Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa
File: 323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa (raw, json)
Hash identifier: m0Qe62ytaZMKNB4gQCVhBMudXZyhLsB3FcV65dwOjuM=
Subject key identifier: 11:9B:E3:C0:72:63:69:A8:54:97:C6:73:B7:09:3A:B4:2E:63:A4:88
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 3BADD922F57517A7BD967ACEA3A3FA6D063099FD
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa
Signing time: Thu 11 Jul 2024 16:00:00 +0000
ROA not before: Thu 11 Jul 2024 15:55:00 +0000
ROA not after: Thu 10 Jul 2025 16:00:00 +0000
asID: 24206
IP address blocks: 2402:ab00:cf::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:ad:d9:22:f5:75:17:a7:bd:96:7a:ce:a3:a3:fa:6d:06:30:99:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Jul 11 15:55:00 2024 GMT
Not After : Jul 10 16:00:00 2025 GMT
Subject: CN=119BE3C0726369A85497C673B7093AB42E63A488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:03:d3:63:25:54:76:8a:a3:96:37:b0:64:
eb:ab:da:84:54:1f:13:f0:b4:9c:29:15:47:e0:50:
11:93:51:82:5f:b1:78:5f:99:9c:fd:4f:de:63:5f:
09:66:be:5c:29:ca:24:8b:95:2c:91:ff:88:61:9e:
79:4b:06:31:a0:af:b5:29:6c:ae:bb:b4:6b:42:69:
e9:54:19:49:d0:d4:03:bc:46:ea:58:69:6c:79:9e:
c5:9a:c4:5b:3e:ad:5a:47:c3:4f:af:d3:97:85:eb:
bd:c3:b2:b8:93:d4:7f:16:10:17:40:a6:e3:38:18:
59:a2:7f:9b:52:3f:91:72:2f:d4:9f:7b:63:0b:c7:
fb:d1:64:e8:81:07:c8:5f:34:fb:d7:84:aa:37:2e:
a7:ab:ac:a8:44:32:56:a3:cd:5a:b3:9d:47:59:27:
29:88:44:40:85:4e:6b:7d:e3:80:43:7f:5f:7d:67:
1b:3e:b8:00:2f:14:74:c5:8c:60:90:aa:c9:b5:87:
70:a7:8b:d9:02:b1:cb:86:7b:47:59:87:17:c1:09:
fa:d9:60:34:72:7b:20:09:30:70:bd:e6:24:72:e5:
6d:b4:ed:f2:9b:8d:ea:b2:16:c0:3e:a3:2e:77:2e:
03:92:4b:e0:7b:82:35:fd:04:a8:52:47:e9:29:0f:
3a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9B:E3:C0:72:63:69:A8:54:97:C6:73:B7:09:3A:B4:2E:63:A4:88
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:ab00:cf::/48
Signature Algorithm: sha256WithRSAEncryption
22:06:55:84:4a:cb:6a:00:3c:68:6c:6b:ee:9b:7b:ae:bb:15:
97:24:f7:9c:0d:60:41:bc:74:42:c1:da:0f:05:a8:11:1f:1e:
77:09:7e:e6:2b:f8:8c:6d:61:3a:db:9e:42:04:67:07:0b:da:
21:ff:22:87:f6:71:9d:c7:4f:c2:00:52:2d:4a:f9:df:92:c2:
4a:35:64:31:15:6c:f3:3e:7f:9f:b1:f8:25:40:22:0c:fb:5e:
2e:b9:3f:41:86:d8:fa:b2:8a:4c:28:9a:76:ad:fb:5e:09:50:
7e:6c:d2:a6:ec:b7:72:bd:ae:33:e7:0a:99:d0:44:f4:7f:5c:
ef:01:0a:8c:60:62:dc:3b:e1:ea:44:9a:ed:76:90:55:17:4f:
57:fe:b9:21:2d:3a:93:e0:1f:fc:b6:25:7b:31:13:79:eb:a9:
fd:50:0a:dc:93:20:ae:0f:5e:14:18:67:d0:dc:23:34:73:76:
b6:67:ff:6a:62:0c:99:ca:1e:a6:2c:03:f8:9a:18:58:f2:ab:
94:06:df:81:00:0b:e0:a8:89:d1:bc:24:d7:84:65:90:2b:43:
32:96:a5:75:75:bf:41:33:23:8e:3d:d9:af:c0:e7:90:0e:90:
14:b9:9a:5d:9c:3d:b8:a5:f5:6b:2a:b0:68:25:3b:c9:ab:36:
05:73:81:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:43 2025 by rpki-client