Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa
File: 323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa (raw, json)
Hash identifier: wANFlcEnJtKYhVhmbvh7ghaUvUER0v8nXkBQby1whj8=
Subject key identifier: 02:4B:17:99:49:AB:D5:F3:47:69:0F:ED:7D:14:E4:61:7A:79:37:18
Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837
Certificate serial: 041E5E59724A165D068AC39DA10BFBB027E2A02F
Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa
Signing time: Tue 13 Aug 2024 01:26:43 +0000
ROA not before: Tue 13 Aug 2024 01:21:43 +0000
ROA not after: Tue 12 Aug 2025 01:26:43 +0000
asID: 136079
IP address blocks: 2405:2cc0:8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:1e:5e:59:72:4a:16:5d:06:8a:c3:9d:a1:0b:fb:b0:27:e2:a0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837
Validity
Not Before: Aug 13 01:21:43 2024 GMT
Not After : Aug 12 01:26:43 2025 GMT
Subject: CN=024B179949ABD5F347690FED7D14E4617A793718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:48:01:19:e4:d3:44:2f:77:d4:f4:39:72:a3:
b4:cd:92:81:53:2a:42:59:b9:a7:72:33:91:ee:96:
92:1b:81:0c:b4:29:3b:38:2a:7d:eb:0e:b0:f1:3f:
00:1d:47:04:02:33:e4:5f:47:c8:c8:03:a2:5b:18:
7b:fa:1c:15:4c:81:dc:65:89:a8:27:73:2b:14:6f:
4a:56:b2:b7:c8:0b:9e:99:9e:56:7b:40:0a:95:2a:
6d:3c:01:25:48:72:d3:9c:1b:d8:39:63:dd:5a:8d:
f9:9b:4a:01:68:d1:c1:4d:9b:85:ea:21:3d:4b:a1:
f4:79:4f:47:bc:f1:94:18:d9:03:af:54:cc:6d:35:
6e:bd:a5:05:b3:11:10:4a:29:16:83:98:b5:33:ac:
f6:5f:0b:a8:36:1c:80:3e:68:3d:f4:06:ad:80:39:
fe:09:2c:5c:02:c3:3d:95:ca:0e:e6:22:be:0d:2d:
d2:11:3a:7c:00:6a:27:fd:19:99:5b:e3:cc:5f:21:
13:7c:c1:ae:b0:c5:94:9d:37:41:1f:c3:6b:a4:61:
8f:a9:24:53:98:39:dc:fd:ac:a5:15:bd:4b:7f:03:
f1:66:b9:c4:47:20:2e:85:4e:e0:a1:e8:5f:ef:01:
34:70:85:e4:cd:00:48:c5:70:de:06:7b:0e:ac:f8:
dc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4B:17:99:49:AB:D5:F3:47:69:0F:ED:7D:14:E4:61:7A:79:37:18
X509v3 Authority Key Identifier:
keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:2cc0:8::/48
Signature Algorithm: sha256WithRSAEncryption
05:1c:77:3a:0e:c0:3c:c7:49:f0:69:19:ac:69:5b:aa:64:c9:
95:aa:1a:0d:20:1f:c0:1b:ac:4e:4d:21:e1:30:44:d5:90:49:
c5:d3:ce:ed:81:b1:15:da:3c:9f:53:b5:fb:7a:f8:b7:46:77:
e2:9b:96:66:62:7f:f8:87:cc:9a:63:38:b8:ef:b4:26:a2:c2:
7f:62:a6:0d:1b:52:06:28:49:6c:ca:a2:2c:15:4d:84:8c:fb:
6b:d9:10:f8:ec:4f:a1:d9:1e:3d:12:15:eb:43:77:ce:a7:c4:
2f:83:fc:9d:2a:e5:38:b4:f2:e1:d6:6a:fe:a8:27:6d:ca:39:
d5:d6:19:be:c8:ed:84:30:6d:1c:15:bd:0a:ed:3c:92:46:e2:
a3:28:23:5e:bc:cf:c1:bb:8a:70:7f:ec:96:d3:a8:2c:1f:74:
14:60:8d:37:1f:dc:8c:e8:d4:60:5a:a1:07:16:4c:f1:43:d2:
8a:27:c2:01:c0:86:8d:7d:3e:37:99:dc:bb:ce:39:2c:96:df:
84:e6:e5:62:26:d9:e3:d1:89:3b:9c:9b:e2:57:6d:dc:1a:f9:
0c:2d:88:20:77:7b:a6:75:db:c8:31:39:7f:c7:42:01:90:0a:
59:0d:42:c8:56:55:6e:39:31:6a:54:5c:90:09:08:fc:15:69:
d8:f1:97:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:45:39 2025 by rpki-client