Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa
File: 323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa (raw, json)
Hash identifier: utI8KJuWv8xv+Z8SnL92hh4vRbeETxlFf5LVsdJh+rA=
Subject key identifier: 7E:3A:2E:A3:4C:D5:D5:4D:3C:EF:9B:30:3F:C8:94:67:BA:D7:E5:3F
Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Certificate serial: 30A35C2A08D511511F9D62B2C4CEAF2124CCCB78
Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa
Signing time: Mon 01 Jul 2024 01:04:19 +0000
ROA not before: Mon 01 Jul 2024 00:59:19 +0000
ROA not after: Mon 30 Jun 2025 01:04:19 +0000
asID: 136088
IP address blocks: 2400:d940:200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:a3:5c:2a:08:d5:11:51:1f:9d:62:b2:c4:ce:af:21:24:cc:cb:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Validity
Not Before: Jul 1 00:59:19 2024 GMT
Not After : Jun 30 01:04:19 2025 GMT
Subject: CN=7E3A2EA34CD5D54D3CEF9B303FC89467BAD7E53F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:99:a4:c9:df:01:d7:9f:d2:84:1f:16:56:
e4:8c:1b:35:4e:c7:8e:5e:87:6e:15:2b:8a:08:1f:
6b:74:ab:8a:a7:b1:78:40:c9:fd:b3:36:b8:90:05:
ab:0e:db:52:91:d6:e1:61:4a:fb:6a:54:fb:2e:4c:
8c:93:4b:8a:2c:4b:08:62:58:1b:7c:0f:77:aa:bd:
d1:bb:49:3a:06:ef:40:90:c2:38:6c:52:0a:ac:e0:
00:cd:19:b2:5c:66:3b:c8:15:0d:7f:3a:73:1b:89:
66:15:00:91:ae:eb:1a:c1:9c:28:e8:4e:15:0f:0c:
2b:2f:4c:0f:25:bb:a5:e0:4c:b3:b2:63:b0:19:51:
a0:19:76:86:bb:f1:06:83:4a:d8:b3:45:0c:36:23:
ba:bc:65:1c:96:98:a9:6e:f1:f3:da:95:71:f0:77:
e0:92:0d:74:78:0f:a1:0e:cd:ad:b9:e2:68:9c:4c:
1b:06:0e:25:6b:cd:aa:bb:64:df:24:75:21:de:a1:
5e:a5:dd:8f:9a:d3:88:34:19:51:c2:ef:31:fd:c2:
ef:a5:9f:8c:bb:df:f4:3f:7b:f3:6e:6a:5c:fa:ea:
7b:45:a3:2c:8e:c9:a6:d7:11:a9:43:5c:47:73:cc:
27:25:c1:e0:ed:32:70:e7:bb:67:60:8a:d9:41:d8:
36:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3A:2E:A3:4C:D5:D5:4D:3C:EF:9B:30:3F:C8:94:67:BA:D7:E5:3F
X509v3 Authority Key Identifier:
keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d940:200::/48
Signature Algorithm: sha256WithRSAEncryption
25:80:f4:80:d0:fe:95:24:3f:fe:a3:1f:1f:70:d2:08:9b:56:
29:88:47:2e:42:b9:f3:c3:38:aa:62:03:c5:c3:6c:83:d9:f7:
8c:45:d6:bb:f4:16:b7:2c:b8:01:df:12:88:67:c9:71:9c:de:
d3:9f:8c:23:38:8f:2a:55:1d:de:3f:d0:52:82:d9:c4:b2:22:
af:d9:71:ad:93:74:60:77:f0:2f:e6:b4:10:16:d6:a1:70:7c:
f8:93:6a:4a:c4:b9:08:31:65:91:90:59:6b:71:8c:da:9b:e3:
e5:38:70:d4:11:a9:57:1a:d8:e5:a2:7d:e0:0d:c9:0f:5a:db:
8d:09:16:b7:d0:cf:c6:ba:8c:4d:8b:d6:21:bd:81:20:f0:56:
04:6a:df:97:e9:a1:b9:bb:ca:f8:a3:8c:9e:56:b8:d3:fb:17:
cf:98:6a:cf:47:83:46:79:09:eb:69:f6:67:b4:88:96:e0:88:
b1:27:6b:aa:35:62:ef:0d:d9:db:33:ff:f3:8d:55:3b:7d:69:
cc:87:98:32:29:9a:fb:ba:79:57:05:bc:57:0e:84:4b:32:ab:
aa:c9:54:77:db:da:77:6f:09:67:69:98:26:a5:c1:5c:67:9c:
8d:f2:8e:73:3e:05:f8:d0:18:10:48:b3:c5:c9:ff:08:60:f9:
4a:fc:ee:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:19 2025 by rpki-client