Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa
File: 323430303a393163303a3a2f33322d3438203d3e20313336303738.roa (raw, json)
Hash identifier: 9Qq9nGAg7vTOcr7lz/i/AMHp0f1G534wHtpDft2fpT0=
Subject key identifier: 85:BD:8F:8C:6A:BF:32:5F:16:AC:D3:3D:3F:FA:F9:A6:B5:76:1D:12
Certificate issuer: /CN=798D703C19A93E4E19F716304D78F20AA3261B8A
Certificate serial: 16180D839C6AD45A4C0C27D1C6D5A5DC77C25F78
Authority key identifier: 79:8D:70:3C:19:A9:3E:4E:19:F7:16:30:4D:78:F2:0A:A3:26:1B:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798D703C19A93E4E19F716304D78F20AA3261B8A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa
Signing time: Mon 15 Jul 2024 07:59:13 +0000
ROA not before: Mon 15 Jul 2024 07:54:13 +0000
ROA not after: Mon 14 Jul 2025 07:59:13 +0000
asID: 136078
IP address blocks: 2400:91c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:18:0d:83:9c:6a:d4:5a:4c:0c:27:d1:c6:d5:a5:dc:77:c2:5f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798D703C19A93E4E19F716304D78F20AA3261B8A
Validity
Not Before: Jul 15 07:54:13 2024 GMT
Not After : Jul 14 07:59:13 2025 GMT
Subject: CN=85BD8F8C6ABF325F16ACD33D3FFAF9A6B5761D12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:f2:fc:4c:4d:86:bd:91:b1:c3:c5:7d:85:
26:b9:1c:cd:2c:6b:02:09:3b:88:2f:d5:c2:bc:cf:
ab:c0:33:f0:35:cb:5f:b6:ec:c4:e9:5a:43:38:7d:
04:46:c9:eb:26:ef:69:0f:75:4e:3c:bd:32:8f:f6:
84:86:5c:a0:39:9e:1c:7c:62:2f:e5:d6:53:b2:86:
d1:ee:c3:e9:a3:cf:7c:1e:7b:ee:c0:b3:27:c1:ce:
40:61:15:26:d4:bc:a8:f9:e3:51:6d:70:5f:a2:ab:
c5:dc:73:68:0f:fe:8e:58:31:26:19:86:36:e0:42:
ac:cc:80:62:ec:ea:e1:00:05:62:16:e6:09:f0:aa:
a5:33:64:c6:70:21:f6:80:5e:48:1f:09:6b:86:31:
22:ea:a7:75:96:6d:47:cf:8e:ff:c3:ef:f7:ad:c9:
f4:d7:29:1f:91:ee:2a:b8:f8:b9:d3:77:2e:ac:8c:
f9:b5:9b:bf:e7:48:e5:04:bc:5c:72:5b:99:52:2c:
8a:a6:b6:eb:5f:46:55:27:87:c1:5a:c5:11:ca:1a:
e7:5e:0f:3c:60:16:07:80:71:31:46:62:af:26:f1:
d9:6e:de:08:7b:d9:d0:0a:ae:eb:3f:96:08:fa:f4:
38:d0:ec:5f:a0:7e:68:31:00:89:cd:d2:81:2e:d0:
bc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BD:8F:8C:6A:BF:32:5F:16:AC:D3:3D:3F:FA:F9:A6:B5:76:1D:12
X509v3 Authority Key Identifier:
keyid:79:8D:70:3C:19:A9:3E:4E:19:F7:16:30:4D:78:F2:0A:A3:26:1B:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/798D703C19A93E4E19F716304D78F20AA3261B8A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798D703C19A93E4E19F716304D78F20AA3261B8A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:91c0::/32
Signature Algorithm: sha256WithRSAEncryption
62:61:e8:aa:cf:fe:0d:4b:3b:bb:39:e5:f0:b4:77:74:38:b6:
7d:d9:09:a6:63:43:2b:ee:78:ec:5a:f2:8e:7d:41:64:0f:99:
91:5e:22:4b:25:43:3f:33:18:3b:ac:0a:8c:27:5f:fb:a6:e2:
bd:65:b0:08:d8:08:a8:65:26:de:21:d0:c3:0b:91:1d:1a:8e:
5a:f8:66:d7:ee:88:da:3b:c5:4b:b2:ad:0a:0b:59:d4:c0:4c:
a4:30:b9:42:cf:8c:98:65:f8:bf:10:4b:bd:ea:ec:55:20:1c:
76:89:87:f5:94:97:93:76:ea:27:02:c0:23:ce:f0:60:a4:65:
fb:52:cc:a1:ff:37:b6:ba:69:83:d2:54:fc:a1:a6:98:3c:2a:
6e:5f:e5:d4:76:ee:f6:e7:9b:5c:09:3b:bc:89:de:6e:14:c5:
b3:ed:4f:d7:4b:49:5f:86:95:52:4e:9d:11:8f:a4:d9:f6:f6:
b3:f9:63:fd:e8:9f:ce:a8:36:23:b7:29:8e:21:6c:32:54:4f:
26:09:4e:5c:46:ea:94:13:bb:8b:96:31:20:21:90:6d:3f:0c:
3b:23:b9:84:ce:c4:fc:b9:df:c9:8b:46:05:96:1f:46:7a:79:
75:06:8e:f4:46:44:81:c7:bf:63:58:ec:36:6e:4f:71:51:6a:
6b:76:47:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:43:20 2025 by rpki-client