Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa
File: 323430373a366634303a3a2f33322d3332203d3e203538383230.roa (raw, json)
Hash identifier: H3EtcLEE0IGvam9Auuq3QSB3PLABMBbWzZsAbxF8fnQ=
Subject key identifier: 15:2C:5D:13:39:5A:C3:08:1D:BB:05:C8:30:82:6B:D9:27:09:94:16
Certificate issuer: /CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE
Certificate serial: 0224BC79F65B91318A3D54BDF59D31D6E6DFF70B
Authority key identifier: 15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa
Signing time: Thu 13 Feb 2025 16:00:01 +0000
ROA not before: Thu 13 Feb 2025 15:55:01 +0000
ROA not after: Thu 12 Feb 2026 16:00:01 +0000
asID: 58820
IP address blocks: 2407:6f40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:24:bc:79:f6:5b:91:31:8a:3d:54:bd:f5:9d:31:d6:e6:df:f7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE
Validity
Not Before: Feb 13 15:55:01 2025 GMT
Not After : Feb 12 16:00:01 2026 GMT
Subject: CN=152C5D13395AC3081DBB05C830826BD927099416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4c:10:df:3b:1f:4e:ef:f5:9d:b0:8e:89:18:
dc:f3:9f:89:5b:3d:05:05:4f:d8:f4:76:be:8a:45:
1a:37:9f:98:51:61:86:5b:89:82:65:3c:5e:79:35:
4d:bc:7e:98:40:1d:bc:d4:c3:a7:29:d4:db:d7:e4:
e4:e1:87:6e:09:aa:09:0c:5c:60:b4:f1:7f:f5:7f:
90:df:e7:48:c2:c9:6d:17:b0:4b:fa:57:08:71:8b:
eb:d5:75:dd:76:80:35:e1:c1:bb:d6:26:40:02:cc:
63:8f:59:be:cb:ec:7c:3f:dc:10:d6:2c:88:9c:1c:
4e:a8:00:08:0d:b3:0d:7d:96:da:52:82:0f:5c:7a:
44:de:57:e5:6b:ca:e3:9a:e5:43:ec:f7:43:81:e4:
3f:9d:0a:4c:ad:5a:e7:aa:57:4a:6d:f1:d4:b1:e3:
bc:d2:22:69:fd:c3:00:6a:dc:7d:67:c9:77:23:95:
de:07:3e:ae:84:e8:e9:c1:ae:84:16:4b:a0:fb:eb:
6b:f2:ff:0b:2f:1a:00:54:bd:d0:a1:fb:63:25:88:
1c:c4:c3:9a:cf:32:9b:ed:d1:b0:c3:d9:f7:45:66:
a1:ef:77:fc:dc:9c:34:6d:03:9d:ea:64:60:08:5a:
5d:73:37:d4:21:a7:46:3d:81:1e:73:19:ae:15:ca:
35:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2C:5D:13:39:5A:C3:08:1D:BB:05:C8:30:82:6B:D9:27:09:94:16
X509v3 Authority Key Identifier:
keyid:15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3332203d3e203538383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:6f40::/32
Signature Algorithm: sha256WithRSAEncryption
24:bd:a0:8c:b6:9c:f5:32:be:15:4d:09:df:05:3d:1a:46:22:
df:9a:71:44:dc:c1:10:9f:5c:45:54:05:70:38:ea:60:63:db:
f1:47:8c:3e:02:e2:32:94:7d:a3:f3:83:84:e3:72:3b:fb:bd:
ba:92:38:c7:11:b9:9b:59:1b:91:26:14:1f:56:b5:27:b2:0b:
5c:e0:0e:ed:54:b6:9d:9b:60:6a:65:3a:8f:fb:ed:9d:22:43:
f3:03:52:9b:be:69:98:4b:6f:f2:d2:6a:09:ee:03:7d:41:ce:
5b:dc:35:6a:ae:58:9d:22:e4:1d:75:8d:09:5b:0a:09:b5:ae:
ca:7f:ba:c3:2f:49:d3:dd:d9:53:fe:86:6b:ec:00:0d:1e:e6:
0b:44:b6:cd:32:5e:fe:52:7c:5a:cd:e6:f4:96:99:69:4d:0d:
fa:da:ee:08:a7:93:cb:64:e7:8c:73:14:df:af:06:b7:c3:36:
e7:c6:c2:e6:13:94:04:e6:9b:2c:8e:8c:37:2c:d1:8f:b1:d7:
c2:1d:d3:45:f5:62:3b:a8:73:02:45:18:e5:72:5b:6b:91:66:
32:d6:92:6a:8b:68:5d:36:2c:66:54:53:b8:bd:07:94:51:f8:
28:8f:93:ac:d4:8b:f9:0b:20:8a:af:60:33:21:6c:63:6e:d9:
ff:89:6a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:39 2025 by rpki-client