Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: fbR/apD7uE1cTmW9kETeNIntx2v5ARtc/MSKYLX9RqU=
Subject key identifier: 7E:91:03:14:1B:F3:BA:BB:12:DA:3F:F3:4A:DD:F2:91:37:C8:2A:A4
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 44CF55A15EC34161F04CD51CADB81E675DA784F8
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 02:00:02 +0000
ROA not before: Wed 26 Feb 2025 01:55:02 +0000
ROA not after: Wed 25 Feb 2026 02:00:02 +0000
asID: 38526
IP address blocks: 2405:3740:9011::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:cf:55:a1:5e:c3:41:61:f0:4c:d5:1c:ad:b8:1e:67:5d:a7:84:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 01:55:02 2025 GMT
Not After : Feb 25 02:00:02 2026 GMT
Subject: CN=7E9103141BF3BABB12DA3FF34ADDF29137C82AA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:09:42:cc:f6:f0:b9:fa:ca:50:33:00:f0:5f:
8d:31:3e:c9:2b:38:d3:a8:3a:7f:4e:40:be:2a:5d:
95:a3:ca:da:28:2f:0f:a6:b0:4d:11:24:c8:fa:c0:
a1:e0:23:15:16:26:58:04:21:70:29:ce:aa:c0:45:
47:cd:f6:ef:a2:d3:8f:82:71:ee:54:11:33:a6:84:
14:5b:ba:96:02:d7:ad:ad:45:67:42:3d:c0:09:92:
85:4f:b9:b6:53:90:59:68:b9:96:f5:b0:d2:08:16:
d4:69:6e:0e:dd:dc:0f:07:26:50:85:5f:99:17:31:
cf:b4:f3:ae:be:bd:6c:fa:8b:b8:02:39:a4:e7:1a:
a5:d5:1b:75:62:c9:07:4f:ae:47:07:ac:4d:41:10:
6e:dc:41:38:b2:73:0b:9e:ca:79:56:a1:b3:0c:80:
e4:84:f5:9a:74:9d:b9:a3:df:c7:96:51:53:b1:e1:
3b:d5:32:24:b0:e1:38:8d:83:c1:ee:26:e2:7e:b8:
5d:28:61:19:49:41:0f:b6:15:48:37:15:9f:0b:f8:
71:92:4c:5e:de:ef:c1:4c:3b:e3:ed:04:d0:97:a8:
21:27:fc:d7:dc:1d:d8:fa:a6:01:86:15:79:4d:3a:
00:85:47:f1:b8:58:86:88:47:15:14:e2:9f:6e:04:
87:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:91:03:14:1B:F3:BA:BB:12:DA:3F:F3:4A:DD:F2:91:37:C8:2A:A4
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9011::/48
Signature Algorithm: sha256WithRSAEncryption
9b:dc:ed:8e:66:a8:aa:e1:1c:88:75:5c:0f:09:e6:6d:29:dd:
8e:9c:32:5b:94:0f:7b:5c:48:79:8c:fc:48:e7:2c:8a:99:ac:
e0:7b:6b:8e:94:11:bc:b3:54:11:a2:13:f3:46:0b:a1:9a:6a:
9b:06:18:de:ac:14:b8:23:bd:1c:00:fa:49:b1:ac:d6:27:68:
62:f2:ed:7e:1b:e0:29:bc:65:8b:9c:0d:9f:29:2b:fb:d8:51:
6f:67:a8:d5:40:47:95:43:7a:93:ef:d7:77:d8:b5:ae:88:64:
a6:22:d5:5f:99:3d:af:56:2b:94:b0:8c:5d:b5:2b:db:7f:b2:
f6:7d:14:25:4d:06:67:f3:8d:1f:28:31:55:43:11:c4:2e:c9:
9b:2c:7d:d4:eb:07:56:49:82:d8:a3:3d:7b:cc:ba:ac:21:e0:
26:ae:f0:f8:c7:f2:80:4f:73:52:c4:2d:87:e0:cf:06:10:92:
00:56:47:35:91:1f:c5:92:e7:49:52:0c:51:f7:20:f0:27:41:
65:f2:f3:ce:fc:6b:d6:ed:3f:07:34:15:6b:6f:fa:ac:31:ed:
54:4b:bf:54:02:39:cd:be:3b:7c:25:27:6f:22:1e:8a:4e:08:
ae:7d:93:5d:1f:6b:1b:09:27:b5:92:eb:69:b5:33:c3:d3:d9:
cd:8d:ab:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:17 2025 by rpki-client