Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa
File: 323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa (raw, json)
Hash identifier: nvp6aBQxjtptGYgUeLEHjxMFltaz+YvY0H1/2W6JEXw=
Subject key identifier: 6E:71:87:05:A8:C7:D2:25:56:B4:F9:86:79:04:0A:7F:63:EE:B8:9C
Certificate issuer: /CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782
Certificate serial: 0BF4022F3013009EA1E741EDAC65C26F5FDC8441
Authority key identifier: A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa
Signing time: Tue 19 Nov 2024 12:30:23 +0000
ROA not before: Tue 19 Nov 2024 12:25:23 +0000
ROA not after: Tue 18 Nov 2025 12:30:23 +0000
asID: 152758
IP address blocks: 2001:df3:d1c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:f4:02:2f:30:13:00:9e:a1:e7:41:ed:ac:65:c2:6f:5f:dc:84:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782
Validity
Not Before: Nov 19 12:25:23 2024 GMT
Not After : Nov 18 12:30:23 2025 GMT
Subject: CN=6E718705A8C7D22556B4F98679040A7F63EEB89C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1f:41:a3:87:82:0d:a7:6c:f7:95:68:32:e7:
5d:d8:a3:cd:b6:e5:6c:fa:50:70:c8:e7:91:8f:1c:
32:86:50:56:7e:36:18:44:55:73:fe:e1:bd:4d:0b:
89:53:97:12:36:ad:f6:19:ee:ee:94:51:a7:67:d3:
9f:91:93:fe:85:fb:3d:26:22:a5:34:e1:03:ca:77:
7b:b4:dd:55:77:7c:51:09:ee:3a:6f:72:66:6b:b7:
a3:99:b7:69:ff:0d:28:c7:cb:d4:de:27:fd:2e:c8:
ee:4f:57:1a:76:2d:b1:8a:77:19:f8:51:0f:ff:44:
b8:7f:86:71:7a:ff:fa:3f:de:e5:c7:91:e4:c2:90:
b2:f9:ea:12:66:74:e6:e6:1b:7e:9b:5c:ad:1a:de:
a9:fd:4e:d1:0a:a7:74:9e:bd:0c:e0:11:2c:df:b9:
81:ba:c2:16:8d:39:58:ad:21:84:e9:1e:ec:f6:2b:
86:5b:85:32:73:25:cb:af:61:8d:db:65:f6:60:d4:
56:c2:9b:f7:f8:ce:93:fe:07:5a:be:be:ce:27:dd:
eb:aa:47:e8:68:fa:47:f0:4e:3f:96:17:e1:9c:8a:
3e:bf:18:49:03:61:42:2a:0f:d2:5a:4a:bb:fa:26:
5c:ec:d7:a5:78:6a:81:05:e6:15:f0:14:19:96:c5:
7d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:71:87:05:A8:C7:D2:25:56:B4:F9:86:79:04:0A:7F:63:EE:B8:9C
X509v3 Authority Key Identifier:
keyid:A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/323030313a6466333a643163303a3a2f34382d3438203d3e20313532373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:d1c0::/48
Signature Algorithm: sha256WithRSAEncryption
27:d7:c7:2f:6a:f6:43:8a:f3:5f:9d:1d:eb:66:24:e3:15:0e:
e3:5f:e1:1e:df:d7:dd:56:f5:b9:a0:8b:ce:d7:25:5c:ea:93:
4f:be:f2:82:81:d4:7d:fa:c8:76:f9:9a:73:39:0f:fb:fb:66:
f3:ad:31:0a:14:fe:58:87:bf:0b:83:cd:e3:39:05:93:58:fb:
54:55:7c:ae:88:b6:de:23:01:fd:93:57:54:ef:01:ec:e2:e0:
7b:5d:a2:f5:21:90:1a:46:34:5f:d3:e0:08:d1:a9:a3:82:e4:
ac:92:e4:75:8c:75:7d:c5:c1:e3:b6:b0:54:9e:44:bd:1c:4e:
a6:fc:2a:53:11:d4:08:52:54:7b:55:97:37:99:85:69:d0:5d:
d6:26:a4:8a:94:af:b6:d1:d1:19:4f:6e:61:58:08:eb:f1:2f:
0a:c1:d5:1a:f2:63:31:a4:77:89:6c:7e:bf:78:8b:2e:43:69:
72:1d:cc:95:5a:e6:bf:aa:cb:9b:ec:49:04:09:f1:0f:47:69:
28:a0:95:5f:fc:8a:dd:30:6e:0a:40:ba:71:44:7f:43:d2:44:
51:e2:6a:0c:6a:49:4f:97:d4:45:7d:1f:42:bb:56:86:c7:3c:
0f:cb:ba:0e:9e:e0:a1:d1:d2:49:93:9e:f6:50:4b:03:d7:44:
4f:bf:80:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:57:23 2025 by rpki-client