Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa
File: 323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa (raw, json)
Hash identifier: xSKb5M/VbyKhbN8JW27mPKjc+rtK2aW2T5jVOfcuoyc=
Subject key identifier: A8:05:BB:B6:15:80:9A:9E:89:65:6D:66:D7:BE:1A:86:39:FA:3B:7F
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 55E275D95D6D30905677C1A85A1809DFE85E05D7
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa
Signing time: Fri 29 Nov 2024 05:00:02 +0000
ROA not before: Fri 29 Nov 2024 04:55:02 +0000
ROA not after: Fri 28 Nov 2025 05:00:02 +0000
asID: 56246
IP address blocks: 2404:fd00:22::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:e2:75:d9:5d:6d:30:90:56:77:c1:a8:5a:18:09:df:e8:5e:05:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:02 2024 GMT
Not After : Nov 28 05:00:02 2025 GMT
Subject: CN=A805BBB615809A9E89656D66D7BE1A8639FA3B7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6f:d7:b2:0d:8b:89:c9:87:6a:c3:f0:8f:38:
c3:77:57:3e:08:6b:4c:4b:7a:d8:8f:19:56:13:f8:
93:40:87:7c:77:2f:f4:87:57:e7:20:e3:e1:d9:ef:
e0:be:14:dd:d9:51:9a:65:97:74:57:4c:4b:28:d9:
32:d8:24:3a:25:2d:c2:3c:b4:ba:53:92:2e:79:fb:
49:09:40:f8:6c:10:51:1b:f6:8f:df:0f:6c:de:63:
bd:1b:64:d0:a5:92:18:5e:35:fb:02:f6:80:50:db:
10:d7:c9:55:bf:7b:d4:5f:64:29:c0:9b:0a:ac:e6:
25:c1:44:a2:eb:cd:af:52:25:80:d3:04:0c:aa:c7:
16:d1:22:1a:20:f3:37:0b:51:8e:10:ce:ce:a3:1c:
d4:42:2f:28:95:1e:ae:b9:df:d4:46:89:ec:40:c3:
df:a5:3f:25:c5:28:6a:63:91:84:23:3c:8d:b4:0a:
ba:83:4c:68:0a:e2:d6:16:27:dd:c5:31:39:c3:b1:
5a:0d:d7:cf:d6:1b:02:ec:6a:69:09:7f:10:0c:60:
f9:74:8f:91:ff:96:cd:60:2f:cc:11:51:9b:17:44:
21:f5:38:f8:d2:36:f5:d8:ed:d0:2b:f2:60:ce:46:
e5:ad:4f:29:12:5c:5d:d5:6b:85:3e:7e:ca:54:84:
4b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:05:BB:B6:15:80:9A:9E:89:65:6D:66:D7:BE:1A:86:39:FA:3B:7F
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:22::/48
Signature Algorithm: sha256WithRSAEncryption
72:57:c5:1f:ad:f1:e2:64:7c:0c:d0:2f:0d:8c:5e:8e:33:e8:
7a:fd:f0:b8:af:78:9c:32:56:40:ee:9b:79:8a:35:66:d6:97:
32:64:1f:6d:e6:0d:8f:d1:43:85:c5:63:17:20:36:16:67:45:
56:6a:78:0d:e3:b9:d2:77:25:66:0e:25:27:53:04:0c:f7:09:
1e:d3:d1:fb:a0:0b:98:83:47:c9:3f:4a:a8:bb:57:2c:09:f8:
c6:5e:6d:e4:fe:87:f9:2c:4b:bd:f4:14:6c:47:69:d8:eb:54:
c6:53:90:63:ff:78:55:7d:df:fc:ed:70:93:ff:18:3b:e8:b1:
e5:e3:12:a9:9a:25:69:39:8f:fa:f9:56:18:7a:5f:57:9c:31:
17:24:51:fd:39:b8:1c:8a:aa:8f:f2:a9:19:48:cd:a2:5b:c8:
2d:42:37:ed:31:7c:34:45:89:44:4f:fa:f8:12:7e:b3:53:85:
a3:e5:48:cc:ff:d9:91:ef:b3:fe:9e:c7:a8:2c:d5:87:3e:85:
af:46:96:d1:ca:c0:88:00:3b:3e:52:24:98:0b:ca:74:ca:00:
c5:85:98:9c:e1:94:b1:79:8a:ea:97:19:13:73:26:2a:f7:93:
a7:54:36:2a:ff:9e:97:84:32:bf:a3:03:55:81:80:80:21:8e:
86:ab:13:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:08 2025 by rpki-client