Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030313a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a383030313a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: dOfIpQkLof8Fe7BrPYNOEWWgeYAYdTUzGEb3ZxOcsT8=
Subject key identifier: C5:23:DB:53:90:22:C4:20:AB:32:AF:7B:1B:51:D5:11:B0:B3:D6:26
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 41289A50F28643D7653B2991AA58C0804DB1C1BD
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030313a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 29 Jan 2025 07:00:01 +0000
ROA not before: Wed 29 Jan 2025 06:55:01 +0000
ROA not after: Wed 28 Jan 2026 07:00:01 +0000
asID: 38526
IP address blocks: 2405:3740:8001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:28:9a:50:f2:86:43:d7:65:3b:29:91:aa:58:c0:80:4d:b1:c1:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Jan 29 06:55:01 2025 GMT
Not After : Jan 28 07:00:01 2026 GMT
Subject: CN=C523DB539022C420AB32AF7B1B51D511B0B3D626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:85:7a:35:fa:1b:f5:b7:d1:66:82:cc:7e:
ca:eb:db:5c:bb:16:15:eb:4c:d9:62:d5:bd:e3:81:
1d:80:47:3d:29:6b:b2:de:90:11:a5:ff:f8:5b:84:
b5:98:f5:0e:42:b6:f4:44:2f:6f:00:f5:b4:a4:40:
11:8e:4f:83:28:38:45:66:9a:e4:c3:2d:e3:e7:1e:
4f:07:c3:60:f4:61:d7:40:66:90:7c:bf:5a:a5:33:
e0:ac:67:08:0d:a8:02:b8:6f:cd:02:57:8b:d1:dc:
54:22:61:5e:80:ee:1e:77:54:44:1f:84:8d:3c:e3:
e8:0f:95:76:1e:3f:c2:e0:d6:e9:bf:db:6c:fa:36:
a8:d2:b5:77:37:ff:a9:9a:da:0a:01:87:df:8b:25:
2c:f5:99:fd:34:09:9d:31:c0:2f:7e:3a:5c:76:80:
dd:25:ed:f9:b7:87:25:d3:f6:13:6b:28:f6:b3:47:
05:98:ac:64:d0:68:61:97:16:46:bb:a7:4c:3e:15:
30:61:4a:e6:7f:83:53:39:69:04:11:5c:56:52:d4:
78:98:7e:25:d2:73:79:99:8b:70:2a:55:2a:97:47:
af:bd:6f:01:e1:5f:74:35:05:08:d4:7b:32:98:98:
1c:94:f0:13:e3:2c:78:a0:78:1f:66:1b:95:f1:14:
1f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:23:DB:53:90:22:C4:20:AB:32:AF:7B:1B:51:D5:11:B0:B3:D6:26
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030313a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:8001::/48
Signature Algorithm: sha256WithRSAEncryption
d9:a4:18:47:86:ed:77:c0:51:8f:05:d0:08:00:82:62:b1:ac:
08:9c:14:a0:52:e0:2b:f6:fa:8a:8a:1b:16:89:4b:ab:57:cb:
81:72:79:74:77:f8:54:6b:6a:61:6f:c8:68:aa:f5:cd:e7:bb:
a8:86:f1:38:46:f6:4e:08:4d:e0:1a:f4:78:f8:11:6a:4e:ab:
06:6e:7b:d1:4a:11:07:08:7d:95:d3:a7:46:67:cc:ae:b2:bf:
7f:d3:0f:3d:f3:75:97:70:21:ee:23:fd:79:90:c4:37:26:2f:
95:32:c6:ae:97:cb:3a:42:4e:1a:55:cc:94:6a:f3:e4:1a:7b:
0f:93:64:09:dd:18:b1:85:b6:bd:ee:da:a0:9a:fb:be:5a:af:
5f:e4:f5:f4:7c:0d:f4:99:7e:2e:b4:74:f6:d6:7e:e6:af:47:
b5:50:31:e3:c0:60:75:cc:ed:70:69:f1:9f:29:2d:ed:59:b8:
1a:6e:fa:6f:52:c9:d0:59:30:36:b2:54:84:a2:b8:db:9c:3a:
cc:e4:8d:ac:bf:1e:ff:b7:12:e0:5a:30:6c:a1:90:12:6b:b2:
62:c1:df:b0:23:bb:b1:62:90:26:ac:9c:ad:ba:f2:9e:c7:5f:
8c:2e:f6:e1:a8:67:1b:b9:a1:91:fd:ea:ae:51:b4:74:49:8a:
b3:53:fc:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:14:03 2025 by rpki-client