Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: gdl2opcqy93y04k7cz8mj9XjRrR4iMZNm32kn1x/raw=
Subject key identifier: 99:5B:FA:FA:C2:57:0A:2C:0C:3E:F0:EB:CA:D8:EC:CB:BB:B9:FA:78
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 37BDEC1C9163972D2384353DF641420298B9B70E
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 02:00:04 +0000
ROA not before: Wed 26 Feb 2025 01:55:04 +0000
ROA not after: Wed 25 Feb 2026 02:00:04 +0000
asID: 38526
IP address blocks: 2405:3740:9008::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:bd:ec:1c:91:63:97:2d:23:84:35:3d:f6:41:42:02:98:b9:b7:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 01:55:04 2025 GMT
Not After : Feb 25 02:00:04 2026 GMT
Subject: CN=995BFAFAC2570A2C0C3EF0EBCAD8ECCBBBB9FA78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fd:f9:75:31:21:e4:ab:a8:da:9c:69:33:82:
5e:50:90:39:69:bc:b7:dd:9f:b6:6b:ea:0c:69:f8:
41:59:35:61:6b:db:98:ea:53:2c:93:f0:7d:8a:ca:
90:ec:05:5f:eb:69:c5:e1:d7:be:eb:0b:c7:fe:f5:
cc:3b:8d:cf:db:67:45:b9:0b:94:00:e3:b2:ba:f1:
1c:02:7f:d2:b1:39:09:11:b5:a2:9d:82:44:87:11:
1c:98:1f:af:9f:96:a5:17:05:72:7f:b9:23:89:8a:
34:b3:68:df:b9:ba:79:d5:0e:14:3d:bc:80:42:07:
6e:98:4e:5b:e5:ee:aa:dd:b9:9b:c3:00:a0:d7:0c:
a6:93:b5:70:c6:c9:62:04:87:d5:23:31:0e:28:fe:
8b:7a:b5:51:ce:35:35:9e:22:e7:7d:c0:59:1e:ac:
18:b3:8b:50:4f:aa:66:1f:42:4c:df:24:9e:7b:f5:
96:33:cd:90:98:1c:45:e9:5a:00:01:26:1e:e6:17:
5d:fb:74:39:30:42:a1:fe:4f:45:24:b1:3c:58:0d:
cd:76:04:51:79:34:5c:a7:73:8a:7d:10:f4:ee:3b:
4a:62:dc:f0:0e:23:ce:cf:a9:84:c2:2f:79:43:75:
78:e7:ec:7b:d6:17:ea:48:72:1e:b4:92:32:fe:62:
02:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5B:FA:FA:C2:57:0A:2C:0C:3E:F0:EB:CA:D8:EC:CB:BB:B9:FA:78
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9008::/48
Signature Algorithm: sha256WithRSAEncryption
b3:2a:85:a0:43:d6:94:84:88:e2:ac:70:66:f9:85:b1:5b:de:
82:ba:6c:88:89:d3:cc:5d:4a:a9:50:6d:07:3e:c6:13:00:f1:
65:ac:a2:49:4a:96:91:24:fc:9a:08:f2:75:70:c2:9f:12:f0:
bf:6b:7b:c3:48:23:98:54:e3:6e:cb:5d:42:10:7e:08:53:21:
04:fe:3c:41:da:e6:51:74:eb:6a:1f:cf:ce:99:51:9f:2f:db:
f5:92:a4:96:86:d2:8e:2d:4d:5e:38:23:66:48:9d:90:4e:57:
03:f5:20:c8:72:ff:23:77:97:da:d6:97:a2:ff:48:75:cc:e8:
f0:07:a4:0e:89:2a:a4:da:7c:40:4e:81:b2:72:9f:26:3c:91:
c9:cc:17:50:78:74:fe:7e:b2:99:85:08:1b:46:2c:39:0d:e7:
a6:5a:8f:64:10:52:47:58:61:bc:0f:0a:e5:13:5b:cd:bf:68:
31:31:6f:48:bd:aa:91:9c:71:f4:ff:3a:0e:cc:88:20:fe:dd:
bc:8e:d1:23:0a:21:1a:1b:05:9a:f8:9a:7f:02:31:a3:26:6c:
71:56:7f:89:85:ac:10:10:27:d8:52:06:87:1a:ca:f2:27:d6:
c3:24:94:61:b3:2e:e8:07:3f:e0:77:0f:64:5c:a3:1c:d3:91:
00:e3:1c:05
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUN73sHJFjly0jhDU99kFCApi5tw4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx
MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDRaFw0yNjAyMjUwMjAwMDRaMDMxMTAvBgNV
BAMTKDk5NUJGQUZBQzI1NzBBMkMwQzNFRjBFQkNBRDhFQ0NCQkJCOUZBNzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/fl1MSHkq6janGkzgl5QkDlp
vLfdn7Zr6gxp+EFZNWFr25jqUyyT8H2KypDsBV/racXh177rC8f+9cw7jc/bZ0W5
C5QA47K68RwCf9KxOQkRtaKdgkSHERyYH6+flqUXBXJ/uSOJijSzaN+5unnVDhQ9
vIBCB26YTlvl7qrduZvDAKDXDKaTtXDGyWIEh9UjMQ4o/ot6tVHONTWeIud9wFke
rBizi1BPqmYfQkzfJJ579ZYzzZCYHEXpWgABJh7mF137dDkwQqH+T0UksTxYDc12
BFF5NFync4p9EPTuO0pi3PAOI87PqYTCL3lDdXjn7HvWF+pIch60kjL+YgKVAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUmVv6+sJXCiwMPvDrytjsy7u5+ngwHwYDVR0j
BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy
MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy
NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04
MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzgz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3
QJAIMA0GCSqGSIb3DQEBCwUAA4IBAQCzKoWgQ9aUhIjirHBm+YWxW96CumyIidPM
XUqpUG0HPsYTAPFlrKJJSpaRJPyaCPJ1cMKfEvC/a3vDSCOYVONuy11CEH4IUyEE
/jxB2uZRdOtqH8/OmVGfL9v1kqSWhtKOLU1eOCNmSJ2QTlcD9SDIcv8jd5fa1pei
/0h1zOjwB6QOiSqk2nxAToGycp8mPJHJzBdQeHT+frKZhQgbRiw5DeemWo9kEFJH
WGG8DwrlE1vNv2gxMW9IvaqRnHH0/zoOzIgg/t28jtEjCiEaGwWa+Jp/AjGjJmxx
Vn+JhawQECfYUgaHGsryJ9bDJJRhsy7oBz/gdw9kXKMc05EA4xwF
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:47 2025 by rpki-client