Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: GIaMgsIcL8D/k4h2azExBzLfgNAF9PBMrMEtJia5KA0=
Subject key identifier: 30:FD:D4:64:C8:47:79:E5:5B:2F:F7:2C:BD:9D:6D:B4:6D:D3:A0:72
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 532EC942DA239514E0AC0439EAC73E56E43E20AC
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:03 +0000
ROA not before: Fri 29 Nov 2024 04:55:03 +0000
ROA not after: Fri 28 Nov 2025 05:00:03 +0000
asID: 58552
IP address blocks: 2404:fd00:1b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:2e:c9:42:da:23:95:14:e0:ac:04:39:ea:c7:3e:56:e4:3e:20:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:03 2024 GMT
Not After : Nov 28 05:00:03 2025 GMT
Subject: CN=30FDD464C84779E55B2FF72CBD9D6DB46DD3A072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ae:2d:15:91:04:7a:8a:70:d7:18:f4:d8:ca:
6b:87:af:5d:a1:1c:ab:d3:c9:9e:4a:67:b8:04:e3:
b1:1b:ee:16:11:59:b3:60:ce:5d:d1:cc:26:59:43:
35:8b:75:52:99:01:c7:bf:91:2d:cd:76:80:dd:54:
aa:0a:d4:ef:88:f9:1f:d0:c0:57:df:16:e3:76:d3:
8f:6a:16:17:f1:bf:dd:2a:70:24:36:14:9f:2c:76:
eb:9c:39:d4:dc:93:cb:d1:75:6a:ec:65:e4:fa:ca:
ff:e1:1a:4f:51:51:24:4a:56:24:b4:5c:93:ca:b2:
01:a3:00:6e:d1:92:36:83:f1:53:18:26:5f:74:1a:
d1:ab:8a:5f:e1:0a:bd:e0:be:ab:45:bc:00:12:86:
6e:5f:f7:e9:5d:8b:08:43:4c:4f:d0:dd:99:2e:8f:
59:d8:db:88:49:c1:87:44:d3:cd:21:b1:aa:cb:51:
ac:a3:89:c1:25:dd:0b:23:81:03:fa:f0:90:72:89:
f0:8f:2f:2a:fe:79:33:89:86:5d:e4:a4:e7:e0:f1:
62:1e:27:e0:40:90:d3:dc:8a:f0:fe:5f:17:9e:f5:
18:ae:c7:60:e8:54:8c:eb:d2:69:35:22:08:52:2d:
bb:2a:ef:5e:04:29:35:3a:33:d0:99:06:f7:04:35:
a7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FD:D4:64:C8:47:79:E5:5B:2F:F7:2C:BD:9D:6D:B4:6D:D3:A0:72
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:1b::/48
Signature Algorithm: sha256WithRSAEncryption
11:d5:b1:e1:fe:57:9e:6f:80:67:77:6e:e3:d0:5e:62:b3:78:
a6:b8:48:3f:a7:82:22:ba:7b:85:27:8d:21:da:42:9d:28:f3:
dc:27:95:b2:da:c5:c9:50:ae:15:9b:43:2f:71:a7:a1:81:9b:
a6:2b:c1:fd:b3:c8:39:ac:cd:4c:ab:66:00:eb:1a:76:47:a0:
7e:ba:34:db:9c:51:23:93:55:a0:be:45:cc:13:d4:a3:3b:3d:
c1:aa:d5:48:cf:81:9a:69:71:43:dc:3f:19:17:32:4e:e3:68:
45:08:ca:26:2e:da:a3:5c:6e:68:69:17:a9:55:a0:03:30:24:
6f:5b:66:7f:5a:1c:80:7e:15:99:22:40:c3:c2:65:55:66:dd:
5b:27:32:30:a4:18:0f:46:0a:3a:4d:93:e2:6c:db:82:a3:f4:
f6:f0:71:cc:23:b5:c0:4c:8e:b8:3f:a2:bd:97:5b:fe:68:35:
39:1f:f7:a0:0d:c4:de:6c:d8:05:51:a7:c4:95:75:d5:db:ec:
60:0d:6b:0e:f9:e4:7e:39:ed:47:8d:5b:13:a1:0d:0f:f0:0b:
67:7c:41:dc:d3:76:98:a3:c5:1a:9c:d2:a6:b5:96:19:72:72:
c3:a8:81:9b:ac:15:d2:84:0d:90:e7:3e:23:67:de:ac:c3:cf:
95:c3:4f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:30 2025 by rpki-client