Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: tvESeiO/FkhkGr5QGYYNc9W9X2RGp+TpHIHNR7HaBUU=
Subject key identifier: 1C:AF:B6:52:A9:B7:4A:7E:04:20:0D:BD:CE:BC:87:95:C6:42:2C:AA
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 05FE3B036307D1E9ED87920FD6894CE8817D061F
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:01 +0000
ROA not before: Fri 29 Nov 2024 04:55:01 +0000
ROA not after: Fri 28 Nov 2025 05:00:01 +0000
asID: 58552
IP address blocks: 2404:fd00:16::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:fe:3b:03:63:07:d1:e9:ed:87:92:0f:d6:89:4c:e8:81:7d:06:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:01 2024 GMT
Not After : Nov 28 05:00:01 2025 GMT
Subject: CN=1CAFB652A9B74A7E04200DBDCEBC8795C6422CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:29:5a:25:38:37:58:82:d9:a5:79:6c:81:12:
87:2f:6a:1f:d4:75:26:01:0d:b7:4b:5b:fe:34:09:
90:0b:63:8e:20:56:90:09:11:78:58:1c:bf:75:c4:
fb:2d:84:4c:5a:97:f0:f2:16:12:10:35:1f:70:d1:
cb:2a:7b:e5:35:68:8a:94:88:d9:e6:95:23:54:28:
9d:5c:3a:ab:07:d7:19:86:87:70:28:a5:03:c8:85:
e4:76:36:d9:39:61:cf:62:13:f5:16:00:19:8b:f5:
65:d0:56:3d:2f:60:51:74:d1:d0:33:73:b5:8c:c5:
36:09:e3:71:45:53:35:86:a4:5d:ee:13:9e:42:f0:
1a:f1:fc:77:2b:d2:72:f0:cd:35:72:19:64:21:d4:
70:79:c2:49:57:33:20:e2:20:03:a2:bc:ca:bc:97:
a0:47:16:fd:5d:ec:86:dd:5c:68:42:0c:1f:8a:04:
34:41:35:71:aa:79:67:e7:a1:39:b3:7e:ba:a9:63:
33:85:2d:db:06:80:d9:71:7a:52:bc:54:5e:98:9d:
f3:6f:b4:92:86:e6:26:20:dc:90:70:05:b9:82:4d:
03:c2:0d:ba:60:93:ca:2f:30:35:83:7f:91:23:b8:
7c:6f:6d:26:6d:22:b7:5f:9c:15:6d:c7:57:da:00:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AF:B6:52:A9:B7:4A:7E:04:20:0D:BD:CE:BC:87:95:C6:42:2C:AA
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:16::/48
Signature Algorithm: sha256WithRSAEncryption
5c:bd:8e:3e:a9:b6:d8:d2:e0:40:ad:3e:07:82:7a:60:f5:d5:
16:05:2c:5a:03:1f:8e:37:bb:ca:22:87:e2:24:c6:94:53:8c:
ef:d9:6f:67:38:4b:f1:c8:8a:ab:ff:54:8e:55:a1:97:8b:4b:
79:a3:80:6a:4c:b7:b2:ef:ee:c7:d9:a7:19:2f:9b:4b:80:0d:
31:22:1c:82:4c:a8:ac:90:57:f6:f2:64:37:82:ad:46:10:b3:
3c:6c:30:03:1d:6a:fc:32:72:5b:3b:9f:3e:77:40:cc:e9:69:
93:1a:44:ce:b5:e7:95:3d:be:79:2f:33:97:7e:48:79:19:ce:
80:68:9e:d8:05:18:f0:0e:a5:fa:99:7a:48:16:30:58:c0:d4:
ae:bf:35:31:68:10:48:15:d1:18:84:6b:d6:5c:04:f4:39:fb:
58:1d:5b:0b:84:ab:9d:7a:77:a4:85:b5:11:97:14:8e:8f:0d:
f9:57:e7:2f:98:ca:fb:1d:a1:3b:09:d9:1d:9d:32:d2:4d:8c:
a1:de:3c:e7:24:f0:e2:4c:b5:1e:e5:57:d6:3c:d6:83:dc:6b:
c1:e8:3c:4c:ce:8c:0d:14:d7:54:7f:8f:79:61:eb:08:04:0f:
4e:00:9c:eb:dc:81:5d:c3:74:94:41:af:65:88:5d:1a:a8:b7:
69:6a:6c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:43 2025 by rpki-client