Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa
File: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (raw, json)
Hash identifier: cLVCVvcvprgwkkF82bMcfbs0h+bsaPJp7VIWMvcz0os=
Subject key identifier: 38:5B:79:C0:AC:4B:09:E0:49:3B:45:F3:E4:E6:E6:6F:6C:39:0F:71
Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF
Certificate serial: 46811FB66E52E919834994061B51BA4E238BD62F
Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa
Signing time: Fri 09 Aug 2024 07:02:21 +0000
ROA not before: Fri 09 Aug 2024 06:57:21 +0000
ROA not after: Fri 08 Aug 2025 07:02:21 +0000
asID: 138851
IP address blocks: 2001:df0:3e80::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:81:1f:b6:6e:52:e9:19:83:49:94:06:1b:51:ba:4e:23:8b:d6:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF
Validity
Not Before: Aug 9 06:57:21 2024 GMT
Not After : Aug 8 07:02:21 2025 GMT
Subject: CN=385B79C0AC4B09E0493B45F3E4E6E66F6C390F71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:17:bf:12:6d:a5:e3:d5:90:0d:7c:94:14:
fe:b2:f1:89:57:b4:5b:77:3a:32:66:91:80:f4:71:
1a:7b:a7:0d:5a:0e:99:bd:8c:56:e3:fe:b4:0f:af:
a8:ef:f1:00:c6:6f:f8:3e:b3:e8:c7:a9:ab:8a:ed:
3d:4d:97:40:33:a1:bc:03:f0:10:43:ad:96:a1:51:
48:61:c8:9c:bd:e4:91:df:a1:4d:2e:f8:ac:06:22:
53:74:a0:d9:54:cd:25:d1:6f:de:f8:cb:03:d3:5d:
ff:9d:ae:a0:51:8e:42:0c:fa:52:c6:c7:2f:57:5a:
81:37:c9:01:1a:0c:6d:c5:34:87:64:23:a3:f1:1d:
c2:4e:2d:99:a2:ac:93:2c:3b:23:64:d6:12:18:62:
95:3a:5f:f7:e0:5e:8a:47:3f:52:9b:66:d4:28:e8:
ec:69:0c:ba:ba:1e:af:1a:1b:17:30:28:d4:0c:c0:
33:fc:25:bf:32:d7:26:a8:cb:c7:28:e5:11:5d:82:
69:01:47:f4:31:53:d6:e6:77:61:03:ad:5c:78:8c:
ff:d3:06:7c:5a:1b:da:fe:b3:77:42:05:92:04:1a:
a5:7e:5b:8c:ce:fc:cf:04:45:a6:7e:22:37:cb:9e:
25:70:b8:c0:5d:2b:00:07:03:14:5a:f7:7b:a9:f3:
46:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5B:79:C0:AC:4B:09:E0:49:3B:45:F3:E4:E6:E6:6F:6C:39:0F:71
X509v3 Authority Key Identifier:
keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:3e80::/48
Signature Algorithm: sha256WithRSAEncryption
39:15:8a:31:3d:ae:59:ff:3c:cb:7a:ad:6d:1a:bf:6b:b2:8b:
12:fc:22:f4:86:15:c8:df:11:d7:c5:1c:00:41:73:2e:65:ea:
52:2b:8a:26:17:b7:58:7d:92:6d:65:b6:c4:f4:3e:e3:1e:a6:
3f:03:ed:03:e7:0f:51:ec:4f:a7:69:84:67:58:86:29:62:54:
4e:36:4b:c5:dd:78:40:6e:64:4f:67:1f:c4:7c:d0:7b:ef:38:
0d:e6:06:2e:44:24:6a:b9:b9:df:33:d0:f9:c6:3d:cd:58:8f:
d1:d0:89:3a:60:6f:81:c3:a8:38:c3:50:6a:9a:96:71:68:6d:
06:fd:60:c3:d8:33:8c:c6:15:72:1c:38:b3:cd:55:a3:6e:1e:
45:d5:44:e1:94:d7:ee:96:e7:b2:e3:13:1f:a3:b7:30:1d:dc:
0a:b9:00:50:93:d4:80:19:de:50:94:98:93:cb:7c:35:fc:bb:
1c:8c:9f:46:ba:80:8f:6a:ce:09:0d:0e:3e:89:3a:26:6b:e7:
81:e9:97:97:07:09:ce:f8:12:8b:18:32:6e:e1:59:d7:aa:fa:
e7:f1:b3:4b:f3:11:0d:1e:e0:71:bc:f9:06:68:47:53:be:96:
53:c6:d1:b4:c7:65:d7:40:66:17:19:1e:c1:b7:a4:4a:86:02:
41:c7:e7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:14 2025 by rpki-client