Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa
File: 323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa (raw, json)
Hash identifier: o5YnaxlrJMKwytU2qP+eRQWs0HHxFfHeWF0aIEMfAoQ=
Subject key identifier: 0D:C5:93:66:86:14:11:75:F2:1C:28:68:15:FA:B5:5F:DB:37:5D:DB
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 595AB9C4433CCC58607D23E331A26EC41E098D09
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa
Signing time: Fri 29 Nov 2024 05:00:03 +0000
ROA not before: Fri 29 Nov 2024 04:55:03 +0000
ROA not after: Fri 28 Nov 2025 05:00:03 +0000
asID: 56246
IP address blocks: 2404:fd00:25::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:5a:b9:c4:43:3c:cc:58:60:7d:23:e3:31:a2:6e:c4:1e:09:8d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 29 04:55:03 2024 GMT
Not After : Nov 28 05:00:03 2025 GMT
Subject: CN=0DC5936686141175F21C286815FAB55FDB375DDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:78:36:c5:ff:d5:c9:76:23:2b:28:d7:a2:
92:51:cd:4e:40:9f:fb:60:a7:46:76:8a:0b:f3:6a:
19:35:12:3c:35:2e:b9:b0:29:d7:ce:2f:97:f4:6b:
1d:b5:ba:04:39:99:ee:de:7b:37:4f:58:31:f5:6b:
21:67:0f:c7:f1:e5:f3:37:4c:90:ee:89:c9:3a:d5:
ab:10:09:7f:26:63:d6:71:68:21:40:e5:a4:4e:d7:
a3:9f:2e:cc:43:76:30:98:ff:bb:0a:e0:4f:a9:ad:
98:04:84:7a:22:15:d0:07:c9:d7:6d:e7:3f:c9:02:
ca:41:3e:04:09:30:8d:9a:ef:ed:73:83:e5:55:2b:
ed:e1:42:97:22:4d:77:8a:61:75:90:b7:c1:87:2b:
e0:ed:b5:c4:b0:10:1a:ac:fa:3a:e9:12:ee:cc:6b:
0d:f4:33:13:ca:27:03:b0:45:66:79:12:9c:e8:41:
05:98:8b:e6:86:00:a0:6e:c6:0f:96:ea:3c:4e:6a:
82:f8:af:f5:0f:a2:e5:f6:39:62:cc:ae:43:c8:4a:
08:68:1f:91:e8:16:45:79:82:b6:b9:11:bf:f4:c7:
af:70:77:00:01:7f:e3:ed:ee:06:71:80:f3:f0:70:
3d:cc:b1:65:da:0e:20:f0:01:ee:2a:46:44:7b:29:
68:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C5:93:66:86:14:11:75:F2:1C:28:68:15:FA:B5:5F:DB:37:5D:DB
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:25::/48
Signature Algorithm: sha256WithRSAEncryption
a7:2a:9e:83:12:b2:b0:ce:eb:59:65:5a:11:03:ad:6c:de:d3:
43:f7:fb:73:7d:09:c6:8a:be:12:3d:12:82:24:f4:c9:62:30:
43:b8:cc:d4:fe:c0:af:90:90:a8:ae:39:dd:b4:bc:1d:a2:1b:
8c:b8:63:ec:9a:dc:70:de:70:a9:42:2a:34:85:76:50:31:72:
8c:1e:ab:ff:e2:8b:85:8d:96:fd:c5:3f:19:90:69:a7:5a:78:
0d:c7:56:da:c3:3f:a6:05:a0:36:87:40:14:68:88:ee:75:dc:
66:9e:b8:64:a2:7c:cc:61:2b:00:e2:ae:9d:14:17:4f:a2:6d:
05:a1:85:10:78:51:eb:7f:12:20:cb:bc:7d:4c:c2:31:4e:41:
3e:13:91:7f:51:c8:e3:ef:14:54:eb:29:40:12:10:75:e1:25:
52:15:c7:42:65:e2:c0:d4:5f:1a:21:1f:37:44:62:6d:3a:2f:
34:9a:65:98:2c:f5:08:b8:87:ef:61:49:c2:c0:40:43:6d:7f:
dc:b0:ed:1a:cf:5b:6c:50:8d:de:65:a9:87:1c:45:10:ab:38:
36:49:32:29:9b:74:7d:4b:89:a3:7e:b7:25:b9:38:fd:68:d9:
79:6d:9f:5e:92:86:9c:56:e3:12:cc:9a:ab:02:df:eb:b8:19:
19:46:4b:fb
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUWVq5xEM8zFhgfSPjMaJuxB4JjQkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF
NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDNaFw0yNTExMjgwNTAwMDNaMDMxMTAvBgNV
BAMTKDBEQzU5MzY2ODYxNDExNzVGMjFDMjg2ODE1RkFCNTVGREIzNzVEREIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxHg2xf/VyXYjKyjXopJRzU5A
n/tgp0Z2igvzahk1Ejw1LrmwKdfOL5f0ax21ugQ5me7eezdPWDH1ayFnD8fx5fM3
TJDuick61asQCX8mY9ZxaCFA5aRO16OfLsxDdjCY/7sK4E+prZgEhHoiFdAHyddt
5z/JAspBPgQJMI2a7+1zg+VVK+3hQpciTXeKYXWQt8GHK+DttcSwEBqs+jrpEu7M
aw30MxPKJwOwRWZ5EpzoQQWYi+aGAKBuxg+W6jxOaoL4r/UPouX2OWLMrkPISgho
H5HoFkV5gra5Eb/0x69wdwABf+Pt7gZxgPPwcD3MsWXaDiDwAe4qRkR7KWiJAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUDcWTZoYUEXXyHChoFfq1X9s3XdswHwYDVR0j
BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx
NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1
RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05
NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACUw
DQYJKoZIhvcNAQELBQADggEBAKcqnoMSsrDO61llWhEDrWze00P3+3N9CcaKvhI9
EoIk9MliMEO4zNT+wK+QkKiuOd20vB2iG4y4Y+ya3HDecKlCKjSFdlAxcoweq//i
i4WNlv3FPxmQaadaeA3HVtrDP6YFoDaHQBRoiO513GaeuGSifMxhKwDirp0UF0+i
bQWhhRB4Uet/EiDLvH1MwjFOQT4TkX9RyOPvFFTrKUASEHXhJVIVx0Jl4sDUXxoh
HzdEYm06LzSaZZgs9Qi4h+9hScLAQENtf9yw7RrPW2xQjd5lqYccRRCrODZJMimb
dH1LiaN+tyW5OP1o2Xltn16ShpxW4xLMmqsC3+u4GRlGS/s=
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:51 2025 by rpki-client