Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: 4nBA3YaZnATerlJ2kMzhYwdJp+73Lyx4bC7Z9qLmbJY=
Subject key identifier: F4:F8:3F:3A:0C:9C:C2:5A:B6:57:D3:0A:FA:E1:18:9E:76:48:9D:34
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 0DDB38CE5C11A8AD06653CEA9F1231A474DE7E3D
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:02 +0000
ROA not before: Fri 29 Nov 2024 04:55:02 +0000
ROA not after: Fri 28 Nov 2025 05:00:02 +0000
asID: 58552
IP address blocks: 2404:fd00:17::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:db:38:ce:5c:11:a8:ad:06:65:3c:ea:9f:12:31:a4:74:de:7e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:02 2024 GMT
Not After : Nov 28 05:00:02 2025 GMT
Subject: CN=F4F83F3A0C9CC25AB657D30AFAE1189E76489D34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3e:99:28:c8:19:9d:87:bb:11:63:c5:b7:24:
08:fd:2a:97:89:31:6b:8d:70:da:da:a3:ea:e4:fa:
4d:2f:21:16:b3:30:65:34:40:85:02:9e:71:b1:1a:
ee:0b:5b:be:88:76:f0:fb:34:fb:21:da:c3:b7:c5:
05:92:5b:f6:07:d9:3c:52:f0:8f:97:03:e8:a7:61:
28:f9:bb:fa:2a:5e:e5:11:a6:ae:4e:6d:0a:cd:64:
37:67:04:3e:e6:11:48:af:d6:f4:67:a5:71:5d:5f:
e7:cf:1a:97:a6:c1:a8:03:60:22:1c:5b:d4:a7:27:
d3:f3:ae:58:1d:b7:a2:59:4a:61:b4:86:01:db:aa:
b2:75:2b:5f:73:44:35:1b:1d:e0:8d:9a:7e:1d:97:
e0:55:93:21:34:47:f4:88:fa:8a:08:ad:d8:50:90:
7e:30:93:17:97:b8:9f:61:65:5b:f1:cc:d3:63:25:
d9:33:10:e9:d4:6c:47:62:b7:54:83:7e:ba:b8:1a:
9c:2c:a6:39:e9:f0:43:51:4f:a0:ff:f6:61:0a:40:
5e:fb:ce:06:83:54:af:db:4f:11:d6:b5:95:e2:c4:
53:96:25:f7:b3:be:b4:8d:2b:c3:c6:3f:96:70:88:
ba:fa:7a:c8:78:ba:02:19:e2:dc:bf:4d:b4:e4:fb:
52:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F8:3F:3A:0C:9C:C2:5A:B6:57:D3:0A:FA:E1:18:9E:76:48:9D:34
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:17::/48
Signature Algorithm: sha256WithRSAEncryption
04:ee:e2:96:c7:29:7a:40:ec:28:d8:37:6f:3f:0e:64:d4:2b:
c3:c3:89:92:8c:f5:26:0c:61:24:28:0d:bb:ce:c0:ac:7e:cb:
a1:6b:f0:05:75:42:12:38:f3:96:cd:c4:4d:c9:b0:0e:50:6d:
e9:dd:7b:17:77:9a:3d:1c:fd:18:a0:a7:90:11:03:82:18:bd:
22:4b:9e:1f:a1:ac:ed:f0:9d:72:5c:25:7e:60:9b:74:51:fd:
a0:4f:44:29:17:65:b0:a5:b4:9b:83:25:87:ae:dc:7f:de:53:
cf:64:2e:34:f6:7e:37:57:38:ff:c7:94:f5:57:c8:60:9f:70:
60:ff:df:ed:33:7a:d7:05:7a:f9:ea:c6:e0:c5:6f:fb:ab:3e:
ef:c3:98:e1:e2:c9:8c:e4:16:27:f3:a8:89:c0:e8:6a:1e:1e:
bc:14:fc:7b:de:b8:ca:09:66:a8:da:30:61:3b:50:f0:38:b8:
6c:8a:8b:26:17:00:d5:f8:b6:d8:21:28:ae:4a:82:9b:2b:d6:
07:4f:8d:88:18:65:8a:e1:e5:88:ee:ca:eb:4a:98:d2:c5:18:
7c:64:80:21:d4:e2:66:65:8c:9f:01:9c:e1:a0:66:5e:cc:dc:
1a:9f:6c:00:df:2a:2b:33:6d:74:5e:ca:a8:87:ac:ee:f6:23:
74:dc:10:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:24:08 2025 by rpki-client