Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa
File: 323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa (raw, json)
Hash identifier: Yo3YDtNICENVtjQCJjmao0Ij4Zhr/p/PS47VjT7FrD0=
Subject key identifier: 3F:35:1F:71:F1:B4:B0:31:0E:7C:C1:CB:B0:29:B3:D3:15:45:3A:F3
Certificate issuer: /CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80
Certificate serial: 1FC28BA81B7E4DA085443FF57210ABB10F31FA42
Authority key identifier: 8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa
Signing time: Wed 18 Sep 2024 08:00:54 +0000
ROA not before: Wed 18 Sep 2024 07:55:54 +0000
ROA not after: Wed 17 Sep 2025 08:00:54 +0000
asID: 151569
IP address blocks: 2001:df3:2c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:c2:8b:a8:1b:7e:4d:a0:85:44:3f:f5:72:10:ab:b1:0f:31:fa:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80
Validity
Not Before: Sep 18 07:55:54 2024 GMT
Not After : Sep 17 08:00:54 2025 GMT
Subject: CN=3F351F71F1B4B0310E7CC1CBB029B3D315453AF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:33:e5:a8:ee:be:08:14:15:26:b1:61:c1:
f2:76:a6:2f:96:dc:0d:0d:f8:37:12:40:ce:26:b8:
64:d4:da:f6:c5:ac:9e:f7:0b:5f:7f:05:b0:68:d0:
3e:8a:fd:e1:ac:cd:8a:c8:90:e6:2c:1a:ba:5a:ee:
e5:56:d6:81:a3:bd:0a:b6:e5:aa:19:b8:68:7d:ce:
91:83:2e:22:f2:b2:c7:fa:a4:ed:31:dd:47:15:b5:
d6:6a:d7:ce:c9:00:94:88:6c:b7:fc:0b:d1:38:c5:
b5:1e:aa:73:73:49:55:10:c8:d6:bb:1b:06:81:c6:
f8:88:35:d0:af:e1:71:db:47:f8:39:28:35:07:46:
bf:dc:1e:07:f3:d9:18:27:52:bc:9b:db:22:61:2b:
7e:63:21:d2:74:e4:7f:9a:b6:54:1d:31:f4:b7:22:
2f:83:13:50:24:3f:3d:09:b2:27:10:3c:11:1b:00:
96:0c:c4:e1:05:3e:07:a4:d2:a9:bc:8b:c4:22:01:
d9:98:5a:ab:35:be:10:f8:e8:79:f4:09:aa:78:da:
53:f6:86:e0:0c:19:c4:18:6f:22:01:e8:13:69:7e:
21:05:0c:fd:bb:b6:df:58:3a:62:53:df:48:59:34:
28:0b:76:85:bb:b6:36:9e:18:4b:4b:74:67:15:86:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:35:1F:71:F1:B4:B0:31:0E:7C:C1:CB:B0:29:B3:D3:15:45:3A:F3
X509v3 Authority Key Identifier:
keyid:8A:F2:4B:A6:BB:2F:67:CD:54:8B:D0:8B:64:D9:7B:9A:24:68:ED:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AF24BA6BB2F67CD548BD08B64D97B9A2468ED80.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cabeebcc-a247-4fde-aa86-c6669eabcd82/0/323030313a6466333a3263303a3a2f34382d3438203d3e20313531353639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
7e:50:3e:97:9f:98:67:e0:f1:14:9d:10:0c:38:f5:a6:7e:4e:
3a:38:54:b2:92:c1:12:08:4a:6e:eb:17:34:1f:0c:f2:d3:fe:
8b:d4:6a:9e:68:73:db:3b:91:ba:c9:38:3f:ec:fb:5a:bb:b2:
ee:b2:83:40:98:91:24:86:01:10:72:1d:78:73:c9:39:aa:39:
b7:93:77:99:f0:82:4a:d8:2e:c7:bc:db:6c:60:d9:22:11:c8:
31:25:81:c1:c2:d5:26:78:b6:54:f5:62:47:b7:63:c1:0d:39:
5e:ea:22:c8:09:e2:03:3d:cd:e8:4f:67:5d:3d:d6:5d:b1:50:
1c:3d:34:0f:80:32:fd:49:b6:45:7f:c3:97:e5:bb:6b:2e:ae:
5d:91:fb:29:22:cc:25:89:85:8c:fb:5e:87:4b:06:0b:ad:b6:
6b:1c:a5:48:58:03:66:f2:3f:23:ee:97:41:b7:d9:49:eb:ae:
a1:57:d8:02:1c:cb:fd:18:da:fe:4a:86:92:84:85:9e:7c:52:
7f:fc:51:44:6c:58:ab:15:25:49:02:de:66:29:56:5d:42:c6:
73:c7:80:31:a1:2b:04:62:89:4b:11:bb:33:0e:3c:4d:10:16:
a2:e9:37:a7:b2:37:a2:77:be:a9:59:c2:6b:62:f4:30:5f:cb:
71:dd:6f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:00:53 2025 by rpki-client