Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: Y0wFJZMpkRqYqXRnGy7EanI6hEgR1II6p5cqoKYlBn0=
Subject key identifier: 7E:1A:B1:81:3D:3E:67:D1:4F:27:EB:6C:78:39:D2:44:78:FD:9E:53
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 714614DFFF0DD4E6AFF54E8B21B6422E40D2334A
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 03:00:03 +0000
ROA not before: Wed 26 Feb 2025 02:55:03 +0000
ROA not after: Wed 25 Feb 2026 03:00:03 +0000
asID: 38526
IP address blocks: 2405:3740:9014::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:46:14:df:ff:0d:d4:e6:af:f5:4e:8b:21:b6:42:2e:40:d2:33:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 02:55:03 2025 GMT
Not After : Feb 25 03:00:03 2026 GMT
Subject: CN=7E1AB1813D3E67D14F27EB6C7839D24478FD9E53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:67:b8:72:ce:81:f2:b7:d2:62:5c:86:31:
85:d1:44:32:16:be:4d:80:f6:2e:a8:90:92:b2:bc:
29:8e:8d:1d:16:8c:4a:c9:e8:d3:e9:53:7c:58:3c:
0e:ab:e6:bb:da:59:a6:22:c9:4f:9c:f2:4b:94:09:
d9:d8:b7:4e:81:84:23:cb:83:dd:8b:c4:ce:cd:98:
6a:7d:2b:51:0d:d3:eb:f4:13:9e:84:7d:ec:01:f3:
53:ee:ce:c9:87:89:67:92:69:91:7a:b2:54:4e:c1:
4f:c5:7c:1e:c8:fa:45:e2:2c:6e:da:96:67:be:d3:
a5:de:d1:59:b1:22:aa:7a:d6:cb:38:a5:a5:31:aa:
5e:d9:cd:fd:f0:47:d5:24:71:34:b3:65:d6:a0:0b:
f1:c4:27:e1:67:1e:b7:47:06:c1:53:82:bd:1e:85:
ab:39:ed:a1:e5:b2:07:5d:f1:6f:6e:d4:43:22:e7:
6d:b1:19:df:08:84:ca:bb:8e:63:0e:5e:77:c6:cb:
b7:d2:f4:1b:57:9f:71:6d:f1:bc:97:c3:d6:20:3a:
5b:fc:f7:a4:91:d1:34:93:8c:bd:36:06:0a:3e:fc:
14:c1:f1:c7:cf:33:97:01:0b:76:21:95:78:70:b1:
08:30:ca:99:3c:d3:c7:2f:89:87:87:ea:e7:68:3e:
17:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1A:B1:81:3D:3E:67:D1:4F:27:EB:6C:78:39:D2:44:78:FD:9E:53
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9014::/48
Signature Algorithm: sha256WithRSAEncryption
79:ba:14:82:ce:be:26:0a:a3:c3:0e:15:4f:27:3a:fb:3a:9b:
c0:a2:99:47:5b:1e:a6:80:dd:8a:a5:f2:ce:9d:d2:22:16:24:
93:60:fd:df:34:77:ee:ad:33:6f:7e:2d:86:ef:fd:1a:42:42:
05:6f:66:94:d6:4a:a8:ed:ad:34:22:4b:b6:63:4a:0c:17:9b:
5c:d8:3f:17:74:56:eb:7e:64:5c:fc:24:60:30:74:65:7c:12:
e2:1c:77:aa:b7:db:1a:2b:a0:04:93:4d:9d:69:87:b0:c7:07:
80:0f:63:b6:ca:86:48:c2:7e:75:88:e3:24:7f:5a:8b:cd:1d:
f5:ec:e7:7e:26:e2:1b:9d:d2:20:8c:8a:52:40:89:c6:9e:40:
37:ce:dc:f3:b4:9f:92:94:54:25:b2:e1:f3:60:ad:af:43:03:
30:7b:49:22:1b:53:b1:1f:54:44:87:1f:a2:13:b3:51:9a:2e:
2e:44:93:e7:40:11:a1:ee:84:fe:c7:1f:40:47:05:95:0e:51:
e2:30:20:dc:27:d3:07:5c:8b:e5:2d:ef:b9:24:5a:ca:d0:7b:
94:77:c9:f5:c6:6f:55:43:de:fb:aa:f0:6d:90:e4:2b:87:bb:
21:a8:ce:fe:36:59:5a:06:05:12:18:5a:e5:12:10:ad:ba:9e:
b9:4d:f8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:34 2025 by rpki-client