Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030383a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a383030383a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: EBMm8ak9yOLfW2up4vGnpy550VBFSPQPbcGIehWFxkA=
Subject key identifier: C1:A3:2D:02:97:68:3B:C7:71:94:54:F8:43:88:E6:44:79:19:AE:22
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 1A561AD366EF1FBE66E9C92506D8357A23283C55
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030383a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 29 Jan 2025 07:00:02 +0000
ROA not before: Wed 29 Jan 2025 06:55:02 +0000
ROA not after: Wed 28 Jan 2026 07:00:02 +0000
asID: 38526
IP address blocks: 2405:3740:8008::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:56:1a:d3:66:ef:1f:be:66:e9:c9:25:06:d8:35:7a:23:28:3c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Jan 29 06:55:02 2025 GMT
Not After : Jan 28 07:00:02 2026 GMT
Subject: CN=C1A32D0297683BC7719454F84388E6447919AE22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:59:96:b0:47:9b:4c:fa:96:24:ad:30:c7:
c5:17:e0:8c:70:41:8f:af:f0:04:10:dd:6f:43:63:
be:f6:6c:3b:e0:3f:84:4a:c9:e8:89:72:64:25:bd:
d0:68:51:df:40:8e:ff:fb:04:83:65:89:21:9d:7e:
22:68:12:de:fe:98:09:98:1c:c8:05:2a:72:20:56:
83:a4:8c:e8:9f:67:6b:bf:7d:82:04:c1:8a:dc:56:
a0:33:80:13:f3:64:be:54:51:e8:ed:88:1a:01:56:
19:4e:0f:6f:55:1c:15:69:57:b2:60:23:ee:0c:4b:
69:09:53:41:fb:c0:99:a5:9d:cb:b8:75:50:2e:4c:
d7:25:20:25:77:13:38:1c:a1:45:8e:71:99:6a:c3:
65:b8:b7:34:68:b3:86:cc:df:94:5d:c7:86:a2:62:
98:cc:74:2f:c1:e3:c2:d9:7e:4d:f3:7e:fc:81:70:
c5:59:ee:d2:78:a1:15:40:a4:dc:1f:7c:89:c2:95:
de:3d:ee:48:a4:e8:c7:81:06:d6:17:f3:09:14:d0:
73:f9:05:ef:24:5e:8a:eb:5f:06:55:61:26:7e:19:
61:6b:2a:6d:9c:61:60:05:cd:49:75:9b:c7:42:f5:
61:a1:97:09:6a:ab:37:ae:55:ac:c4:39:bb:f2:fb:
1e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A3:2D:02:97:68:3B:C7:71:94:54:F8:43:88:E6:44:79:19:AE:22
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030383a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:8008::/48
Signature Algorithm: sha256WithRSAEncryption
d3:62:72:37:1b:dd:8b:36:43:3c:7e:26:dd:bc:5e:7f:18:9b:
e4:1b:11:a4:86:d1:dc:b4:d1:1f:d6:49:77:68:c9:68:a3:6c:
55:c1:21:5a:aa:54:2e:aa:71:0d:da:75:b3:a0:a1:9b:aa:57:
49:48:65:57:d8:f4:6d:16:cd:37:99:8b:a7:ef:6e:41:2a:77:
44:51:ad:2a:74:39:60:2a:e8:48:e0:76:c7:ce:ce:5f:3d:fc:
38:c0:31:ff:65:51:89:f2:4e:8d:89:8a:7e:50:77:dc:7a:3d:
5f:f0:a4:c2:64:c6:d3:78:88:27:03:8c:1d:33:ae:2b:b3:46:
2b:0e:ac:3d:6b:a8:f2:52:b5:72:ff:0a:e4:bc:d5:54:f9:92:
42:47:3f:d3:a3:cf:c0:de:bb:25:a1:27:32:89:c6:3f:c0:df:
66:6f:a9:8c:2d:7c:9c:f6:56:13:52:78:91:86:1e:a7:fe:e1:
f4:67:4a:67:d5:4b:fa:38:33:aa:9b:f0:21:71:1a:80:6d:30:
f4:11:b8:d5:22:73:7b:e2:48:2f:65:21:0e:75:f7:7a:93:12:
5c:4c:a0:a5:8e:25:e9:d0:24:83:2c:65:27:aa:b2:9a:8f:f7:
b5:77:50:4f:a8:66:26:94:c0:51:ef:10:de:7c:b0:15:15:cc:
14:e5:40:22
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUGlYa02bvH75m6cklBtg1eiMoPFUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx
MzIyNTIwRDAeFw0yNTAxMjkwNjU1MDJaFw0yNjAxMjgwNzAwMDJaMDMxMTAvBgNV
BAMTKEMxQTMyRDAyOTc2ODNCQzc3MTk0NTRGODQzODhFNjQ0NzkxOUFFMjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+SVmWsEebTPqWJK0wx8UX4Ixw
QY+v8AQQ3W9DY772bDvgP4RKyeiJcmQlvdBoUd9Ajv/7BINliSGdfiJoEt7+mAmY
HMgFKnIgVoOkjOifZ2u/fYIEwYrcVqAzgBPzZL5UUejtiBoBVhlOD29VHBVpV7Jg
I+4MS2kJU0H7wJmlncu4dVAuTNclICV3EzgcoUWOcZlqw2W4tzRos4bM35Rdx4ai
YpjMdC/B48LZfk3zfvyBcMVZ7tJ4oRVApNwffInCld497kik6MeBBtYX8wkU0HP5
Be8kXorrXwZVYSZ+GWFrKm2cYWAFzUl1m8dC9WGhlwlqqzeuVazEObvy+x7dAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUwaMtApdoO8dxlFT4Q4jmRHkZriIwHwYDVR0j
BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy
MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy
NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04
MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzgz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3
QIAIMA0GCSqGSIb3DQEBCwUAA4IBAQDTYnI3G92LNkM8fibdvF5/GJvkGxGkhtHc
tNEf1kl3aMloo2xVwSFaqlQuqnEN2nWzoKGbqldJSGVX2PRtFs03mYun725BKndE
Ua0qdDlgKuhI4HbHzs5fPfw4wDH/ZVGJ8k6NiYp+UHfcej1f8KTCZMbTeIgnA4wd
M64rs0YrDqw9a6jyUrVy/wrkvNVU+ZJCRz/To8/A3rsloScyicY/wN9mb6mMLXyc
9lYTUniRhh6n/uH0Z0pn1Uv6ODOqm/AhcRqAbTD0EbjVInN74kgvZSEOdfd6kxJc
TKCljiXp0CSDLGUnqrKaj/e1d1BPqGYmlMBR7xDefLAVFcwU5UAi
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:01:39 2025 by rpki-client