7d:c7:08:ca:cf:b4:88:9b:bc:
b3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:14:1D:97:1D:10:FC:C6:41:66:F9:CC:55:04:A9:79:74:48:20:F7
X509v3 Authority Key Identifier:
keyid:73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:db80::/32
Signature Algorithm: sha256WithRSAEncryption
74:24:eb:b7:30:f3:91:ef:54:26:d1:55:a5:53:7c:13:e3:fe:
c9:95:7c:06:67:b5:87:45:a1:1d:ce:6a:bd:5f:e0:4d:ce:c6:
7a:48:88:8a:ac:00:09:58:74:6b:56:6a:70:e6:28:80:27:06:
29:b3:f2:14:5d:e1:0b:2e:6f:f2:fa:2d:9b:31:4b:5e:f2:ca:
11:79:93:98:d9:7b:8e:40:42:b1:88:76:0e:79:6c:4b:5a:36:
a7:e0:c4:6b:5e:f6:ee:67:af:7c:fc:67:b5:a7:e1:11:5b:27:
0f:1c:a1:87:45:93:d8:be:48:47:97:c3:b0:26:20:c5:d9:74:
58:ef:97:fb:38:1b:67:bc:d7:ce:54:c0:9e:ec:b8:67:69:44:
af:f6:3a:d6:8d:4d:86:ee:4e:61:08:f9:52:6e:14:98:2e:72:
4d:a3:79:bb:89:f5:f5:de:b9:0e:46:4f:8d:20:42:8e:04:44:
9e:c2:e1:e4:3a:3a:68:1a:c9:7d:2b:f2:ae:0d:4f:4f:4b:8c:
bf:a4:fa:32:ee:11:1c:2b:c6:29:b5:61:05:54:41:83:93:82:
db:2d:7f:d1:3c:80:29:7b:ad:92:ea:2d:ac:29:24:62:e7:1f:
a3:cf:a3:d5:af:9f:82:68:a5:51:37:f5:0e:d5:d9:85:2a:ed:
d5:64:87:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:44 2025 by rpki-client