Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa
File: 323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa (raw, json)
Hash identifier: S2RI7IMDLK1Vqmj+QPBe0ZUjCTXRnnAcmJWI3zVNGkk=
Subject key identifier: B3:44:AF:6C:45:24:47:FB:5E:41:F7:E7:B0:4C:10:21:36:32:AE:04
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 6046A95187DB9EE6AA1E589D40911413312310CF
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa
Signing time: Fri 29 Nov 2024 05:00:03 +0000
ROA not before: Fri 29 Nov 2024 04:55:03 +0000
ROA not after: Fri 28 Nov 2025 05:00:03 +0000
asID: 56246
IP address blocks: 2404:fd00:1e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:46:a9:51:87:db:9e:e6:aa:1e:58:9d:40:91:14:13:31:23:10:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:03 2024 GMT
Not After : Nov 28 05:00:03 2025 GMT
Subject: CN=B344AF6C452447FB5E41F7E7B04C10213632AE04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9f:ab:2d:9e:99:6c:d3:53:20:17:c9:ad:c7:
e2:16:8b:75:59:06:33:7b:55:fd:eb:01:ac:8a:0a:
07:d0:bd:19:22:3e:a0:25:f5:b3:f0:8e:13:e5:f2:
30:66:c4:b0:cf:5c:b4:f4:d2:2a:0e:3f:dd:b0:93:
75:0a:ce:f7:65:18:a6:a6:40:6a:7f:5c:7f:e4:7e:
aa:74:34:81:97:21:8f:71:4a:89:24:61:3d:b6:67:
63:9e:bf:50:2c:84:80:1b:86:16:3d:3a:19:1b:94:
00:45:c0:6a:17:eb:e5:b4:0c:81:41:75:a3:8a:d6:
94:11:a9:fa:f4:bc:2a:89:8a:f3:92:cf:d6:be:1c:
70:1d:51:ae:3b:23:d9:e6:f6:36:52:1c:74:1f:01:
9d:94:fc:57:5d:cd:e7:e0:75:7d:a2:ba:dc:a1:db:
d8:cc:2c:c5:18:c4:a9:c0:21:82:63:f3:20:c8:6e:
e3:48:67:40:f9:fc:f2:a6:4f:ac:18:b7:6e:cc:cc:
a4:a3:9b:06:28:8e:eb:7c:b6:28:0e:e5:b0:86:01:
63:ec:11:f1:60:e4:a6:63:52:55:03:0a:59:3e:7c:
c2:6a:2b:56:1e:0f:c6:b1:23:6c:3c:1c:2b:fd:cb:
52:dc:c2:f6:7d:a2:d9:54:f6:fd:e1:61:05:4e:59:
18:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:44:AF:6C:45:24:47:FB:5E:41:F7:E7:B0:4C:10:21:36:32:AE:04
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:1e::/48
Signature Algorithm: sha256WithRSAEncryption
5d:30:5b:be:50:9f:54:35:f3:59:ba:67:e3:ae:2a:cf:42:f9:
f5:d4:5f:07:b1:8f:a7:3b:49:01:7c:57:85:9a:ec:cf:86:d2:
1e:c9:30:21:a2:a0:ee:e8:af:e3:e7:af:5a:02:a3:da:be:c2:
1d:9d:80:06:87:3b:87:39:71:e0:87:1c:5d:66:b1:db:24:15:
e0:c7:a3:d8:1b:cd:b0:95:5b:d4:ee:73:d2:cc:8e:e9:a5:fb:
39:1f:21:8d:71:56:a6:43:4a:7d:40:81:09:b9:99:3d:4d:7b:
b9:69:36:3b:79:12:a0:92:fe:81:94:47:b3:c3:9d:ef:c7:70:
0d:c2:61:10:b6:46:7e:ea:ec:fc:85:6d:41:63:c4:d0:22:f4:
93:40:5f:11:26:4d:4e:c8:4d:4d:75:c2:2c:b6:4c:5e:53:56:
28:74:d9:b5:50:b5:82:2f:96:0a:d1:7a:dd:28:17:5c:fb:67:
dd:3a:cd:e8:c3:68:69:67:5f:70:0b:f9:16:72:c5:3e:2e:42:
31:2e:dd:cc:a8:71:1e:a5:07:de:8f:bd:5f:99:bb:fe:c4:cb:
ad:ae:f6:f3:5a:6d:87:30:ac:3f:30:fb:0d:0a:67:fb:14:67:
f2:97:aa:28:01:a2:2a:7c:e3:cb:4e:12:f0:5d:52:8e:26:5c:
9e:81:89:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:48 2025 by rpki-client