Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: MHQAAeFACeLLT+O6jmtuXnE+EfBPPs75RMbQZyCw8wc=
Subject key identifier: A6:50:93:AD:D1:50:F8:18:65:2E:27:0C:D7:C7:44:4F:5F:B1:96:E8
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 28AD35D8CA7D0BCB2C1BE8B240528BFAA1A4662F
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa
Signing time: Mon 03 Mar 2025 05:01:16 +0000
ROA not before: Mon 03 Mar 2025 04:56:16 +0000
ROA not after: Mon 02 Mar 2026 05:01:16 +0000
asID: 38526
IP address blocks: 2405:3740:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:ad:35:d8:ca:7d:0b:cb:2c:1b:e8:b2:40:52:8b:fa:a1:a4:66:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Mar 3 04:56:16 2025 GMT
Not After : Mar 2 05:01:16 2026 GMT
Subject: CN=A65093ADD150F818652E270CD7C7444F5FB196E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5c:be:c9:94:34:39:06:41:98:30:80:e7:1f:
46:f5:23:67:15:cb:ba:f9:1d:bd:56:e4:37:44:f2:
5d:74:c9:6a:65:ba:2a:da:a4:0c:2a:3a:a8:f9:74:
aa:98:07:e1:38:44:75:4d:01:2c:b8:91:04:a9:27:
f5:85:ed:15:73:27:af:7a:0b:e0:27:9d:8f:06:ce:
d5:9a:60:dd:f9:86:41:cd:f9:a8:f1:93:de:99:55:
0d:17:ac:01:31:cd:ef:74:30:1e:83:41:72:bc:43:
a4:a3:72:63:d4:5c:03:9c:ad:b4:af:28:dc:e5:73:
84:26:f8:26:e5:16:c8:88:45:b5:67:52:bc:42:ac:
8b:92:9d:81:ab:d9:0d:3a:6a:72:52:1a:cb:c1:a6:
b4:45:8b:db:05:3c:d7:f4:6a:fd:e2:9f:cb:42:bf:
1e:5a:9f:27:f4:a5:aa:40:cc:43:bd:19:cb:45:2d:
61:14:ae:4d:16:08:a8:00:67:1b:ce:00:d7:63:37:
2f:c2:4b:dc:2d:28:db:e9:e8:9d:d4:e5:09:e3:a2:
ff:db:2a:2d:4f:c9:0e:b6:fa:5e:22:79:05:4a:dd:
a4:9e:38:30:c9:10:c9:e2:ed:a1:cc:5d:ed:1b:a9:
84:0c:4c:a8:89:b5:fa:c1:59:b3:92:b5:75:b5:10:
dc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:50:93:AD:D1:50:F8:18:65:2E:27:0C:D7:C7:44:4F:5F:B1:96:E8
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:1::/48
Signature Algorithm: sha256WithRSAEncryption
22:a8:31:2f:be:50:bf:d6:40:59:c8:37:b6:2f:9a:b2:e5:82:
60:26:e0:09:4d:e9:d7:29:5a:73:22:ee:23:7f:94:ae:79:fe:
c8:0d:ef:74:13:6e:5a:3f:4c:6e:a2:4f:78:35:d9:1a:24:2e:
bc:d1:ec:82:56:82:4a:82:3b:ce:1a:6a:4f:b5:55:0f:08:f1:
84:18:c2:1e:25:3e:f5:44:d8:af:78:16:65:ed:67:23:26:c4:
2e:77:0a:77:b9:47:7b:2c:8c:f3:70:55:45:79:d7:93:88:43:
cf:13:23:37:b9:85:db:78:f6:9b:d6:2d:51:15:ae:ec:19:fe:
b8:92:0f:ae:e6:0f:6c:f2:5e:89:04:f2:d9:28:c3:57:de:56:
60:80:6e:5d:28:13:6a:9e:1e:36:b9:e1:6c:bb:0b:96:cb:5d:
88:b4:dd:61:c1:fc:2e:60:74:75:d2:9f:fa:cc:31:83:3b:2b:
ea:41:64:77:ec:8f:ec:90:8b:05:c7:26:57:b7:fe:d1:c2:29:
a7:03:c0:42:d9:7f:23:91:8c:81:a2:d4:59:63:d6:3d:58:fb:
db:7c:44:87:31:8c:55:bb:76:73:ea:ea:61:ec:0b:9c:d6:65:
2f:cf:16:85:2d:71:13:1d:9b:52:a3:33:64:42:40:87:a5:23:
24:c2:cd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:41 2025 by rpki-client