Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: Brjcomhs47DYpiBDnWSciNzl+vBzGRvqQf+B3T5OCfk=
Subject key identifier: 7F:2E:C5:FD:FE:3B:B6:D6:25:48:C2:B4:7D:7F:2C:D3:0D:DD:82:18
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 403A340C0171D4355A6D616A617B5015BECFA4E7
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:04 +0000
ROA not before: Fri 29 Nov 2024 04:55:04 +0000
ROA not after: Fri 28 Nov 2025 05:00:04 +0000
asID: 58552
IP address blocks: 2404:fd00:14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:3a:34:0c:01:71:d4:35:5a:6d:61:6a:61:7b:50:15:be:cf:a4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:04 2024 GMT
Not After : Nov 28 05:00:04 2025 GMT
Subject: CN=7F2EC5FDFE3BB6D62548C2B47D7F2CD30DDD8218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:f3:95:95:3f:97:20:4a:e9:f0:bf:4b:9c:1d:
a7:6c:4a:34:fd:bd:4e:72:06:d3:e8:c5:b3:7b:90:
28:32:35:e1:f3:28:4c:55:f5:34:9a:e8:fd:4a:9a:
22:ba:a8:b6:d7:de:55:4e:44:4a:a6:e6:79:4b:77:
9c:69:13:e3:56:a9:f1:1b:83:3a:91:de:5c:86:30:
0b:cc:86:ae:cc:e1:fa:f2:98:c3:e3:67:b3:ae:ae:
12:f4:fc:e5:54:99:bf:d0:d5:75:5a:56:38:85:45:
4d:6a:67:b0:4e:14:09:5c:92:70:c1:bd:6a:70:4d:
d0:43:d1:40:9c:d8:cc:fc:17:9a:f8:3b:7a:78:5d:
ba:b5:5f:6d:89:22:a8:c2:f2:d2:43:e9:60:6c:46:
b4:83:01:90:84:2b:90:8b:36:9c:dc:14:dc:86:38:
6a:6b:65:e8:a3:8a:44:27:59:07:4c:47:00:4b:58:
6f:7e:a3:6a:ee:36:75:a8:92:89:e5:cc:73:e0:83:
e6:21:a7:90:90:f8:05:6c:f2:d1:e7:8a:89:c7:b0:
0b:04:66:ba:cf:66:00:f9:df:b2:7b:af:0f:23:9a:
ca:61:07:43:95:3c:1a:d7:1d:ef:7b:65:f6:fc:d3:
3a:df:fb:01:e7:24:20:20:fb:76:65:20:ee:8c:fd:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2E:C5:FD:FE:3B:B6:D6:25:48:C2:B4:7D:7F:2C:D3:0D:DD:82:18
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:14::/48
Signature Algorithm: sha256WithRSAEncryption
5e:4f:89:2f:95:29:c2:bc:35:79:e0:df:a6:84:e5:62:cc:d0:
e1:b6:6d:77:85:5d:65:d9:a3:a6:b9:b3:5a:d9:b8:c8:18:02:
ce:d8:44:69:36:d7:7a:63:74:dd:5c:62:96:91:f2:5d:fd:de:
44:a3:74:8d:d8:16:89:f0:60:2e:c9:5a:7a:80:f9:e0:e5:4c:
0b:cf:8f:f1:4a:4b:1d:dc:53:71:3b:3c:98:03:ab:7b:5b:d3:
0f:82:16:da:82:ba:1a:6e:6e:f6:4a:3c:d3:92:95:44:4b:0b:
7e:0f:0e:d0:a4:77:f9:92:55:2f:6f:1e:61:a1:46:b4:94:12:
63:29:f4:fb:db:46:e9:91:f1:91:9c:0f:20:da:be:e7:4c:16:
1a:e2:5a:ff:7f:f1:36:14:8f:85:0b:54:73:4b:7b:f2:07:6d:
5a:0c:9f:d2:b8:8c:2c:40:3d:69:27:af:70:00:7a:e3:be:31:
9d:75:d6:77:00:dc:44:9a:cb:98:6a:0d:69:1c:4a:1f:b6:89:
19:54:47:97:36:ab:ce:38:b5:06:23:23:a4:14:8e:76:ed:ff:
7c:46:ff:5b:87:1b:92:7e:5e:7e:36:ea:f8:64:a3:b5:b9:d6:
9d:cd:f0:98:ef:79:ce:54:ad:d0:8e:6c:50:87:46:3f:27:33:
29:c7:ef:96
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUQDo0DAFx1DVabWFqYXtQFb7PpOcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF
NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDRaFw0yNTExMjgwNTAwMDRaMDMxMTAvBgNV
BAMTKDdGMkVDNUZERkUzQkI2RDYyNTQ4QzJCNDdEN0YyQ0QzMERERDgyMTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD885WVP5cgSunwv0ucHadsSjT9
vU5yBtPoxbN7kCgyNeHzKExV9TSa6P1KmiK6qLbX3lVOREqm5nlLd5xpE+NWqfEb
gzqR3lyGMAvMhq7M4frymMPjZ7OurhL0/OVUmb/Q1XVaVjiFRU1qZ7BOFAlcknDB
vWpwTdBD0UCc2Mz8F5r4O3p4Xbq1X22JIqjC8tJD6WBsRrSDAZCEK5CLNpzcFNyG
OGprZeijikQnWQdMRwBLWG9+o2ruNnWokonlzHPgg+Yhp5CQ+AVs8tHnionHsAsE
ZrrPZgD537J7rw8jmsphB0OVPBrXHe97Zfb80zrf+wHnJCAg+3ZlIO6M/a0PAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUfy7F/f47ttYlSMK0fX8s0w3dghgwHwYDVR0j
BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx
NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1
RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05
NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABQw
DQYJKoZIhvcNAQELBQADggEBAF5PiS+VKcK8NXng36aE5WLM0OG2bXeFXWXZo6a5
s1rZuMgYAs7YRGk213pjdN1cYpaR8l393kSjdI3YFonwYC7JWnqA+eDlTAvPj/FK
Sx3cU3E7PJgDq3tb0w+CFtqCuhpubvZKPNOSlURLC34PDtCkd/mSVS9vHmGhRrSU
EmMp9PvbRumR8ZGcDyDavudMFhriWv9/8TYUj4ULVHNLe/IHbVoMn9K4jCxAPWkn
r3AAeuO+MZ111ncA3ESay5hqDWkcSh+2iRlUR5c2q844tQYjI6QUjnbt/3xG/1uH
G5J+Xn426vhko7W51p3N8Jjvec5UrdCObFCHRj8nMynH75Y=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:45 2025 by rpki-client