Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa
File: 323430343a653130303a3a2f34372d3438203d3e203535363835.roa (raw, json)
Hash identifier: tcdZ0BFUkhu8Cg9kmdDffxYuz1UzH0w4sZVqYvLmyKU=
Subject key identifier: 09:71:A6:6E:B3:73:E7:58:B3:E4:5C:D1:19:4D:C7:F0:E8:FD:42:04
Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Certificate serial: 5FD83F5F79EEAAA654342B56C44C5840378CFF8F
Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa
Signing time: Mon 01 Jul 2024 01:05:50 +0000
ROA not before: Mon 01 Jul 2024 01:00:50 +0000
ROA not after: Mon 30 Jun 2025 01:05:50 +0000
asID: 55685
IP address blocks: 2404:e100::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:d8:3f:5f:79:ee:aa:a6:54:34:2b:56:c4:4c:58:40:37:8c:ff:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Validity
Not Before: Jul 1 01:00:50 2024 GMT
Not After : Jun 30 01:05:50 2025 GMT
Subject: CN=0971A66EB373E758B3E45CD1194DC7F0E8FD4204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0c:c0:9a:99:96:25:e6:82:1e:8b:1e:7e:04:
3a:11:67:72:50:13:66:d9:d0:2d:ee:ab:79:10:78:
95:94:0b:8f:f3:98:e5:3c:ac:15:b8:e6:5a:34:bf:
a6:c9:58:6a:05:6a:af:56:a4:56:45:ca:2a:3a:fd:
03:82:ad:70:28:3f:ed:45:85:0b:22:c5:cb:9b:e6:
3b:bd:4e:92:87:c0:43:5f:36:43:6a:0e:85:21:a5:
fc:36:a9:f8:8f:fe:2f:72:08:50:0a:24:da:b7:d6:
c2:2d:1e:aa:2f:14:2f:f4:c7:3a:79:aa:fe:a5:a6:
cc:cb:6b:33:95:38:54:db:a0:71:fe:9b:fa:7a:51:
cd:2c:1f:27:cd:4c:37:f7:32:1d:ac:d5:f0:61:9e:
c6:3c:71:92:d0:99:af:76:91:7e:a4:e1:fa:ec:54:
aa:b8:42:5f:16:72:71:97:b7:4c:c0:cb:96:cc:37:
3b:56:e1:ef:9e:98:5d:17:6c:08:06:78:7d:f1:7a:
26:4c:a2:15:83:24:74:50:b1:4a:b1:f1:81:11:05:
56:27:e8:ed:51:2f:99:00:4f:e1:58:d3:40:1d:b7:
22:44:e5:2b:ec:85:10:ca:8c:bd:05:47:08:ea:30:
e9:57:f8:ea:29:95:29:61:fa:89:c4:59:be:57:cb:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:71:A6:6E:B3:73:E7:58:B3:E4:5C:D1:19:4D:C7:F0:E8:FD:42:04
X509v3 Authority Key Identifier:
keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:e100::/47
Signature Algorithm: sha256WithRSAEncryption
84:8b:84:7c:97:4d:70:60:7b:4a:07:18:a5:b9:03:d7:b8:8c:
e9:2c:78:e1:cf:09:c5:99:25:5c:21:f6:1c:13:32:d0:53:de:
15:85:b5:b8:7e:3d:b0:e8:34:96:14:ca:a0:be:02:0c:99:75:
49:0d:b7:35:b4:46:67:53:e4:be:94:42:2e:a8:31:02:cc:50:
b3:8c:e9:67:7a:a3:e6:13:7c:0a:7b:10:f2:6f:fa:69:0c:75:
31:dc:db:d8:bd:8d:de:0c:da:77:02:f7:d1:9b:b7:b3:50:d9:
fa:72:24:d5:d2:73:dd:6d:c6:29:a4:df:13:1e:a4:71:db:36:
79:95:ad:d7:f7:5c:22:94:19:a9:b9:e2:c0:74:5d:25:40:99:
aa:8d:ba:63:a9:97:15:05:d8:4a:9a:5d:ef:4d:78:39:1a:72:
6f:aa:4a:ca:a6:d3:f5:52:4c:f6:21:9e:72:89:ae:af:d9:a4:
ae:28:5a:35:b8:b3:b1:bd:e2:aa:b8:a4:5d:a9:10:68:22:53:
fd:f9:db:e0:70:c0:cc:51:77:a9:0a:b7:e0:b8:36:0b:84:27:
9f:f5:8d:9b:88:c6:c0:03:e4:96:36:3f:8e:32:d9:b5:9d:89:
ca:a6:9b:08:05:2f:0d:8f:3c:e9:ff:fc:a3:26:5f:00:2d:20:
3a:6d:d4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:33 2025 by rpki-client