Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: gCR6ElDrVymaiadFgEl0NfYkf+UVtnityybySFJ1t4g=
Subject key identifier: 73:13:C2:36:50:22:B8:C7:AC:5A:A3:DE:B6:6A:F6:32:91:DA:83:7A
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 7B6C7D500AC84ADDAB14D582B8831AC9C4A424E2
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 02:00:04 +0000
ROA not before: Wed 26 Feb 2025 01:55:04 +0000
ROA not after: Wed 25 Feb 2026 02:00:04 +0000
asID: 38526
IP address blocks: 2405:3740:9009::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:6c:7d:50:0a:c8:4a:dd:ab:14:d5:82:b8:83:1a:c9:c4:a4:24:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 01:55:04 2025 GMT
Not After : Feb 25 02:00:04 2026 GMT
Subject: CN=7313C2365022B8C7AC5AA3DEB66AF63291DA837A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:29:05:5b:a1:89:50:ee:86:82:0e:93:1f:0f:
6c:3d:1c:55:0d:1a:8c:2c:b7:58:3f:31:ac:d1:6e:
02:0a:d2:5e:98:3a:3b:ae:f7:94:e4:ba:fb:e8:6b:
45:b2:6a:83:68:1a:e9:4c:0d:2e:19:21:cc:10:a3:
e1:d8:b8:ba:6a:d9:90:7e:88:f3:71:c3:04:10:8d:
ab:cc:11:f1:40:c2:47:e9:b2:b4:10:5b:38:14:51:
87:04:6c:a2:d4:1f:25:4b:41:21:f1:1a:bc:b2:5b:
bb:e9:c7:99:af:6e:67:83:0f:21:d2:b2:c3:d5:e8:
73:b0:77:90:bf:72:33:fe:dc:58:21:e7:61:99:52:
05:8d:ec:47:d9:4b:d0:8a:0f:1d:d5:dc:70:1c:f0:
31:18:be:be:11:3b:ef:08:5b:41:78:1e:0a:c1:e5:
0d:15:5a:47:da:12:24:2c:d7:00:bd:85:a4:66:4e:
bc:63:0e:f9:38:14:88:ef:1f:78:ba:04:92:31:c3:
59:56:52:1b:20:68:2f:4e:8d:65:1e:9b:b7:f7:16:
16:07:ff:52:53:bf:92:b5:99:62:73:47:00:2b:4d:
cf:79:2d:b6:2e:85:6b:e8:4f:15:28:82:fe:9c:fb:
ab:f3:ef:e2:87:92:ac:e8:8a:8a:07:06:38:76:59:
80:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:13:C2:36:50:22:B8:C7:AC:5A:A3:DE:B6:6A:F6:32:91:DA:83:7A
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9009::/48
Signature Algorithm: sha256WithRSAEncryption
5f:1f:9e:4b:ab:24:c8:8a:da:2f:e4:0d:28:22:32:76:52:41:
7d:bf:ed:98:55:81:43:75:85:6e:8c:c7:3d:df:64:71:97:1c:
e6:57:0a:a6:4e:9c:d4:43:cd:0b:e8:7b:a0:e5:df:bb:ca:a5:
16:a2:c6:db:24:9a:0b:9f:84:59:c0:13:3b:0b:45:5c:4a:3c:
fa:30:f7:ff:81:4c:af:96:35:2c:3a:1f:6f:fa:0a:4d:70:04:
7e:17:28:39:3f:27:58:f7:f8:ea:d1:72:7e:bf:ca:06:3c:32:
58:1a:61:f2:bc:9c:a5:8e:bf:9f:c8:0e:17:98:c2:99:d6:44:
ba:c7:71:36:68:b5:e8:74:df:9e:34:bf:d2:c5:32:8e:ec:75:
12:9e:25:c5:77:3b:4a:ad:94:e3:74:8e:16:04:a6:de:fb:ea:
a1:55:2a:b2:26:2d:52:2e:16:68:c9:e5:44:1c:4c:9a:d9:58:
45:4b:90:be:15:bb:e4:82:28:10:39:5a:46:f2:f9:56:7a:0e:
28:03:db:68:d0:ca:26:41:82:af:70:56:d6:25:11:a6:13:11:
f8:be:41:0c:1d:1c:cd:56:34:8d:b9:23:c4:5a:af:3a:cc:2d:
48:17:b0:73:89:a6:68:6c:31:e0:7b:98:99:b2:ca:fc:fc:4b:
c6:97:72:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:10:24 2025 by rpki-client