Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: oyTK2xyP0LapVFzeiuYvupYHv95k2Lq4ruGmx/u+iZo=
Subject key identifier: 3C:7F:5D:DB:2E:8A:8E:0E:18:B4:DA:45:CC:1C:AF:F7:65:30:B7:8A
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 01CCC36E774159619FD38BF39C39D7773D449EFE
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 03:00:03 +0000
ROA not before: Wed 26 Feb 2025 02:55:03 +0000
ROA not after: Wed 25 Feb 2026 03:00:03 +0000
asID: 38526
IP address blocks: 2405:3740:9013::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:cc:c3:6e:77:41:59:61:9f:d3:8b:f3:9c:39:d7:77:3d:44:9e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 02:55:03 2025 GMT
Not After : Feb 25 03:00:03 2026 GMT
Subject: CN=3C7F5DDB2E8A8E0E18B4DA45CC1CAFF76530B78A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:e8:c6:cc:82:2d:6b:b7:32:33:0c:31:16:
30:a8:23:02:c1:9a:61:4e:06:80:48:53:fb:48:6f:
aa:e8:d1:c2:b2:42:c4:8b:90:d3:45:91:1c:7a:fa:
ba:7e:47:1c:d6:7c:83:34:3f:f0:1e:bf:88:74:c0:
e8:db:25:3f:8e:3b:f0:c2:a8:96:98:7b:13:be:fa:
94:2c:81:d1:24:bb:f4:72:3f:78:99:af:78:ed:79:
aa:9f:43:9c:c1:09:e1:b1:4f:dc:5e:85:69:76:ee:
23:c4:42:15:21:04:50:d0:e0:30:ec:65:76:95:29:
0b:8c:a9:bb:50:39:ce:84:c6:1a:22:db:3c:cf:1f:
21:8a:ac:ad:47:e6:5d:b7:14:e2:02:1c:3e:29:71:
61:8e:ce:17:c0:d0:a8:a3:b5:42:3a:dc:62:73:18:
94:e2:05:a7:8f:e3:94:5a:1d:28:c5:ac:02:6f:98:
73:3a:a9:1a:41:2c:cc:41:b1:47:e2:b9:b9:de:29:
4c:d7:a3:53:97:1f:21:19:7a:f2:46:1d:7c:de:a9:
f9:d3:f3:5a:11:4a:09:0a:4e:47:c1:4a:a3:19:1b:
ad:a1:a1:e3:84:7a:e3:9b:6a:c9:a9:19:ad:4f:6f:
5a:0c:32:00:03:c6:db:91:f4:af:04:ab:9f:63:f9:
c4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7F:5D:DB:2E:8A:8E:0E:18:B4:DA:45:CC:1C:AF:F7:65:30:B7:8A
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9013::/48
Signature Algorithm: sha256WithRSAEncryption
d0:65:05:ba:7a:25:45:f1:ac:a7:ab:4c:06:46:71:5b:fe:b6:
08:03:e9:8b:d3:14:6f:58:a5:84:d1:7e:ad:d9:79:51:fb:ab:
ff:ab:df:e4:18:01:c6:fd:9f:66:1e:36:a2:cb:01:b1:97:e6:
82:17:3c:f1:92:c7:3f:8f:df:5b:09:5d:ec:bf:93:7b:28:b3:
a5:2d:ac:86:57:d8:54:e9:85:d3:fa:88:87:92:21:c7:44:69:
24:5a:07:5f:41:1a:34:f6:73:a0:a9:07:d5:2c:a9:e3:59:60:
a8:ef:37:91:84:c3:89:f3:fe:90:83:2d:12:a3:38:41:fb:b1:
a7:32:5b:d0:94:e3:45:79:1a:2e:b8:3e:0b:14:fa:a9:bb:ea:
78:0a:6f:82:05:11:c8:bb:e5:e5:95:bc:09:ba:1a:c7:c8:82:
df:fc:af:32:a6:73:87:da:27:aa:57:5d:22:c4:10:7b:ee:e8:
df:02:0f:b5:c4:37:44:f1:2c:30:e0:15:0f:d5:b4:21:43:07:
f5:ef:05:22:f5:2e:ef:6f:50:99:5b:e8:f5:8a:f3:48:22:d7:
f8:d0:e0:65:97:d3:67:e8:a3:69:ba:91:6d:60:fc:ed:ec:62:
f9:e3:7e:36:b1:d2:5d:eb:87:4d:4f:1b:32:b8:4f:e7:ef:1d:
f6:bd:15:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:25 2025 by rpki-client