Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa
File: 323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa (raw, json)
Hash identifier: D1F19fLW8X6R16rpPehpffM19iSfXeyQZV5TFjj5U4I=
Subject key identifier: 99:EE:4E:D5:1F:01:B6:E4:EE:F5:05:4D:EB:51:4D:13:5F:02:40:E2
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 3E5B1959758DC13A63EA60DD885720B2DCAFDB90
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa
Signing time: Fri 29 Nov 2024 05:00:01 +0000
ROA not before: Fri 29 Nov 2024 04:55:01 +0000
ROA not after: Fri 28 Nov 2025 05:00:01 +0000
asID: 58552
IP address blocks: 2404:fd00:21::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:5b:19:59:75:8d:c1:3a:63:ea:60:dd:88:57:20:b2:dc:af:db:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:01 2024 GMT
Not After : Nov 28 05:00:01 2025 GMT
Subject: CN=99EE4ED51F01B6E4EEF5054DEB514D135F0240E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a3:d6:17:32:eb:05:a9:f5:83:b9:12:11:7a:
61:75:6c:1d:7d:14:d9:bb:dc:ec:f3:d9:ed:61:8e:
c6:06:be:7f:ad:d1:3b:ca:88:95:39:9a:95:3c:a0:
19:44:c6:a2:0a:bd:dd:20:0f:69:05:80:33:af:8e:
d8:61:61:bf:84:27:0f:28:de:b2:92:fb:43:f8:c0:
31:60:27:79:77:97:de:4f:35:46:c0:1e:90:6e:d6:
91:fb:41:b1:a8:ba:66:49:0c:00:4f:58:5c:83:59:
b4:e0:01:f8:38:95:1c:df:52:c7:78:db:49:08:b8:
04:e4:de:31:f5:d1:d1:56:98:68:ad:22:8c:d3:35:
da:89:6a:24:0d:8a:c7:ae:8a:56:69:97:be:f0:eb:
7b:96:57:97:5b:1a:9d:06:f5:a5:d2:b8:75:8e:53:
fd:72:3c:48:e3:e3:a2:9b:0c:11:07:0b:f4:be:63:
01:ca:31:5a:78:6e:ba:7b:49:33:60:76:5e:2f:61:
e5:ef:c3:8a:d6:58:d1:c5:5d:64:69:d1:be:f3:0f:
f0:ec:d2:15:44:dd:db:96:8b:cb:ba:f0:52:ff:b5:
96:89:d8:49:3d:37:0b:56:1a:f5:b1:37:6c:ae:06:
d0:9d:7b:25:ed:74:83:c9:04:e5:36:76:ad:5a:d7:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EE:4E:D5:1F:01:B6:E4:EE:F5:05:4D:EB:51:4D:13:5F:02:40:E2
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:21::/48
Signature Algorithm: sha256WithRSAEncryption
06:d9:6c:2f:61:69:d4:e7:fa:47:64:4a:4d:8c:36:9f:98:25:
61:6e:29:6a:bc:85:d7:61:89:b9:e7:14:ca:16:ee:9a:1a:20:
7c:d6:5e:15:66:0d:87:4e:27:1d:64:fc:ef:50:f8:c7:5b:0f:
53:96:f2:d8:41:50:fb:a9:7d:a8:06:59:25:bd:2d:82:04:40:
ea:c6:3a:25:5c:88:e1:7c:d2:7b:d6:68:aa:49:0d:61:ee:b6:
a4:8a:30:da:17:47:69:c9:9f:c4:04:3b:ec:75:81:17:7d:fe:
7e:8e:cd:bf:1a:e9:ca:4b:0a:7a:3d:58:c1:bc:bc:31:42:81:
0f:38:a3:84:25:de:99:6b:34:8b:6e:40:cc:c7:99:ab:33:8c:
10:83:09:09:0d:2c:80:b9:44:3f:7d:be:af:28:ca:c2:04:b6:
43:ba:e3:30:8f:28:81:df:dd:e1:18:68:c2:2a:50:42:39:06:
90:64:94:37:3c:85:cd:eb:5e:27:eb:23:7f:ed:b0:72:a5:4b:
e6:59:80:44:c6:cc:9b:76:a7:e1:4f:5f:9a:a4:eb:5a:cd:23:
33:89:d8:ea:e0:d6:5c:40:aa:2a:05:f7:c7:30:80:3c:88:2b:
0b:dd:ef:87:97:89:ab:0e:93:8d:84:5b:3a:23:bb:94:f5:7e:
1c:bc:7b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:37 2025 by rpki-client