Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa
File: 323430313a613565303a3a2f33322d3438203d3e20313532383130.roa (raw, json)
Hash identifier: s292PcC6dBIs43USme90wNYPw9OQTbk8ASa0Cok4ryc=
Subject key identifier: 5C:CC:97:52:5C:0D:67:DE:1E:E7:CB:85:61:04:80:98:A9:8A:2D:0C
Certificate issuer: /CN=F52826976E7EBDBF89B93A42A1682E42B84289FB
Certificate serial: 3CF39EDA10F24688EAD9C9867D8CA9FCA292A9E5
Authority key identifier: F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa
Signing time: Fri 28 Jun 2024 16:09:37 +0000
ROA not before: Fri 28 Jun 2024 16:04:37 +0000
ROA not after: Fri 27 Jun 2025 16:09:37 +0000
asID: 152810
IP address blocks: 2401:a5e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:f3:9e:da:10:f2:46:88:ea:d9:c9:86:7d:8c:a9:fc:a2:92:a9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F52826976E7EBDBF89B93A42A1682E42B84289FB
Validity
Not Before: Jun 28 16:04:37 2024 GMT
Not After : Jun 27 16:09:37 2025 GMT
Subject: CN=5CCC97525C0D67DE1EE7CB8561048098A98A2D0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2c:ba:49:ac:1a:3c:7a:8b:d9:29:0e:33:2c:
88:11:e8:da:c6:fc:b5:71:78:6c:53:0f:0d:66:6c:
a2:c3:ab:0a:65:ee:31:d5:6b:a1:78:4b:88:88:fb:
ab:dd:e9:4e:4f:b8:0b:48:27:f2:a2:3c:08:ff:ce:
94:ca:bd:17:c0:97:4a:55:75:7a:9d:18:90:74:dd:
98:52:dc:50:2b:83:66:07:0a:29:df:cc:40:a9:e6:
21:3c:bf:78:a4:ea:40:89:b2:8c:2f:ff:4c:f2:73:
45:9a:16:f8:59:d9:eb:20:84:36:d3:96:88:a3:40:
3f:32:d6:33:1f:1e:a6:1b:d3:80:2e:ba:a9:47:28:
89:3d:93:05:05:fd:ba:b3:52:d7:5a:38:89:b9:e0:
83:4a:0f:00:ca:9c:1d:7a:a6:13:09:a5:b9:e4:e3:
4d:b2:e5:e8:13:40:5f:ba:2c:93:1d:51:96:46:36:
08:5a:4e:3f:0e:86:e9:48:6f:99:96:bb:0a:a2:e0:
72:c8:44:ba:3f:96:26:d3:b1:28:2b:17:44:3d:21:
22:7c:5e:ae:b4:9e:f3:6e:d0:4c:ae:59:93:bb:4f:
70:fe:72:c3:0b:d7:06:db:14:33:56:af:c1:9e:2a:
13:48:d5:f1:46:63:f2:eb:01:b7:51:3f:20:85:7d:
21:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CC:97:52:5C:0D:67:DE:1E:E7:CB:85:61:04:80:98:A9:8A:2D:0C
X509v3 Authority Key Identifier:
keyid:F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:a5e0::/32
Signature Algorithm: sha256WithRSAEncryption
1b:54:b6:19:98:98:2f:74:27:3c:74:96:1b:1b:8e:6f:8a:18:
a6:54:6a:41:dc:c5:7c:00:24:e4:66:f1:a5:e2:bc:5d:fd:cf:
a6:9d:43:00:3f:5e:f0:2f:a7:f2:d9:8f:42:a8:cf:30:58:d0:
5f:72:ee:e6:01:d5:65:e7:fd:85:7e:9e:89:c2:5c:5c:3b:ec:
4a:89:9a:9d:f3:5a:6d:ea:bf:0c:16:22:9b:46:20:6c:fb:15:
38:30:ed:84:45:30:f0:ec:f9:7f:1a:4b:72:e0:87:a7:d9:96:
c6:1b:32:2d:a4:f9:d8:9e:35:f5:97:ab:c3:81:66:23:89:cc:
ff:6c:50:ea:44:b9:c2:be:2f:e9:6f:22:99:84:b0:56:8c:1e:
57:28:b2:fb:f9:1a:0c:38:a9:4a:5e:dc:2b:2e:ed:1f:41:64:
17:7c:7e:3a:a2:ff:5e:9e:44:11:d2:b0:ab:b8:16:08:db:c6:
ef:54:a3:00:53:be:aa:49:27:04:c3:aa:f9:e2:6c:29:6d:a5:
3a:91:1b:6d:41:61:81:3a:dd:66:7c:84:c6:81:32:4b:67:dd:
fe:fe:5b:0d:ef:06:2f:69:f4:cb:94:a7:d0:4d:fc:15:34:a7:
bd:f2:9d:2b:5a:1b:ef:2d:6a:3b:3b:3b:c1:87:c9:f8:ed:eb:
b7:fe:3a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:39 2025 by rpki-client