Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: ciMHTW5d7CGh/bdS07OfDGll4nimFMGj/cLpINUpZg0=
Subject key identifier: 96:9F:E2:B5:91:8F:C6:94:9B:51:53:4C:C2:27:61:D2:D6:08:BE:2C
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 7245E01807B97D2FA24143C4E43060FBB864E403
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 02:00:03 +0000
ROA not before: Wed 26 Feb 2025 01:55:03 +0000
ROA not after: Wed 25 Feb 2026 02:00:03 +0000
asID: 38526
IP address blocks: 2405:3740:9007::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:45:e0:18:07:b9:7d:2f:a2:41:43:c4:e4:30:60:fb:b8:64:e4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 01:55:03 2025 GMT
Not After : Feb 25 02:00:03 2026 GMT
Subject: CN=969FE2B5918FC6949B51534CC22761D2D608BE2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c2:69:f7:c1:8b:c3:ea:1f:52:ed:02:5a:73:
1c:c5:39:09:41:be:df:1d:90:1e:f6:17:ed:b8:c9:
dc:23:42:f5:a3:7c:57:97:8b:16:3a:ab:73:6f:bd:
db:17:2d:d2:80:3b:77:93:06:90:fb:aa:bb:a8:22:
8a:2d:b2:04:d5:57:c0:75:c8:97:5a:5b:9e:14:af:
ff:7a:96:29:40:10:ee:75:8f:1b:6c:aa:e5:0b:e1:
16:71:39:98:af:8d:1e:91:77:23:c3:2b:48:bc:01:
15:ad:68:84:ed:63:fe:76:fc:58:fd:d0:ab:bc:e1:
c8:ba:5b:04:8e:9c:89:65:01:32:b2:60:fa:79:9f:
96:22:c3:99:7c:cb:5e:f2:a9:e3:dc:86:2c:33:f6:
f7:2d:5d:64:f2:7f:9c:02:8b:80:d5:81:44:94:13:
55:11:e7:21:2c:5a:3d:8e:bd:95:e4:01:c3:a9:72:
3d:6d:c5:3a:cc:2f:63:89:1b:bc:a3:06:ef:6d:16:
0f:ac:a2:d2:05:32:77:f5:67:15:19:9d:cc:77:05:
2b:fe:14:f9:5f:d8:3a:2c:52:67:cb:22:0d:b2:14:
6d:01:35:8e:49:00:3d:e0:50:51:d6:c1:c1:97:a6:
5b:fb:48:fe:ba:41:24:aa:6f:99:5c:c4:55:a1:3c:
85:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9F:E2:B5:91:8F:C6:94:9B:51:53:4C:C2:27:61:D2:D6:08:BE:2C
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9007::/48
Signature Algorithm: sha256WithRSAEncryption
25:4b:59:1f:ea:a6:64:26:6e:95:fe:4c:0e:42:24:43:06:51:
04:d6:d0:32:ed:2c:00:0e:47:17:85:00:da:24:30:f8:89:09:
32:4c:a8:a7:fc:cd:57:9c:6e:45:75:25:b9:c0:5f:3b:39:f9:
bf:18:6d:19:06:b2:91:e1:33:9a:0c:f3:6a:3d:44:95:2f:3f:
78:c6:2e:04:88:d2:47:f0:9e:1e:2d:97:be:4e:cb:05:aa:a0:
7a:1b:3c:b7:48:dc:13:a3:1c:75:63:77:42:1b:1a:65:5a:41:
1a:c3:cc:18:51:09:f1:21:80:3c:65:f4:40:4b:e1:5c:54:db:
b2:13:3c:71:0e:6b:09:e9:04:62:3c:dc:dc:6d:12:4a:ef:de:
bc:d1:92:db:b0:c8:29:5b:53:b9:d8:14:3b:96:d1:85:67:c7:
c0:09:c4:4e:f0:fc:1b:5b:4b:7e:ae:89:4b:08:a4:2e:3b:9f:
85:c2:68:41:1e:e5:0b:c8:74:14:eb:1f:93:9e:30:80:69:54:
ac:09:ff:4a:38:76:bb:96:f3:62:3f:c1:75:03:2e:ec:3d:f3:
43:eb:01:67:7f:b5:e5:a3:71:36:8b:2c:9e:70:cd:40:de:77:
24:65:d7:b5:4b:9f:81:33:70:bc:42:a5:6d:d7:03:b4:4c:e7:
51:a6:22:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:44:29 2025 by rpki-client