Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa
File: 323430303a623138303a3a2f33322d3438203d3e203539323736.roa (raw, json)
Hash identifier: crOVEgCgm8Ew1MqWiIikyqPFfpnVH7kp+H/fQfPdFIk=
Subject key identifier: 24:97:B5:AF:44:47:76:75:20:CD:1D:7A:62:30:73:5C:7C:88:90:6E
Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5
Certificate serial: 76A932F5078A92D07A40A81464F347B39E528B34
Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa
Signing time: Thu 19 Sep 2024 21:50:13 +0000
ROA not before: Thu 19 Sep 2024 21:45:13 +0000
ROA not after: Thu 18 Sep 2025 21:50:13 +0000
asID: 59276
IP address blocks: 2400:b180::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:a9:32:f5:07:8a:92:d0:7a:40:a8:14:64:f3:47:b3:9e:52:8b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5
Validity
Not Before: Sep 19 21:45:13 2024 GMT
Not After : Sep 18 21:50:13 2025 GMT
Subject: CN=2497B5AF4447767520CD1D7A6230735C7C88906E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4a:5f:e3:4f:da:2e:56:13:c5:14:1e:36:31:
05:91:46:7e:d0:d6:5c:92:39:b7:88:77:ee:f1:44:
dd:e0:8a:ed:49:2a:fc:7d:25:7d:d2:d6:38:f4:99:
69:db:7b:0c:59:1d:78:65:36:7b:93:0c:c9:6d:9a:
75:0d:9f:2f:50:5d:3b:dc:5c:ff:ba:4c:be:aa:5f:
24:db:55:d8:a6:45:2b:d8:d3:e6:1a:47:06:9e:dd:
c3:84:5d:6d:b3:6f:2d:b0:43:fe:12:bd:12:8e:b0:
02:44:f7:02:e8:4e:b3:8a:b3:2f:ea:d7:fd:ac:13:
b0:fb:60:a5:c0:67:c5:75:d5:14:3a:00:0d:28:0b:
31:c3:83:8d:c2:00:e1:ae:4a:16:49:e5:11:df:6b:
8d:ce:93:b9:0b:8e:17:31:32:03:fb:c7:57:1e:e5:
f0:91:8e:35:24:e3:b1:1c:cd:f5:11:da:56:fd:06:
3f:93:ac:31:f7:69:2e:46:03:e3:c8:db:02:78:cf:
be:3b:7d:f3:bd:24:7d:29:14:35:9f:14:e9:f6:bf:
91:64:c1:5e:00:6d:c8:18:8b:b6:fa:49:f7:ef:d7:
6b:c9:07:92:fd:d0:7b:d2:59:ed:d3:0d:d6:71:38:
76:de:ca:d1:11:4f:12:54:d6:3d:89:48:42:b4:6d:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:97:B5:AF:44:47:76:75:20:CD:1D:7A:62:30:73:5C:7C:88:90:6E
X509v3 Authority Key Identifier:
keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:b180::/32
Signature Algorithm: sha256WithRSAEncryption
51:38:75:4c:6e:ae:0a:67:b0:92:1d:8a:59:e6:81:5c:f9:5e:
33:26:63:23:ce:3c:bc:ed:43:f7:bc:55:24:d2:c6:d2:14:ba:
a3:1f:fe:ae:12:14:5d:06:35:5c:cd:bf:1f:5e:b1:9a:52:2e:
cd:2c:fc:31:06:66:df:8b:e1:d1:29:db:0e:bc:da:c9:6a:28:
18:4e:ec:6d:19:78:14:a3:a4:ce:c4:75:0b:37:37:64:00:03:
0a:a1:d7:cc:66:79:54:1d:10:d9:21:1f:96:cc:51:8e:ad:d1:
27:1b:8d:00:c9:f9:49:02:d5:fc:05:f3:dd:b3:26:05:0d:0f:
bb:cb:f2:db:fe:2c:f6:73:54:37:d7:8d:df:5d:92:7c:e8:c3:
57:69:9e:de:9d:74:10:6f:b9:dd:84:6f:d2:2a:13:13:f3:78:
0a:88:2b:f7:f3:69:4f:d9:fd:6b:4c:20:fb:7b:46:2c:0b:7f:
c7:a9:e3:d4:7d:14:62:82:3f:82:5c:b3:8f:81:d3:1e:3d:8a:
7f:83:9d:05:c0:80:6a:26:7d:66:22:f6:b0:53:44:d2:9a:a3:
83:f4:32:1d:44:2e:98:5f:ab:9f:9c:70:65:05:43:83:97:1d:
e5:44:0a:40:66:83:11:8e:04:b7:9a:15:62:b6:64:79:f8:13:
e4:93:aa:8c
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUdqky9QeKktB6QKgUZPNHs55SizQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4
NzlBNzRFNTAeFw0yNDA5MTkyMTQ1MTNaFw0yNTA5MTgyMTUwMTNaMDMxMTAvBgNV
BAMTKDI0OTdCNUFGNDQ0Nzc2NzUyMENEMUQ3QTYyMzA3MzVDN0M4ODkwNkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkSl/jT9ouVhPFFB42MQWRRn7Q
1lySObeId+7xRN3giu1JKvx9JX3S1jj0mWnbewxZHXhlNnuTDMltmnUNny9QXTvc
XP+6TL6qXyTbVdimRSvY0+YaRwae3cOEXW2zby2wQ/4SvRKOsAJE9wLoTrOKsy/q
1/2sE7D7YKXAZ8V11RQ6AA0oCzHDg43CAOGuShZJ5RHfa43Ok7kLjhcxMgP7x1ce
5fCRjjUk47EczfUR2lb9Bj+TrDH3aS5GA+PI2wJ4z747ffO9JH0pFDWfFOn2v5Fk
wV4AbcgYi7b6Sffv12vJB5L90HvSWe3TDdZxOHbeytERTxJU1j2JSEK0bZIBAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUJJe1r0RHdnUgzR16YjBzXHyIkG4wHwYDVR0j
BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4
RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB
NzRFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i
NjU5LTc0NWNhMmFjYTMzMy8wLzMyMzQzMDMwM2E2MjMxMzgzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDM1MzkzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALGAMA0GCSqGSIb3
DQEBCwUAA4IBAQBROHVMbq4KZ7CSHYpZ5oFc+V4zJmMjzjy87UP3vFUk0sbSFLqj
H/6uEhRdBjVczb8fXrGaUi7NLPwxBmbfi+HRKdsOvNrJaigYTuxtGXgUo6TOxHUL
NzdkAAMKodfMZnlUHRDZIR+WzFGOrdEnG40AyflJAtX8BfPdsyYFDQ+7y/Lb/iz2
c1Q3143fXZJ86MNXaZ7enXQQb7ndhG/SKhMT83gKiCv382lP2f1rTCD7e0YsC3/H
qePUfRRigj+CXLOPgdMePYp/g50FwIBqJn1mIvawU0TSmqOD9DIdRC6YX6ufnHBl
BUODlx3lRApAZoMRjgS3mhVitmR5+BPkk6qM
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:25 2025 by rpki-client