Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa
File: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (raw, json)
Hash identifier: Nis2CwI3ez8v1WSHl89eT2Oh6FaKWW6bg0hXnRqd+og=
Subject key identifier: AA:15:E5:1C:FE:7D:47:75:75:AE:6A:EC:46:A6:47:65:FD:58:37:9C
Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28
Certificate serial: 769949D2DF0ECCD6E2EB7C7191AF1E9CA6D7CC9C
Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa
Signing time: Mon 01 Jul 2024 01:04:13 +0000
ROA not before: Mon 01 Jul 2024 00:59:13 +0000
ROA not after: Mon 30 Jun 2025 01:04:13 +0000
asID: 55683
IP address blocks: 2001:df6:cc00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:99:49:d2:df:0e:cc:d6:e2:eb:7c:71:91:af:1e:9c:a6:d7:cc:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28
Validity
Not Before: Jul 1 00:59:13 2024 GMT
Not After : Jun 30 01:04:13 2025 GMT
Subject: CN=AA15E51CFE7D477575AE6AEC46A64765FD58379C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:bd:50:8b:fd:75:96:bb:3a:a7:c9:03:cf:
32:4c:bf:5a:7b:16:44:c5:5f:05:1b:19:91:84:39:
8f:9c:26:d1:c3:1c:ce:ac:5f:d4:07:3f:a9:32:04:
aa:cf:53:36:39:18:12:37:0d:4f:63:cb:a5:ad:69:
1a:0d:ed:d7:ac:e4:72:66:44:11:89:b8:03:9b:a8:
8e:71:6d:f7:db:db:62:ce:7e:44:78:d3:d6:bf:d7:
ea:e2:1c:8a:12:ce:39:04:3b:38:6a:28:b3:b5:53:
15:23:c0:da:ee:69:b0:be:1a:bb:b3:6a:34:95:af:
0a:f3:82:d8:d6:32:44:3d:61:50:84:e0:29:9e:cc:
5c:c3:f7:3f:24:da:b0:8e:f3:b6:26:28:33:b1:9b:
01:19:35:ce:b6:57:b9:92:ee:fd:ee:91:14:37:db:
6f:cc:ff:43:42:c2:d3:75:9e:2c:14:ff:e9:41:b5:
5a:7f:32:7a:a6:23:cb:e9:e2:b0:52:7c:46:7d:c5:
88:c9:34:eb:4b:53:c8:f3:e5:7a:16:a9:5a:51:4f:
61:cb:80:60:63:07:6b:2d:24:e3:f7:22:c2:bc:34:
70:51:ef:24:af:4a:ee:3c:15:03:49:d6:4a:22:a9:
0b:d6:a9:72:c2:54:44:37:b1:b8:28:86:19:9a:06:
3c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:15:E5:1C:FE:7D:47:75:75:AE:6A:EC:46:A6:47:65:FD:58:37:9C
X509v3 Authority Key Identifier:
keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df6:cc00::/48
Signature Algorithm: sha256WithRSAEncryption
7c:c7:42:6a:da:0e:ee:1f:37:73:e8:0e:11:a1:fc:37:f1:db:
2b:97:58:cb:36:38:19:db:b5:a3:b9:a3:f6:9e:2d:b7:68:52:
a2:bd:bc:e4:2c:1b:3c:4e:ac:50:eb:1a:c1:5f:1b:06:29:e6:
ff:df:0e:7a:cb:13:6d:2f:37:28:82:fc:a0:53:b5:b8:5c:81:
97:f1:6b:d9:d0:bd:96:e3:50:1c:2e:fa:61:7a:17:8a:37:19:
ed:64:66:72:60:8e:a2:cd:50:e0:63:00:4e:0e:9d:73:83:21:
3e:d4:02:3f:cb:10:5b:3e:8f:7f:05:ea:6c:b1:49:94:74:f6:
93:62:9c:06:b5:45:8c:ab:33:61:48:25:bc:c0:e7:e6:6f:22:
3a:c8:39:df:28:18:b9:03:a4:ab:cf:3e:5d:02:f8:a7:6c:e5:
cc:0d:55:79:89:59:8e:5e:16:85:7f:43:b4:d7:b5:bd:f3:e6:
d2:e0:41:d1:15:da:f4:68:0c:ec:e3:59:a9:6c:22:e4:c2:79:
c8:46:7c:d8:26:4d:59:e2:02:ff:63:50:19:45:7e:1b:be:8d:
33:58:97:cf:8c:8e:5c:1a:57:38:8d:61:b5:50:b4:e1:ef:2f:
8d:a9:1f:6e:00:44:e9:c7:34:f9:17:37:bc:d2:a7:0d:c4:64:
bc:3c:af:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:13 2025 by rpki-client