Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: 4D1nzE+1uhON8KYAR8Nm5w+m8tXOBq4LKNvOSn/vZFM=
Subject key identifier: 2C:DE:C1:4B:DF:B5:C7:02:ED:A5:43:9D:D1:F5:53:9C:B9:35:64:4C
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: DA79AF0DE546C320DD3B4A814166C33392AF92
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 18 Sep 2024 03:01:06 +0000
ROA not before: Wed 18 Sep 2024 02:56:06 +0000
ROA not after: Wed 17 Sep 2025 03:01:06 +0000
asID: 38526
IP address blocks: 2405:3740:8004::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
da:79:af:0d:e5:46:c3:20:dd:3b:4a:81:41:66:c3:33:92:af:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Sep 18 02:56:06 2024 GMT
Not After : Sep 17 03:01:06 2025 GMT
Subject: CN=2CDEC14BDFB5C702EDA5439DD1F5539CB935644C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:52:65:e7:fa:b7:18:7f:91:52:03:25:00:
20:24:85:a0:6f:06:01:e2:71:60:c2:38:1e:ec:f8:
b0:fb:2e:3f:fa:11:06:aa:a2:bc:77:69:31:10:36:
51:88:78:f9:99:32:95:c0:ab:f1:11:08:1c:37:d7:
15:c5:88:6e:96:fa:9e:af:7f:49:3d:b3:3a:6e:a0:
95:b5:2c:65:02:f4:22:56:09:f8:d7:5f:df:99:20:
69:81:c6:dd:09:cc:29:e3:37:54:d1:1d:7c:ad:ec:
f7:0a:2c:4d:12:6c:41:89:a5:92:6a:3e:44:31:9c:
5d:6b:48:97:8f:e8:6b:93:99:19:3f:0f:d7:a5:4e:
3a:43:d4:f4:c0:40:8d:d9:9a:6b:8a:81:89:03:43:
4f:e7:53:c7:c9:b9:33:7b:00:81:07:07:d9:8e:24:
d9:48:5e:d3:6a:d1:e4:49:b5:ef:b6:df:11:bb:28:
0b:c9:11:4e:34:18:a4:73:44:b4:ef:31:c1:bf:fd:
fd:a4:4a:38:73:81:4c:8e:98:6e:e0:95:4f:5b:a1:
26:0b:f6:fd:e3:94:28:ff:34:c1:c9:19:a6:a4:1e:
e1:5d:4b:2c:5a:e3:29:ed:10:b9:26:fb:63:e1:33:
8c:00:a2:9f:15:25:f9:a3:d0:fe:c0:ed:cb:77:36:
c3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DE:C1:4B:DF:B5:C7:02:ED:A5:43:9D:D1:F5:53:9C:B9:35:64:4C
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:8004::/48
Signature Algorithm: sha256WithRSAEncryption
9f:47:32:40:12:e5:4f:b9:d6:a4:ab:ea:a0:4d:a9:7c:bb:89:
97:3e:03:0a:42:66:9c:35:db:3f:8d:fc:ac:b7:22:12:a4:28:
35:6b:fe:1a:69:08:45:c5:52:f6:7d:03:57:26:ca:f6:fc:2b:
65:25:f2:c3:46:03:fc:a8:2d:28:a8:8b:ac:a5:8d:00:a9:03:
de:34:30:05:43:dd:fb:91:ee:e4:40:0f:ad:e6:e1:d8:02:05:
aa:ec:3d:b5:66:b8:e2:81:0f:1f:18:e5:01:05:c8:ab:40:c1:
b4:b6:23:70:bc:34:b9:31:a1:4d:68:17:a9:13:bb:68:6f:a6:
e8:11:f3:8c:38:2d:95:94:ea:53:db:15:61:68:7e:f7:9c:83:
ad:03:44:70:1c:02:74:a6:15:2a:52:b8:4c:aa:20:62:f0:93:
73:cd:62:14:98:72:90:3a:0a:3c:60:6b:30:8f:17:3a:e4:40:
9c:0f:8d:83:04:d7:54:49:a1:d2:86:32:c6:7d:fe:1d:c7:fa:
18:85:14:45:a7:b1:d8:0a:8a:d7:24:02:f3:ef:3e:4c:c8:88:
25:14:09:df:f4:fc:66:1e:2c:00:88:87:57:36:34:1a:dd:74:
aa:f5:ef:ef:c4:b7:64:e6:65:99:64:dd:a9:5e:c2:7d:63:19:
e6:a3:eb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:59:16 2025 by rpki-client