Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa
File: 323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa (raw, json)
Hash identifier: zjrcKrFr9aMGx/ZEMncl51qSmuAxDcxz6gkBdoAaiAc=
Subject key identifier: 3C:70:D8:F7:5C:7B:FB:AF:0D:44:01:B7:CB:80:29:D3:60:57:09:04
Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Certificate serial: 3EDC53D561D4B05578106E98500D172F786ED798
Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa
Signing time: Sat 15 Jun 2024 03:39:41 +0000
ROA not before: Sat 15 Jun 2024 03:34:41 +0000
ROA not after: Sat 14 Jun 2025 03:39:41 +0000
asID: 136088
IP address blocks: 2400:d940:baba::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:dc:53:d5:61:d4:b0:55:78:10:6e:98:50:0d:17:2f:78:6e:d7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Validity
Not Before: Jun 15 03:34:41 2024 GMT
Not After : Jun 14 03:39:41 2025 GMT
Subject: CN=3C70D8F75C7BFBAF0D4401B7CB8029D360570904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ad:95:64:c2:71:c0:72:02:be:26:b2:85:13:
e2:47:48:1c:dc:6b:a7:52:bb:96:56:b6:af:2d:73:
07:10:41:1d:1b:b6:e7:74:11:41:9f:be:d6:68:93:
6e:cf:4a:e7:80:fe:b6:80:0b:4f:c3:40:fc:f6:93:
23:f8:7d:28:38:d0:1e:58:1f:8a:99:d6:af:14:a2:
50:76:b4:ae:0a:cd:d0:e1:69:d1:1c:3b:d6:fb:41:
ec:87:82:77:52:ba:5c:f9:33:03:9b:43:ee:c9:cc:
a6:b8:1f:d7:94:2f:3b:01:ad:d2:0f:27:c9:1a:af:
ff:e1:8e:49:8f:cb:34:c2:c4:bb:e7:75:33:24:44:
af:e8:ac:8d:b9:a1:bc:c8:82:e8:15:51:bd:57:a7:
44:cc:a6:a8:40:50:06:82:5f:51:90:89:3c:e9:76:
8c:0b:58:e3:db:1b:3f:4f:c2:af:b0:31:cd:bf:d5:
96:d8:d4:25:7e:71:7c:7e:9e:01:93:80:82:02:ee:
ba:20:e8:af:9b:27:c5:bb:49:33:e4:4f:35:0e:ed:
03:d9:a5:f9:36:0f:83:1f:9b:33:7a:2f:84:f1:18:
7b:16:d8:96:70:53:8d:e4:5a:2a:cb:7f:cf:68:6f:
02:1a:2b:ff:96:df:81:34:76:b0:bd:e2:55:1a:41:
2b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:70:D8:F7:5C:7B:FB:AF:0D:44:01:B7:CB:80:29:D3:60:57:09:04
X509v3 Authority Key Identifier:
keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d940:baba::/48
Signature Algorithm: sha256WithRSAEncryption
8e:5c:24:80:77:02:e4:e3:1e:0e:54:26:1f:4f:e0:a7:91:18:
8d:b8:2a:d5:39:68:fc:07:5e:6f:69:a4:98:90:99:bc:7a:90:
3f:6d:92:86:06:ad:b6:a3:64:ee:7c:e1:9a:a0:8c:29:ce:58:
c4:52:1c:54:82:2c:56:d8:90:dc:bc:20:31:a7:89:d7:9e:6f:
b2:be:91:89:db:62:27:67:34:2b:ac:a4:87:57:c9:5c:78:b4:
70:4f:1b:0f:20:e8:e1:24:40:f0:9b:d6:a0:e9:46:f8:ff:82:
28:5f:34:20:4c:3d:12:95:fb:f8:2a:a9:7a:db:cd:8e:eb:bf:
32:33:e1:62:14:6e:06:03:e8:d5:a1:27:77:4d:54:fd:0f:b8:
c5:24:f3:13:d9:78:0f:b3:76:7e:22:05:10:80:a2:58:17:64:
b0:69:b9:02:a2:48:9a:82:19:a6:bd:a5:f2:e8:da:70:f2:8b:
57:8e:c0:5a:39:6b:c3:7b:cc:4c:06:fa:66:69:e1:05:c7:1f:
8d:e2:00:be:9a:6f:e7:aa:60:98:d2:ec:cc:8c:5d:41:b0:bb:
c5:9e:c3:6f:f3:58:b0:c6:a0:92:1b:23:59:3d:4b:82:a3:aa:
72:fe:9c:0a:53:b2:5b:0b:68:87:cd:bb:89:1c:1f:16:be:ad:
00:4a:3b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:06:30 2025 by rpki-client