Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: g8kzdcOWj6mdeFKOTTKla031fztFVNfaXnziOF2XiyA=
Subject key identifier: 67:1D:71:3E:38:79:F1:D0:21:F3:47:D5:45:CB:40:43:82:47:FE:C6
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 07F4924FBD40534C84A6E1A768E46E2E35AD2535
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 02:00:03 +0000
ROA not before: Wed 26 Feb 2025 01:55:03 +0000
ROA not after: Wed 25 Feb 2026 02:00:03 +0000
asID: 38526
IP address blocks: 2405:3740:9000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:f4:92:4f:bd:40:53:4c:84:a6:e1:a7:68:e4:6e:2e:35:ad:25:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 01:55:03 2025 GMT
Not After : Feb 25 02:00:03 2026 GMT
Subject: CN=671D713E3879F1D021F347D545CB40438247FEC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:59:bd:34:a5:85:9a:09:14:1f:59:24:a3:fd:
ad:50:b0:63:23:83:07:7f:70:f6:76:05:ac:df:39:
13:f1:a6:bb:65:cc:74:bc:4b:7e:8a:e8:1a:0f:27:
cf:8c:13:56:20:97:65:01:2e:82:34:b2:f1:f3:c1:
7f:62:30:d4:03:b7:2e:ec:42:41:ce:27:ea:d8:80:
6e:1f:d7:ea:04:68:57:e1:97:98:94:08:5a:a3:6d:
7b:bd:06:4d:34:67:ec:93:d4:7d:cc:f2:f5:4b:d2:
d2:17:b0:b6:a8:9e:fa:d5:80:0f:b0:68:4e:08:82:
ad:ba:dc:b9:0d:ae:b1:a3:a4:20:79:e4:cd:0a:c4:
44:3c:da:6b:76:36:c8:96:8a:f7:22:c4:6b:a6:ea:
0a:47:30:7c:0c:cf:d8:93:b2:a1:cb:2b:8d:6e:09:
e4:68:91:da:1b:07:ad:fb:fa:69:50:fe:1a:72:fa:
3f:88:9f:c1:0b:98:13:74:d5:f9:ba:7d:e7:46:66:
00:21:ab:c0:12:7b:91:50:74:9f:e4:10:dd:52:01:
c3:96:5e:bc:85:89:f2:52:38:ac:27:3e:72:7e:37:
84:91:1a:14:83:a4:06:a2:9b:ad:88:eb:9b:89:b2:
2f:31:33:cf:d6:f7:21:fa:aa:0f:8f:bf:bb:32:9a:
e9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1D:71:3E:38:79:F1:D0:21:F3:47:D5:45:CB:40:43:82:47:FE:C6
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9000::/48
Signature Algorithm: sha256WithRSAEncryption
48:da:a8:f6:5a:80:32:23:71:fe:a8:fe:61:85:8b:9e:ff:46:
74:99:41:43:e2:fe:28:d1:b6:23:aa:90:63:12:fb:47:ae:c4:
25:ad:14:f8:9e:0b:78:19:ae:f7:5e:80:d9:d4:5e:86:62:5f:
be:20:ac:1b:dc:01:3a:0f:4d:09:ca:2a:8c:f4:b4:9e:0f:b5:
cc:1e:c8:d7:29:99:80:0d:5e:fb:ab:b6:ef:24:60:2d:fc:09:
9b:ba:80:b2:54:01:3b:ac:de:b6:a0:cf:36:a0:0a:4d:88:95:
37:22:ec:d1:d2:61:c9:b1:76:17:6d:78:5b:8c:f3:fc:a7:cd:
24:f5:4c:06:1d:08:e4:52:e5:2f:f5:15:b0:0a:f7:f9:61:16:
2b:47:dc:dd:0a:33:8a:42:e3:c1:0f:aa:90:83:e8:73:5a:52:
a5:7b:ee:33:dd:16:b2:93:93:9e:1f:dd:48:1e:be:80:13:88:
78:f0:1f:15:1c:49:e7:60:3d:44:13:63:32:72:4c:92:40:5a:
50:40:99:b9:94:b4:aa:6e:6b:58:30:fb:f3:b1:90:39:3e:6a:
d5:3d:f8:8d:1f:e5:9b:8e:8a:3e:4e:da:2a:67:cb:2a:a0:4e:
c1:a7:bd:ed:7f:eb:1d:ae:21:85:94:0f:74:a1:22:dc:01:b5:
42:c6:60:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:14 2025 by rpki-client