Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa
File: 323430303a643934303a3a2f33322d3332203d3e20313336303838.roa (raw, json)
Hash identifier: qlf861dkC0jBnJxRZZkWrrJmMKLad7lN/+nrPr773Js=
Subject key identifier: 19:D1:25:63:8C:BB:55:D9:C8:78:9C:CF:FE:E0:EE:E9:32:91:8F:1E
Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Certificate serial: 3151CD5988DB081F56374545EE2E446B5556948C
Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa
Signing time: Sat 15 Jun 2024 03:38:48 +0000
ROA not before: Sat 15 Jun 2024 03:33:48 +0000
ROA not after: Sat 14 Jun 2025 03:38:48 +0000
asID: 136088
IP address blocks: 2400:d940::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:51:cd:59:88:db:08:1f:56:37:45:45:ee:2e:44:6b:55:56:94:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Validity
Not Before: Jun 15 03:33:48 2024 GMT
Not After : Jun 14 03:38:48 2025 GMT
Subject: CN=19D125638CBB55D9C8789CCFFEE0EEE932918F1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b0:3c:96:8a:cb:ab:2c:49:cc:c3:df:cd:c6:
d1:c9:b7:91:08:6e:a1:0c:53:d5:e1:45:1c:c7:35:
7d:17:d5:e4:e1:fa:38:87:f7:23:5d:b7:1b:fb:9c:
91:cd:94:fc:6e:55:5b:c5:df:ee:25:07:42:4a:4d:
45:c9:8f:48:d7:85:4c:a8:b6:e9:f9:31:77:8d:6a:
a8:ff:d8:d6:0c:23:8d:c7:3b:80:b4:53:5b:b7:3c:
fb:1f:c3:40:57:ee:22:24:d6:61:c9:1a:39:8b:ac:
f4:9f:44:61:c3:c1:38:5d:ba:7a:00:83:e8:4b:24:
0a:db:d9:82:cd:2f:c3:b9:ea:fc:1f:33:6f:6a:41:
00:3d:87:f3:ae:08:39:65:4d:60:af:49:5e:af:05:
a8:9d:fd:72:a9:e8:15:8e:28:df:bb:4f:14:3d:57:
8c:1d:7a:14:89:44:b9:c1:b0:19:6d:f1:a6:47:91:
b0:34:b7:c8:8b:96:7c:c1:32:e8:7b:87:d0:9b:c7:
af:27:af:f2:5e:82:51:b0:e2:da:d3:3a:ef:07:85:
ee:5a:28:01:1d:75:20:99:e1:c3:00:4a:66:b5:23:
7b:7a:83:d2:97:e2:2a:fa:46:ba:49:21:66:70:78:
22:34:f3:13:f7:75:38:48:d4:70:2f:d7:1e:d9:92:
84:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D1:25:63:8C:BB:55:D9:C8:78:9C:CF:FE:E0:EE:E9:32:91:8F:1E
X509v3 Authority Key Identifier:
keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d940::/32
Signature Algorithm: sha256WithRSAEncryption
00:6a:e9:76:ed:52:ff:1a:c4:ac:73:34:cd:1d:2a:9d:0d:b8:
17:d8:b1:e6:b0:38:25:8e:dd:89:63:ec:79:86:ab:ca:64:89:
16:10:79:82:d8:af:96:91:97:7f:29:ef:a9:7c:be:64:30:72:
83:dd:d8:b2:8c:c1:8e:de:aa:40:ab:d5:80:a6:ef:9d:9a:c2:
2e:c8:cb:40:2a:5c:cf:38:7c:14:a2:43:39:b9:5b:97:c7:a0:
50:75:5f:9e:78:0a:0a:42:67:83:b6:42:62:a9:da:7f:c4:b7:
98:c2:a2:19:a8:9e:eb:0c:0a:b6:7e:08:f4:1d:87:6b:53:a4:
d1:29:81:a2:23:77:a9:bd:60:f5:ef:14:74:d3:a9:d6:b5:0e:
90:8e:f7:88:09:30:c7:45:65:c0:2d:dd:35:ec:c0:07:e1:75:
6b:e5:9c:cd:d2:4d:d4:1e:ee:14:64:b3:b3:5b:75:7e:84:8f:
43:38:fd:a0:8a:42:86:fd:78:67:f6:ed:9e:f9:d0:6a:12:01:
75:fa:30:c1:5d:be:59:18:1f:94:ff:fe:76:12:78:77:8e:7d:
4f:00:61:33:ff:45:ef:13:cb:eb:5c:a3:12:0c:1e:2f:45:02:
ba:57:40:5d:3b:5c:d9:eb:c2:26:9f:50:28:37:c9:9f:1e:76:
25:0b:7f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:24 2025 by rpki-client