Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: ni8L439fzqV9qxzuGKom3m2QiNYcQuwa7QxSJi54L3Y=
Subject key identifier: 00:92:8F:01:7B:96:FB:E4:A3:5E:C2:74:4A:F7:95:3D:FC:38:11:31
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 58A11BD11AF51305902154F5A8EF76606CE64FBA
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:03 +0000
ROA not before: Fri 29 Nov 2024 04:55:03 +0000
ROA not after: Fri 28 Nov 2025 05:00:03 +0000
asID: 58552
IP address blocks: 2404:fd00:18::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:a1:1b:d1:1a:f5:13:05:90:21:54:f5:a8:ef:76:60:6c:e6:4f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:03 2024 GMT
Not After : Nov 28 05:00:03 2025 GMT
Subject: CN=00928F017B96FBE4A35EC2744AF7953DFC381131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:4b:c3:b8:6d:69:6e:3e:d4:20:b7:7a:c4:
57:c9:20:94:52:b0:bb:78:a3:1a:33:f3:57:7d:62:
65:9f:06:04:d5:00:73:cb:16:89:04:da:d7:ea:a3:
f8:f5:ae:0d:cf:55:9f:3e:59:04:bf:22:58:cc:65:
d7:d9:0c:16:93:4c:3f:46:de:d5:30:54:5d:43:9d:
fe:d7:62:58:e2:be:f9:d6:3c:4b:02:d6:c4:ee:c3:
ad:bc:27:2e:19:95:d0:33:ed:e7:a2:23:ab:3a:2f:
f9:a4:5a:c6:d1:a5:2b:7e:8a:27:eb:72:bd:f5:f8:
4f:08:32:df:1c:58:98:bf:bc:fc:fe:c4:14:1e:5b:
d0:af:e7:72:50:b9:13:89:b3:5e:5b:4b:42:33:4f:
50:3f:bd:a2:aa:7a:93:12:30:ae:54:8d:86:99:62:
d7:67:a5:b9:d2:07:26:bc:2b:05:18:89:89:8e:21:
b1:ed:e2:2d:49:b1:53:88:4f:51:9e:e0:94:bf:0f:
73:bb:8d:95:7e:07:53:1a:8b:22:56:3d:21:29:de:
9b:10:63:bd:95:ae:e8:b2:79:98:8c:ef:40:39:34:
49:a8:43:2c:3a:70:ec:15:e8:22:ab:2b:21:9c:3f:
6f:ae:11:ca:8f:75:de:99:2e:a3:e9:64:4f:7c:fb:
1d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:92:8F:01:7B:96:FB:E4:A3:5E:C2:74:4A:F7:95:3D:FC:38:11:31
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:18::/48
Signature Algorithm: sha256WithRSAEncryption
bc:40:15:f7:c3:f8:13:7a:b9:70:35:70:cf:1f:72:dc:4c:a1:
cf:4d:b8:ab:de:a2:15:75:8f:20:99:75:f9:a3:98:b4:37:da:
83:48:d3:cc:2b:29:74:4d:02:53:1f:c0:e1:20:9a:66:a7:91:
d7:33:59:3e:1d:79:3d:3f:a8:8f:71:87:63:5a:1f:cc:6b:85:
b1:c3:75:6a:88:12:79:bb:7e:70:55:69:06:f5:a3:fe:ed:b7:
5c:df:a9:f9:7b:0e:b8:01:55:4e:ce:29:bf:27:f5:ae:f5:d2:
7d:2d:9d:d8:12:a6:cc:5d:22:e4:15:54:c6:e1:71:80:12:95:
6a:f1:5d:f2:ba:0b:70:36:af:9d:0e:1b:df:37:07:3a:a0:b6:
de:b7:30:a6:c6:56:2e:0f:5b:4c:35:6f:57:2c:6d:3c:e8:64:
7f:49:d6:45:bd:c9:56:b2:94:0c:9f:23:57:a0:a0:f7:e7:8f:
46:de:3b:31:6b:7f:67:e5:8e:5a:33:c7:99:c1:75:24:1e:ef:
ff:62:0e:60:ec:1f:36:c5:26:c9:40:df:16:d2:9f:42:85:79:
43:c2:c4:5e:ef:5c:df:b4:88:c0:ef:28:52:9d:d1:76:9c:14:
3f:78:b3:04:14:4a:98:8f:ce:00:06:71:25:b2:1b:0a:04:10:
b6:b3:52:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:25 2025 by rpki-client