Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa
File: 323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa (raw, json)
Hash identifier: KSjkQ8QwpppJxiJX2WOeGB6CdtpxTCvIwn/6JwQhtW0=
Subject key identifier: EC:F0:46:14:71:9E:9F:D8:F8:20:89:03:D1:81:A7:BE:0D:28:51:09
Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Certificate serial: 30BA3FB89068FFEB669584C083A6A829A767AE85
Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa
Signing time: Wed 09 Oct 2024 10:07:53 +0000
ROA not before: Wed 09 Oct 2024 10:02:53 +0000
ROA not after: Wed 08 Oct 2025 10:07:53 +0000
asID: 139417
IP address blocks: 2404:cac0:ff00::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:ba:3f:b8:90:68:ff:eb:66:95:84:c0:83:a6:a8:29:a7:67:ae:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6
Validity
Not Before: Oct 9 10:02:53 2024 GMT
Not After : Oct 8 10:07:53 2025 GMT
Subject: CN=ECF04614719E9FD8F8208903D181A7BE0D285109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9f:20:0b:f9:e6:8b:fc:17:ed:b3:3d:04:37:
9a:a1:c8:65:0e:46:2e:09:24:ec:a9:a1:7e:a0:18:
aa:51:0e:f7:1e:d4:e5:99:7c:a3:6e:3a:62:aa:87:
df:68:3b:86:e2:ab:a2:7f:d0:05:93:08:ea:c6:0e:
e5:5f:03:05:e0:06:1a:14:31:49:b5:3c:f3:8b:5b:
27:87:63:48:63:c6:ab:b0:14:b8:07:2e:ea:c3:93:
f1:b1:44:6e:3c:fb:c9:0e:32:43:55:5d:10:09:b8:
ed:68:1c:32:a8:da:58:af:99:f7:9c:06:29:97:05:
da:e7:eb:e7:09:44:61:05:a2:ba:d6:06:b5:6f:52:
ba:1a:a0:e8:69:8d:73:93:5f:98:2b:21:d1:42:ab:
bd:60:92:7e:8d:ca:13:ee:76:8c:2d:75:2f:a7:e0:
1b:d1:b1:d1:47:cd:90:af:a1:73:f5:0e:f7:59:48:
f6:59:a3:9d:18:69:82:e3:73:61:77:b9:bc:2d:d3:
db:52:40:5e:45:5e:41:0d:07:86:42:d0:96:29:6a:
aa:37:30:92:50:c9:e2:f2:42:9d:ca:6d:d2:64:d9:
17:60:c7:de:53:7d:a6:10:20:c4:20:64:c5:8f:5f:
3c:eb:7e:13:66:26:bc:0d:7a:03:7b:43:63:15:86:
89:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F0:46:14:71:9E:9F:D8:F8:20:89:03:D1:81:A7:BE:0D:28:51:09
X509v3 Authority Key Identifier:
keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cac0:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
8a:be:da:34:24:22:cc:d7:1b:f5:75:11:b6:80:1f:96:0b:ad:
0e:a9:2e:38:22:5a:9a:74:c4:08:fb:c7:36:74:3c:d2:42:88:
d4:2d:87:9e:b3:16:f1:da:26:a6:04:2d:c8:57:de:a0:c2:9c:
64:d6:1a:df:e6:a4:ec:8b:56:eb:d5:54:09:55:d7:2f:0a:85:
69:9c:4b:42:9e:f7:4a:79:d0:d4:0b:30:23:64:85:15:75:6c:
2b:0e:eb:91:c9:68:99:b1:27:15:2e:67:f2:3d:e3:21:b9:4c:
d7:a0:0b:98:86:13:6b:f8:45:6a:bd:bd:6e:20:43:f0:e7:36:
67:6f:b1:23:c6:6f:c4:a8:e3:18:b2:18:40:eb:87:51:09:c5:
15:4e:89:70:e9:04:dd:d7:37:f9:c6:ff:1c:94:a6:1a:ae:61:
ee:72:da:a4:f4:ab:a4:86:89:4f:8b:ac:d4:0b:85:10:26:0d:
cf:08:29:33:e2:4a:31:43:a3:28:99:95:c9:aa:89:bf:6c:d7:
43:f9:f2:d9:1c:88:90:de:dd:ba:a8:e4:41:52:22:57:51:a4:
b1:85:8c:9d:fe:6e:99:80:53:fb:00:f0:99:e7:5e:0e:a8:45:
59:39:12:a9:cc:e6:d9:81:3d:95:35:ef:df:25:a3:e4:02:c1:
5e:3d:1a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:49:27 2025 by rpki-client