Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa
File: 323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa (raw, json)
Hash identifier: gRZgEufaXrUpiJk5Hk7CLsepE23VJqR81rkBR72VWdI=
Subject key identifier: 5A:50:99:33:02:56:57:EA:75:F5:9A:32:E7:68:7C:F4:6E:F4:15:28
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 7A1783BC39216661ADAA8F751AA149EE1EBB004E
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa
Signing time: Fri 29 Nov 2024 05:00:02 +0000
ROA not before: Fri 29 Nov 2024 04:55:02 +0000
ROA not after: Fri 28 Nov 2025 05:00:02 +0000
asID: 56246
IP address blocks: 2404:fd00:23::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:17:83:bc:39:21:66:61:ad:aa:8f:75:1a:a1:49:ee:1e:bb:00:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:02 2024 GMT
Not After : Nov 28 05:00:02 2025 GMT
Subject: CN=5A509933025657EA75F59A32E7687CF46EF41528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:71:02:62:15:66:36:c5:66:9e:9d:e9:7d:11:
15:3a:3e:47:ad:08:4f:fa:39:f0:c8:0f:c0:37:95:
c0:fd:53:91:f0:e3:b8:96:1c:78:89:c1:2b:a3:77:
b0:98:9e:6f:b8:1a:f9:4c:8a:56:33:0b:41:5c:6f:
e6:31:36:65:a0:9c:6e:a4:c3:04:5b:39:24:03:0d:
72:54:fb:e0:f3:8f:3c:51:7a:e2:4b:fe:ea:17:c2:
af:ab:28:7e:72:fc:f0:bb:3b:2d:83:8d:d6:7d:7f:
66:b3:0d:ca:c0:48:26:03:b6:33:e6:ea:a0:0d:16:
4a:f4:43:c7:4e:c7:87:cc:7e:e2:19:a8:85:1c:9d:
f0:29:27:3d:fd:f6:7e:f2:94:c6:7c:a6:c6:e6:5a:
94:14:e8:bf:d4:be:f4:17:37:8c:6e:0a:bc:aa:3f:
d8:6b:26:2b:ad:7e:0a:e2:aa:8d:17:3f:88:25:83:
45:c7:d3:c8:43:09:7e:c4:46:44:3d:53:99:81:58:
78:53:4f:67:b3:21:4a:d3:85:8d:14:a6:bc:7e:d4:
93:85:50:27:75:c6:1e:f1:68:a3:fe:73:be:4d:62:
b9:4c:a0:88:cc:73:c7:03:d1:84:39:55:6a:44:9e:
96:14:45:b6:63:c8:7e:f1:19:3b:3f:d0:c8:62:a8:
4c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:50:99:33:02:56:57:EA:75:F5:9A:32:E7:68:7C:F4:6E:F4:15:28
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:23::/48
Signature Algorithm: sha256WithRSAEncryption
0c:49:51:65:1f:1f:08:b4:fe:2d:db:02:54:7f:c7:39:40:e3:
92:44:70:f2:aa:bb:44:76:30:bc:f8:7d:28:51:23:a3:6e:eb:
8a:24:fb:ae:ae:07:7b:ad:53:fd:fb:66:16:9f:ad:c1:42:a8:
23:2d:18:62:41:4f:1b:96:63:dc:6e:1c:39:20:97:79:d1:b4:
e1:4b:3e:65:e8:b6:6b:6e:e7:d0:f0:a2:47:03:05:dc:16:fd:
28:ab:82:e2:60:1d:ed:8b:c8:2d:6b:17:89:3e:fa:57:83:57:
4e:81:8c:55:06:51:c5:86:05:fa:e5:54:a2:2f:eb:27:32:3d:
ad:27:d7:aa:88:2b:b0:67:41:c8:08:f3:4a:e0:41:29:c4:2e:
ed:7e:d4:ce:02:8f:26:de:a5:37:a3:8b:fa:ce:45:59:c2:c8:
b9:61:02:19:75:8a:c1:08:c2:6e:b7:d6:d8:cf:e9:b1:41:66:
d7:48:0c:43:f3:9c:41:53:2d:45:66:32:a3:e6:cc:b3:da:d9:
e0:ff:a2:09:d6:d6:ac:96:65:cd:52:c8:6f:84:8b:99:9a:9d:
ef:0b:22:0e:40:e1:d7:3c:e0:5e:47:6d:0a:44:e0:a3:29:d7:
a4:75:e2:82:59:11:0d:cb:dd:2e:6e:48:ab:63:0a:10:11:87:
35:8e:d7:83
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUeheDvDkhZmGtqo91GqFJ7h67AE4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF
NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDJaFw0yNTExMjgwNTAwMDJaMDMxMTAvBgNV
BAMTKDVBNTA5OTMzMDI1NjU3RUE3NUY1OUEzMkU3Njg3Q0Y0NkVGNDE1MjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8cQJiFWY2xWaenel9ERU6Pket
CE/6OfDID8A3lcD9U5Hw47iWHHiJwSujd7CYnm+4GvlMilYzC0Fcb+YxNmWgnG6k
wwRbOSQDDXJU++DzjzxReuJL/uoXwq+rKH5y/PC7Oy2DjdZ9f2azDcrASCYDtjPm
6qANFkr0Q8dOx4fMfuIZqIUcnfApJz399n7ylMZ8psbmWpQU6L/UvvQXN4xuCryq
P9hrJiutfgriqo0XP4glg0XH08hDCX7ERkQ9U5mBWHhTT2ezIUrThY0Uprx+1JOF
UCd1xh7xaKP+c75NYrlMoIjMc8cD0YQ5VWpEnpYURbZjyH7xGTs/0MhiqEzXAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUWlCZMwJWV+p19Zoy52h89G70FSgwHwYDVR0j
BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx
NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1
RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05
NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACMw
DQYJKoZIhvcNAQELBQADggEBAAxJUWUfHwi0/i3bAlR/xzlA45JEcPKqu0R2MLz4
fShRI6Nu64ok+66uB3utU/37ZhafrcFCqCMtGGJBTxuWY9xuHDkgl3nRtOFLPmXo
tmtu59DwokcDBdwW/SirguJgHe2LyC1rF4k++leDV06BjFUGUcWGBfrlVKIv6ycy
Pa0n16qIK7BnQcgI80rgQSnELu1+1M4CjybepTeji/rORVnCyLlhAhl1isEIwm63
1tjP6bFBZtdIDEPznEFTLUVmMqPmzLPa2eD/ognW1qyWZc1SyG+Ei5mane8LIg5A
4dc84F5HbQpE4KMp16R14oJZEQ3L3S5uSKtjChARhzWO14M=
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:15 2025 by rpki-client