Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: 2gxSIjMeVpeTOUk8lDGiv2rku1GJMzwluBMiPWTRxF4=
Subject key identifier: 05:D2:AA:E7:90:D2:65:91:7E:F8:D9:04:1F:33:8B:B2:35:A3:34:1A
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 0786D5E664B5BD9EA484CA7333C14F3A159A0DC6
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:01 +0000
ROA not before: Fri 29 Nov 2024 04:55:01 +0000
ROA not after: Fri 28 Nov 2025 05:00:01 +0000
asID: 58552
IP address blocks: 2404:fd00:1f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:86:d5:e6:64:b5:bd:9e:a4:84:ca:73:33:c1:4f:3a:15:9a:0d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:01 2024 GMT
Not After : Nov 28 05:00:01 2025 GMT
Subject: CN=05D2AAE790D265917EF8D9041F338BB235A3341A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d4:41:dc:c1:5c:d5:ba:11:5f:aa:d3:8e:a1:
a2:51:9e:06:88:44:98:23:c9:ff:cc:56:7e:81:e6:
41:83:ec:68:24:16:a9:9f:92:6d:48:c4:a1:95:90:
02:57:e3:78:0a:31:6c:a0:3c:83:9a:18:68:05:26:
3a:f4:ae:70:14:17:61:46:ab:27:97:ab:c9:1e:a2:
79:58:10:99:8f:b9:61:ca:e4:f4:6a:c9:0a:f2:fd:
40:1c:63:eb:29:a9:d2:d8:51:03:ac:62:d4:b7:59:
82:8f:7b:d8:0c:37:6e:25:5d:b4:5f:06:d9:65:58:
99:72:ba:52:5d:89:91:aa:cc:07:c0:4a:57:a3:ef:
5a:a2:38:59:29:98:bc:47:ba:27:4d:b7:df:e0:93:
b6:47:78:22:4f:e8:e0:d2:43:45:88:9b:59:d5:a4:
e9:92:de:18:76:89:26:5a:81:ff:d5:5d:60:87:2d:
61:42:79:42:f4:fe:09:f6:e9:a8:63:eb:f1:10:4c:
e9:d0:a4:de:9c:58:26:07:6d:78:e6:3f:8d:4d:4e:
f7:b7:66:fc:5c:76:a4:d9:cd:cc:cf:58:b6:e4:9e:
df:3e:17:47:01:18:34:2d:cd:25:48:ca:2a:3e:7b:
4a:92:cb:93:62:d5:86:56:93:17:5b:66:48:a0:c9:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D2:AA:E7:90:D2:65:91:7E:F8:D9:04:1F:33:8B:B2:35:A3:34:1A
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:1f::/48
Signature Algorithm: sha256WithRSAEncryption
8c:d8:c9:b8:1d:c0:a1:02:ae:3b:be:2f:b9:4e:ac:1b:39:a5:
e4:8b:c1:97:38:30:af:95:43:f9:4a:1a:a7:45:e9:ad:5b:b4:
3f:81:88:44:d4:8c:12:d6:8e:ca:32:03:29:d3:35:c3:19:13:
46:e3:04:7f:60:d0:23:ea:de:45:22:38:5f:d4:65:28:02:aa:
91:69:e6:5f:11:e2:5c:28:a9:50:d3:c4:f5:b0:b3:e6:4b:08:
db:06:1d:43:7f:0c:26:c5:05:a1:d7:f8:d7:52:e0:72:73:62:
dc:ea:a1:b3:b9:b5:1f:b7:23:2b:93:0b:f3:6a:9d:b2:d5:c1:
18:c3:5f:f9:6b:f5:0c:7d:9c:c2:49:2b:1d:33:e1:4b:ae:29:
d5:c9:1b:6a:b0:1b:4b:e4:d1:6e:99:3c:55:f6:64:25:af:8c:
14:54:b5:4a:7f:0f:aa:b8:85:39:67:de:5d:10:7a:24:1d:43:
b7:d1:2b:d9:55:b3:05:57:8b:de:46:11:e9:50:d9:76:d8:d9:
ec:5a:c1:e6:8a:05:99:1d:4d:25:f9:cf:9e:1d:a3:a3:e2:20:
54:9f:79:1b:4e:00:a4:eb:69:6b:95:50:24:e7:40:41:59:f2:
4f:af:92:45:10:f4:28:aa:f8:71:4e:82:34:41:c6:78:60:66:
ad:3d:ec:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:27 2025 by rpki-client