Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa
File: 323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa (raw, json)
Hash identifier: Ru2YfnEYHrO5oY9ehbK6M2QgKPBFQ+Lrm6YUIl8ZWdk=
Subject key identifier: A1:F7:74:4B:01:98:50:4B:F5:90:F2:2E:BD:35:71:E4:EF:4D:33:C1
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 0871D47A337DE47763D918A528EFB32879A70002
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa
Signing time: Mon 07 Oct 2024 03:34:14 +0000
ROA not before: Mon 07 Oct 2024 03:29:14 +0000
ROA not after: Mon 06 Oct 2025 03:34:14 +0000
asID: 56246
IP address blocks: 2404:fd00:e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:71:d4:7a:33:7d:e4:77:63:d9:18:a5:28:ef:b3:28:79:a7:00:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Oct 7 03:29:14 2024 GMT
Not After : Oct 6 03:34:14 2025 GMT
Subject: CN=A1F7744B0198504BF590F22EBD3571E4EF4D33C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ce:3d:7f:2a:0f:ec:40:d1:47:b4:ea:78:e4:
45:2a:1b:75:e4:2c:62:d9:12:ed:b9:e2:b8:08:9a:
a4:e7:f4:df:b3:58:8d:ed:f9:10:80:c8:3c:60:37:
8d:4f:70:5f:e7:96:c5:b8:e0:c0:5e:21:a9:08:82:
00:68:75:95:38:5f:aa:d0:a4:1a:65:58:fe:0b:ef:
57:6c:aa:e5:39:3e:12:c4:6a:cd:55:bd:5d:90:bc:
2a:ce:83:3b:68:00:2a:33:a4:e3:cb:39:c1:78:1e:
5a:e0:4f:a4:ab:8e:79:28:69:3f:4d:68:5e:42:5d:
dd:1e:b7:55:b6:0d:65:09:b6:a4:5f:65:ba:16:62:
6b:cd:f9:16:f5:81:b8:36:0f:9d:23:f5:52:49:33:
98:9c:5a:6f:e2:37:56:eb:8c:ad:46:fd:a4:8c:0a:
14:75:11:70:4d:a0:f9:46:db:fa:f3:82:49:52:8e:
95:14:07:66:65:5b:71:a7:43:98:c7:e1:8b:a4:e6:
23:e0:6f:88:b3:df:d1:fc:17:3e:31:aa:f7:0c:5c:
24:2e:1c:4b:f2:29:cf:ef:ab:5d:0b:95:ec:b7:0c:
6a:6b:58:a9:4f:1e:ee:25:df:9c:fe:bd:a2:d1:6f:
45:4a:30:bb:75:1c:e2:83:c3:d2:a8:ee:d3:bf:e8:
af:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F7:74:4B:01:98:50:4B:F5:90:F2:2E:BD:35:71:E4:EF:4D:33:C1
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:fd00:e::/48
Signature Algorithm: sha256WithRSAEncryption
06:cb:8c:1e:d3:2a:b3:2f:a7:e2:7b:cc:f1:8f:a6:0c:7d:6d:
74:e2:fe:e1:ce:ac:4f:9a:0e:a5:8e:8f:91:83:61:8a:92:22:
74:53:ee:2f:3a:65:bb:a2:e1:27:7b:1b:ed:d6:b6:94:c6:ec:
6a:da:a4:fc:e2:a5:20:52:00:33:ff:31:08:70:de:4f:ab:a2:
b3:99:0d:4c:47:0a:df:a4:34:ff:fc:2f:ed:3d:f1:d4:c5:52:
56:f2:89:46:b7:b8:18:51:d0:0e:60:88:71:52:5f:e2:8e:32:
b9:23:d9:92:4e:52:4b:b1:9e:ad:19:d6:7f:ac:6d:ff:83:85:
db:b3:e6:ac:9c:55:99:7d:79:34:11:8c:a5:56:22:c8:9f:ea:
4f:6a:d4:78:10:d0:04:32:6f:b4:2b:7a:1f:9e:b3:08:19:0c:
f2:ca:85:c4:40:bf:52:1d:de:f2:f4:9b:40:82:a1:fc:f1:a7:
eb:b1:19:18:29:4c:fd:09:9f:31:6d:0e:e8:6a:8e:43:e8:25:
69:f1:7c:ae:d3:70:62:0c:28:ec:a9:0a:26:a5:3f:19:1b:02:
90:0c:99:73:e1:f0:18:c8:9e:f7:e0:c7:77:63:89:66:fe:df:
6f:5c:bb:50:23:0d:fc:99:b9:51:02:cb:f3:ab:54:cc:8c:8f:
92:f2:f3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:32 2025 by rpki-client