Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: UbFjtC2wun6VYtNdokpdYv9YJngX479/YHAXxaJZaD4=
Subject key identifier: 9C:43:FA:DF:06:EA:85:90:B1:11:E6:CE:FA:51:50:7B:B6:12:4F:B0
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 7169BF7701552B965F2336D5228E9693D0B20B34
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:03 +0000
ROA not before: Fri 29 Nov 2024 04:55:03 +0000
ROA not after: Fri 28 Nov 2025 05:00:03 +0000
asID: 58552
IP address blocks: 2404:fd00:19::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:69:bf:77:01:55:2b:96:5f:23:36:d5:22:8e:96:93:d0:b2:0b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:03 2024 GMT
Not After : Nov 28 05:00:03 2025 GMT
Subject: CN=9C43FADF06EA8590B111E6CEFA51507BB6124FB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:24:29:31:72:cd:a2:3d:e6:af:df:92:ef:c9:
7d:ed:59:52:a9:ec:4c:78:14:44:4e:8d:dd:65:c1:
a0:24:ab:4a:1c:7d:2b:d4:d9:8b:41:be:87:98:07:
68:19:77:fb:ee:a0:ea:e3:40:52:94:b9:bd:03:ff:
d2:cc:5e:1e:97:e3:fa:60:1c:fd:a9:af:4d:c1:9c:
5d:5d:23:2b:6e:d9:ec:a8:e2:de:93:f6:d7:3f:09:
44:be:1d:7a:46:57:57:ba:db:57:5f:44:99:6a:4e:
e8:bd:fd:59:41:61:f7:10:2d:c4:fd:fd:fc:9a:79:
87:8f:e7:67:00:59:63:f5:8c:81:6a:eb:4f:e6:3a:
78:b0:20:66:0d:6f:7b:bc:da:35:d2:f7:d2:a2:92:
d5:5e:cb:dd:46:33:2a:2c:d6:d3:4b:c1:d7:e3:23:
bf:21:e6:84:d4:3e:00:56:4a:30:0c:b3:fa:9b:54:
aa:b7:0f:ff:d6:ec:75:34:fc:5d:55:5d:76:f1:75:
13:e4:95:00:7d:81:f0:6f:b6:1d:93:5d:8d:0c:e3:
90:ef:fc:d7:df:44:1b:dd:bf:3e:6d:86:4f:64:1f:
36:bb:a5:54:26:bd:d1:7f:47:9e:9f:00:bc:26:34:
50:ba:52:06:65:fe:6b:4e:80:5d:96:26:d8:e4:89:
67:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:43:FA:DF:06:EA:85:90:B1:11:E6:CE:FA:51:50:7B:B6:12:4F:B0
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:19::/48
Signature Algorithm: sha256WithRSAEncryption
5a:26:0d:59:47:bb:d2:47:b8:53:65:5f:e0:53:bc:ae:f0:5a:
b7:a2:ac:86:49:14:07:68:07:2d:4f:1f:8b:9c:f6:d5:5c:e8:
cf:9c:8e:b4:7b:38:7b:22:04:14:7e:39:64:38:ee:fc:99:f3:
f9:55:ba:45:f7:4a:b8:52:68:c2:f1:25:41:ac:ea:a1:e2:ca:
5c:18:3f:7f:e4:fb:dd:b8:65:42:09:94:a4:f0:24:e7:f9:66:
9e:19:21:5b:65:a1:66:63:ec:6e:02:d9:f8:b2:ba:8a:86:38:
8c:1f:82:35:94:5c:40:ca:48:d9:16:96:47:87:ec:5d:00:e0:
4b:d8:10:7e:7d:90:26:54:5f:cb:8f:f6:11:fb:36:cc:26:de:
7a:96:2a:77:6f:64:04:c7:58:8b:6b:34:c5:a5:f9:25:f3:65:
ad:56:aa:6e:53:c4:5b:46:cb:c3:e2:ed:67:db:d9:03:7a:ed:
fc:a8:4b:30:db:bf:92:6d:b6:ff:09:aa:b9:23:d2:6b:fc:c5:
58:92:dc:9b:60:f6:c7:a9:04:01:33:0b:85:a2:b5:0f:50:08:
30:3d:34:15:83:02:cd:1b:b9:8a:73:2a:cd:94:6a:0d:24:ac:
a2:02:8b:65:f9:83:15:a6:b5:3c:72:9a:0d:15:d6:5d:33:43:
f1:c4:08:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:24:00 2025 by rpki-client