Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa
File: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (raw, json)
Hash identifier: iiMZJOJE0I/AUErV1vyRCE+uPLpfCmgdzT+r6epJErs=
Subject key identifier: E4:08:EF:59:FC:66:A5:D2:88:55:47:02:B0:35:EB:3E:3C:F0:BC:19
Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2
Certificate serial: 4F688A79EFB83EBF898066926379A2F9F1D8B972
Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa
Signing time: Wed 11 Sep 2024 13:54:55 +0000
ROA not before: Wed 11 Sep 2024 13:49:55 +0000
ROA not after: Wed 10 Sep 2025 13:54:55 +0000
asID: 139408
IP address blocks: 2405:5e40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:68:8a:79:ef:b8:3e:bf:89:80:66:92:63:79:a2:f9:f1:d8:b9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2
Validity
Not Before: Sep 11 13:49:55 2024 GMT
Not After : Sep 10 13:54:55 2025 GMT
Subject: CN=E408EF59FC66A5D288554702B035EB3E3CF0BC19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:13:a9:89:60:f7:d9:69:11:0f:c5:3e:b9:62:
ee:34:8d:14:aa:9a:39:4e:98:72:b0:b9:ed:d5:09:
be:cf:61:14:b1:c0:f0:1e:d9:69:87:f0:34:b6:fe:
cd:38:fe:d5:1d:72:10:7d:91:dd:5c:ff:4b:d8:68:
ee:74:1b:3c:d1:2c:67:db:b5:19:68:2c:09:4f:da:
cf:02:83:f8:b0:48:25:eb:b6:2a:51:56:97:09:96:
1c:2c:59:b6:a5:63:dd:10:7e:5b:bb:3e:1e:fa:09:
7e:8a:bb:19:22:36:25:d9:df:09:63:dd:47:6f:24:
28:7b:80:81:97:be:e0:f6:bd:44:21:b2:b0:56:87:
07:86:a9:44:8b:3a:f3:86:bb:f4:4a:3b:65:a9:50:
e6:42:07:4f:81:5f:cd:b1:f0:a0:16:1a:ed:ad:55:
f4:13:ec:03:a5:f6:1a:e4:07:f8:d8:ab:58:0e:c7:
72:c5:a2:1f:2c:f9:da:c9:de:2d:96:16:38:6b:fc:
37:6f:04:1b:d2:7d:b4:e5:22:9e:97:62:56:02:ae:
7b:22:93:e9:72:ac:bd:e9:80:07:76:7c:69:31:bf:
3d:7c:2c:18:c8:8e:72:c2:70:23:ef:ad:91:0e:d2:
f8:ea:0e:35:60:7b:0b:d5:d6:bd:70:89:7a:1b:43:
45:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:08:EF:59:FC:66:A5:D2:88:55:47:02:B0:35:EB:3E:3C:F0:BC:19
X509v3 Authority Key Identifier:
keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:5e40::/32
Signature Algorithm: sha256WithRSAEncryption
91:2e:5b:6b:83:a7:d4:c2:c6:3f:6a:a2:ea:5a:c7:b2:73:57:
0a:9e:29:c1:a1:63:c6:4e:55:be:ca:4e:be:c3:26:7b:ee:e2:
8e:6a:0c:7b:ac:f5:ee:c8:12:62:ff:b4:f3:9d:d6:ff:4a:0b:
03:9b:f8:fe:c8:36:76:b8:c1:66:61:88:f3:a2:a8:5f:b4:93:
74:d7:af:e7:3d:0e:31:8e:2e:7e:98:64:7d:26:df:cb:67:7c:
72:18:9e:f5:75:86:a9:d9:b3:66:41:52:7e:14:fd:1b:e7:73:
ce:3e:db:28:ae:2e:98:74:c1:01:02:18:01:bf:51:75:47:f4:
73:20:9a:7d:a0:ce:f2:89:55:d1:fc:5c:35:17:90:90:25:bc:
6c:d7:7e:e0:e7:9c:b2:cb:25:f3:41:45:05:35:8c:62:e8:f7:
10:68:87:05:e8:7a:41:64:c9:8f:97:82:81:f0:5e:c3:1f:db:
f1:aa:b4:e2:a3:77:3e:12:04:66:52:72:7c:2d:a6:76:0d:68:
62:97:4d:0f:4f:97:c8:a5:df:a4:54:c7:f3:90:e8:d7:46:28:
1c:02:33:15:74:c9:49:0c:ef:74:cb:a3:18:67:0b:aa:9a:5a:
c9:bf:8a:ea:1f:a4:f0:70:a0:99:1c:5b:72:ac:44:f7:2b:be:
fd:d0:0f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:49 2025 by rpki-client