Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: z8iau6LaqJhfV8eKKR1zAvlp51INYRIvWBtxcwV3LB4=
Subject key identifier: E0:0B:CB:4A:8D:4B:84:BE:B2:AA:75:27:E2:75:2D:32:8C:1A:33:4A
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 32CEFB979EFF7F7838D4054D157F6ABC1E0E277A
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:01 +0000
ROA not before: Fri 29 Nov 2024 04:55:01 +0000
ROA not after: Fri 28 Nov 2025 05:00:01 +0000
asID: 58552
IP address blocks: 2404:fd00:15::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:ce:fb:97:9e:ff:7f:78:38:d4:05:4d:15:7f:6a:bc:1e:0e:27:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:01 2024 GMT
Not After : Nov 28 05:00:01 2025 GMT
Subject: CN=E00BCB4A8D4B84BEB2AA7527E2752D328C1A334A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:00:31:5d:fc:f6:83:14:92:b8:62:4a:30:28:
7f:29:66:c8:0d:99:7b:81:3a:e7:c3:3c:20:e3:7c:
d8:bf:91:92:3c:84:c2:90:7b:45:6d:9b:5c:58:c9:
dc:5c:05:4d:1b:42:f8:f7:c7:ce:d3:eb:39:16:1b:
29:fe:59:15:42:58:5f:06:0d:54:ac:c8:e6:cc:73:
f1:13:b7:4a:42:b1:e8:68:8e:3a:af:eb:66:d0:30:
32:0b:6f:74:45:91:67:02:bd:54:92:35:f9:30:73:
70:63:71:78:fa:80:08:ae:16:7f:85:0c:d8:2b:84:
15:24:23:8d:d9:3e:b7:45:a1:77:d9:55:00:53:1d:
93:b5:e2:96:e3:56:c5:0d:bb:ea:d2:c1:4a:f2:9f:
9a:5f:d6:fc:3b:7c:67:66:3e:a7:40:50:25:94:47:
5d:a9:d0:b4:0e:00:c0:cf:4a:63:f2:de:87:39:f0:
5c:1b:82:eb:d8:e8:d4:8c:74:af:8b:3b:ab:fd:64:
b3:27:2b:18:c7:14:28:e8:35:f3:9f:45:56:d1:dc:
b5:5b:95:08:57:97:31:8c:1b:03:09:28:60:75:85:
eb:b2:81:78:16:cb:a4:26:2a:9a:4f:d9:2a:6d:1d:
db:4e:74:39:aa:17:65:08:f7:30:65:06:12:e6:2a:
ca:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0B:CB:4A:8D:4B:84:BE:B2:AA:75:27:E2:75:2D:32:8C:1A:33:4A
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:15::/48
Signature Algorithm: sha256WithRSAEncryption
73:64:24:97:50:a1:4b:9c:18:58:e6:0f:d2:4c:9a:c7:fe:c0:
6c:28:22:67:67:05:08:72:3b:d9:d1:c2:54:9c:c4:dd:56:c6:
30:cd:f4:3f:07:d9:d0:78:bb:07:a0:46:6f:86:af:1e:77:af:
72:0d:ac:0e:3f:c6:5e:c7:39:f3:b3:03:52:d1:1a:f8:6f:51:
02:40:b0:f3:bf:8d:7c:ca:0a:cf:2e:35:cd:b2:fc:41:e9:f2:
ca:1f:9c:55:ee:77:85:bf:ec:18:91:34:d0:48:42:05:3e:10:
98:96:8f:75:2d:d2:88:38:8d:e5:c5:80:ed:83:00:49:d4:db:
69:4b:a1:d2:7d:4f:90:0d:3b:8e:c7:16:53:12:eb:a7:16:bc:
aa:53:7d:9f:bb:42:7f:ff:19:26:58:1a:cc:3c:d0:24:ef:6d:
d7:be:a7:27:21:af:d4:a4:20:7a:68:36:32:76:6e:27:6d:8f:
53:b2:fc:50:6a:6c:b3:c6:bf:4f:48:e6:37:49:8d:c8:06:74:
f4:ba:1c:a3:ad:4d:83:63:eb:8b:f1:ef:78:c4:b5:8d:89:0b:
d7:0b:f7:56:ac:ab:f0:5e:a5:de:a4:13:ae:78:bc:7b:12:84:
69:59:43:69:a8:06:c3:e2:a6:43:ce:09:c4:ba:fb:8a:f0:c1:
5f:fd:52:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:31 2025 by rpki-client