Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa
File: 323430343a313034303a3a2f33322d3332203d3e20313338313133.roa (raw, json)
Hash identifier: euGW3qyiY1cvGkXvLfjMjljBNDqFA3m50maYeGElOOA=
Subject key identifier: 49:B0:86:A6:08:89:B2:7C:EC:DA:D6:BB:20:5B:9C:0E:14:DA:39:A1
Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358
Certificate serial: 44918912203762AD1E8A4B1317864EC2277E04DA
Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa
Signing time: Mon 01 Jul 2024 01:02:47 +0000
ROA not before: Mon 01 Jul 2024 00:57:47 +0000
ROA not after: Mon 30 Jun 2025 01:02:47 +0000
asID: 138113
IP address blocks: 2404:1040::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:91:89:12:20:37:62:ad:1e:8a:4b:13:17:86:4e:c2:27:7e:04:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358
Validity
Not Before: Jul 1 00:57:47 2024 GMT
Not After : Jun 30 01:02:47 2025 GMT
Subject: CN=49B086A60889B27CECDAD6BB205B9C0E14DA39A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b1:1f:f8:57:9a:29:e3:34:23:3d:50:cd:d0:
3f:ed:02:fd:ce:44:48:5e:3e:0b:cb:c6:ea:51:1c:
be:8f:f4:75:b4:dc:f1:8f:de:d8:1a:f8:40:5f:3c:
25:4f:cb:2c:3d:e3:7d:b6:20:0a:a6:75:1b:77:80:
99:c2:e0:76:5d:47:da:7b:db:5e:ce:43:92:14:a1:
c3:f8:00:90:db:af:1c:d3:38:0e:62:a1:af:be:42:
6d:49:4c:a8:ad:1a:02:f5:2b:f9:ab:6b:2c:0a:22:
bb:9d:d1:13:36:ec:87:cc:88:3c:02:ed:74:76:95:
7c:43:ab:8c:ea:39:6a:71:94:66:6b:75:2a:ae:19:
93:c8:da:94:82:6f:ab:5a:5b:e2:ae:ea:9d:96:0d:
96:74:da:25:e3:ee:3a:43:36:07:ae:df:1f:ce:86:
e3:1d:90:04:3a:b3:64:ad:8b:75:df:ed:85:02:eb:
70:a8:d0:eb:4b:25:65:96:51:c2:54:da:ec:74:a6:
4c:17:a5:5d:9a:a1:2b:ac:93:54:c1:f9:81:ee:37:
9c:85:23:38:98:13:ae:97:09:e0:28:68:18:e0:8f:
db:38:b4:73:8e:3e:1d:c7:1a:d2:04:e5:85:ed:92:
a2:9c:ee:5b:33:71:7d:ec:01:49:7f:a3:8f:ea:ba:
72:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B0:86:A6:08:89:B2:7C:EC:DA:D6:BB:20:5B:9C:0E:14:DA:39:A1
X509v3 Authority Key Identifier:
keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:1040::/32
Signature Algorithm: sha256WithRSAEncryption
3f:af:f5:7e:2e:fa:fd:f9:53:5b:41:56:87:7c:38:09:2e:bb:
2b:e1:8e:17:6a:d6:ea:48:e1:25:3f:5a:d5:f8:19:55:b7:c6:
64:3c:4f:75:5d:73:7e:4d:09:29:7d:4b:f3:8d:c9:f6:d3:30:
0d:16:ec:3a:fe:c9:46:93:02:50:83:73:ef:a8:24:c0:04:38:
20:37:e6:de:7c:27:78:d5:19:8a:3e:80:24:e7:ba:72:df:da:
7b:64:cd:f1:29:3e:8e:c3:2b:b4:60:bb:8f:63:d4:33:6e:16:
71:f9:c9:4a:88:8a:40:8e:b5:d8:9d:db:ee:1c:7e:26:25:e5:
e8:5e:0d:0c:e2:a8:21:23:50:13:f8:d4:77:1a:8b:79:7b:1a:
11:c7:05:c8:a4:85:72:14:7f:81:c3:83:bc:fd:f0:8c:86:a3:
d3:fc:82:5e:2c:ed:08:a0:dc:03:1a:7f:6c:80:b9:88:02:0c:
52:3a:05:5d:ed:7b:eb:83:48:9a:12:79:96:55:14:d2:6b:a2:
d1:77:a9:6f:6b:bb:15:5a:eb:d0:6e:be:c9:c1:d4:09:b8:77:
45:14:24:a9:cf:54:9b:00:9e:86:e4:8a:34:4b:01:e7:a8:ed:
97:6b:ba:45:9b:00:82:3f:bd:87:ae:96:73:8b:00:3f:52:f9:
1b:85:c3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:32:58 2025 by rpki-client