Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa
File: 323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa (raw, json)
Hash identifier: DxRHbV9vq06eySWFy+SbfeSlfdJ6CHSZY535/jNssuc=
Subject key identifier: 63:99:32:C1:FC:3A:C0:1A:89:3F:3A:83:42:7D:7E:2E:93:0D:88:E3
Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Certificate serial: 43E3C7E65408D33F1F798E14DF6B42BA33082564
Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa
Signing time: Thu 12 Sep 2024 05:19:28 +0000
ROA not before: Thu 12 Sep 2024 05:14:28 +0000
ROA not after: Thu 11 Sep 2025 05:19:28 +0000
asID: 63862
IP address blocks: 2401:f980:7000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:e3:c7:e6:54:08:d3:3f:1f:79:8e:14:df:6b:42:ba:33:08:25:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9
Validity
Not Before: Sep 12 05:14:28 2024 GMT
Not After : Sep 11 05:19:28 2025 GMT
Subject: CN=639932C1FC3AC01A893F3A83427D7E2E930D88E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:8b:46:08:d9:f3:8d:b3:95:cd:98:84:48:c0:
64:b3:0b:dc:9d:72:70:f6:b4:56:09:cb:4a:b2:2d:
c6:b7:b1:9c:3b:ee:0b:27:de:d9:a8:30:ff:86:a8:
91:89:f3:95:0d:3d:15:40:61:4f:07:42:b2:cc:b7:
be:cc:d5:1f:c4:1a:40:90:4f:fe:97:6a:5b:e1:8e:
9f:d3:a1:8b:e4:aa:1a:66:e8:71:98:4a:b9:53:d7:
ce:8a:9f:7e:ed:49:91:2f:cd:60:44:c0:4d:c6:b0:
74:36:11:8e:35:ae:6c:e6:13:e7:d7:31:ff:04:90:
9a:c7:98:86:a9:ad:69:23:24:0b:ff:d9:19:21:70:
61:ac:64:4a:32:66:6d:12:37:6f:07:49:83:7e:68:
48:0a:d7:65:a3:f9:92:ea:21:e8:5b:f5:1b:20:7f:
c0:f5:3a:9c:86:e9:fc:a5:20:08:02:c5:7e:6f:de:
b3:b3:5a:1d:31:21:26:ec:5c:13:fb:4f:5e:fe:ca:
43:12:3a:d6:a9:e6:36:24:64:89:64:2c:5e:4c:0a:
15:39:0f:b0:ff:f2:0a:76:60:22:b9:ba:ff:39:0f:
84:06:f9:0d:69:e9:51:2a:ab:ee:bb:a4:fc:19:d2:
76:24:26:56:d6:aa:0e:7e:e4:e5:bc:40:8d:ee:f9:
47:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:99:32:C1:FC:3A:C0:1A:89:3F:3A:83:42:7D:7E:2E:93:0D:88:E3
X509v3 Authority Key Identifier:
keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:f980:7000::/36
Signature Algorithm: sha256WithRSAEncryption
aa:0e:42:55:b2:07:14:df:79:6c:a6:08:54:46:64:49:7b:b2:
cb:c2:2a:e5:93:7b:71:5b:56:de:52:fd:1f:58:8e:6e:b5:bf:
17:f6:32:a5:5d:20:30:9c:bd:3d:76:1b:1b:e1:d1:fc:c7:fe:
61:0d:2d:f2:97:60:a3:63:b8:08:a8:a6:62:44:6a:51:6e:9f:
7c:00:66:ca:52:d1:f6:25:f2:3d:e0:3b:42:27:01:9e:86:6b:
34:c3:77:9f:a1:36:de:f9:d3:8a:41:23:02:5d:b2:bd:e3:74:
2a:c2:60:20:ee:68:aa:a1:c1:07:0d:c5:e3:c7:a6:01:87:71:
c2:0f:79:aa:06:74:e7:9d:01:3f:e6:1d:98:9a:98:c6:4b:3b:
d5:79:ac:d2:9a:37:47:d6:a5:38:10:88:1d:42:f1:43:7e:97:
a2:29:28:02:4e:85:15:51:e4:57:a6:f3:5c:85:21:1e:21:11:
bc:b4:76:70:41:d1:d9:82:21:81:58:18:05:3e:3f:f6:f4:e7:
1f:af:f1:c1:6f:65:f8:11:02:31:45:63:5e:4b:a7:e3:23:dc:
83:66:e4:51:88:36:32:2f:72:e1:dd:b3:ff:71:58:a0:e5:ee:
03:6f:3b:77:62:25:54:77:52:77:30:c7:6e:0e:99:d7:1c:54:
21:8a:32:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:33:34 2025 by rpki-client