Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa
File: 323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa (raw, json)
Hash identifier: 27UeUaEQQTlGBzMMtig9mrxqvsFGGYiXFECx86HP9vw=
Subject key identifier: D2:E4:E9:CF:63:39:4A:86:F9:3E:67:F6:66:7D:AE:25:EF:7C:5E:D0
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 2DAC883165C905E4A61A0FA7CFE74B808AB72423
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa
Signing time: Thu 11 Jul 2024 09:00:01 +0000
ROA not before: Thu 11 Jul 2024 08:55:01 +0000
ROA not after: Thu 10 Jul 2025 09:00:01 +0000
asID: 24206
IP address blocks: 2402:ab00:df::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:ac:88:31:65:c9:05:e4:a6:1a:0f:a7:cf:e7:4b:80:8a:b7:24:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Jul 11 08:55:01 2024 GMT
Not After : Jul 10 09:00:01 2025 GMT
Subject: CN=D2E4E9CF63394A86F93E67F6667DAE25EF7C5ED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5f:86:bb:14:d6:11:c1:fb:21:5c:f1:f9:96:
82:ad:b6:84:8b:a3:41:eb:6c:ca:58:ec:22:d5:ea:
32:bd:db:5c:26:56:41:44:4a:9d:e6:0d:3a:04:e0:
33:3d:76:ff:cf:7b:f6:cf:34:6e:21:67:f3:d9:ef:
8c:0c:9d:9e:c0:24:ca:7b:bd:c9:e9:cc:a5:d7:35:
79:ac:69:d5:8f:4a:8d:c2:6b:9d:a1:39:0c:70:26:
fa:12:63:20:35:2b:d3:28:df:ed:11:f6:88:e6:3e:
ef:f7:35:71:33:8e:99:90:e8:0c:33:a6:0e:53:ee:
aa:d1:3b:64:4d:b0:e0:52:8d:1e:0f:6a:4f:80:7e:
ec:a5:d0:dc:9a:d7:e2:62:c0:73:bf:8d:c0:99:0b:
37:7e:37:5d:24:11:17:8c:ff:6d:48:9f:45:b6:ed:
99:b4:64:ca:0a:80:0f:10:1c:6c:03:7a:ab:21:e5:
53:16:5b:f5:48:47:0e:ca:41:3f:a3:73:d4:3b:57:
d1:f0:7e:e2:ee:d9:b9:f4:9b:ae:4a:9e:aa:5e:a7:
7e:64:d7:e2:b9:86:28:4f:b0:43:b4:5a:28:4b:ad:
5a:30:90:56:fa:27:9b:2f:85:eb:71:63:fb:ca:c4:
3f:f2:55:32:a2:3c:02:52:bd:3a:59:d8:b0:97:84:
f7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E4:E9:CF:63:39:4A:86:F9:3E:67:F6:66:7D:AE:25:EF:7C:5E:D0
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:ab00:df::/48
Signature Algorithm: sha256WithRSAEncryption
ae:aa:5b:e3:56:d6:b7:9a:09:11:1c:24:c5:8f:6f:8b:58:63:
f3:a0:0a:fc:9b:eb:47:24:35:dc:bf:de:b2:a3:60:b4:84:cb:
58:10:a8:1a:55:35:15:31:26:94:0d:74:ba:26:9e:e2:0a:86:
17:f9:02:5b:96:c2:cb:0a:82:3e:31:dc:7d:4c:2b:17:b2:dc:
8f:49:27:cf:1d:16:71:58:7c:55:bc:f6:93:cd:17:d8:34:b7:
ea:22:08:d2:29:b8:34:83:6d:62:ad:28:5c:c5:f5:73:30:d5:
27:40:4f:48:3c:c3:e3:a0:05:06:10:c6:05:2d:64:1a:88:67:
4a:2f:64:a4:9c:4b:e2:fd:01:69:ff:45:66:d8:59:4c:36:21:
70:a2:9a:6c:04:b4:7f:2d:82:42:e9:3f:c5:84:15:c2:f8:be:
26:f1:bd:e8:26:b5:a9:14:c6:83:2f:e4:ae:a4:e8:10:c4:8a:
f1:09:55:d9:76:ac:bc:d9:76:89:a3:60:69:ca:fc:b3:ff:ac:
55:9f:0c:f7:1a:73:7a:67:c1:84:fa:a9:af:14:be:d0:03:9e:
56:ec:bf:c2:5e:e8:7b:0e:d0:76:01:b1:22:16:f2:5b:cd:38:
e6:a2:53:a8:67:bd:d8:15:65:3d:e6:a6:8b:2a:d7:5d:41:bd:
73:5b:8a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:49 2025 by rpki-client