Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031353a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031353a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: u6/UtzfXQO6WvVZlhrTbGvLjiFuFJVjdScusxCtRgRo=
Subject key identifier: 57:46:12:F7:79:93:78:3B:B8:78:92:2E:62:21:A8:6E:F2:A8:CF:6F
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 214661B79411F6FC400F248C9CCB13DB47DD4FB7
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031353a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 03:00:02 +0000
ROA not before: Wed 26 Feb 2025 02:55:02 +0000
ROA not after: Wed 25 Feb 2026 03:00:02 +0000
asID: 38526
IP address blocks: 2405:3740:9015::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:46:61:b7:94:11:f6:fc:40:0f:24:8c:9c:cb:13:db:47:dd:4f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 02:55:02 2025 GMT
Not After : Feb 25 03:00:02 2026 GMT
Subject: CN=574612F77993783BB878922E6221A86EF2A8CF6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a5:1a:fb:a9:09:cb:d9:25:b8:4a:d0:dd:0c:
a8:28:33:37:1c:65:f1:a2:d1:c0:87:2b:cb:67:53:
84:a0:0c:22:96:d7:00:58:f4:62:07:18:92:e5:20:
ff:13:9e:4c:4e:54:35:1a:41:54:f4:a7:48:f0:15:
42:d6:94:73:da:36:c4:97:50:2b:7c:47:64:44:c4:
e3:df:85:88:39:f9:b1:e6:0b:ce:18:5d:dd:a9:69:
94:73:e6:2d:59:7e:45:cf:6f:8f:35:cd:32:0b:89:
08:28:ac:55:45:b5:b7:e1:f8:5a:11:52:e1:e1:3e:
59:ca:b1:c5:e0:fd:65:03:4d:3a:3d:ec:e4:9d:0b:
fb:b3:a0:18:c3:29:ad:bf:80:cc:84:58:68:b6:1f:
6f:98:e0:ec:c2:a7:82:ea:52:c8:d1:72:0c:6f:ca:
bb:f8:72:93:f8:99:1a:5f:4b:c9:1a:ba:ee:29:d0:
9b:dc:c4:70:c5:74:fb:80:76:dc:01:cd:3c:26:3e:
f8:52:3a:8d:f5:8f:9d:92:5c:d1:ed:26:c9:dc:c0:
0b:2d:c7:28:79:22:b6:1e:71:7e:63:dc:9d:5a:cc:
4d:41:d2:d0:76:ee:a1:a2:ba:97:51:87:63:26:0b:
df:73:75:c3:7a:81:fc:68:bc:04:85:a5:48:f5:81:
6e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:46:12:F7:79:93:78:3B:B8:78:92:2E:62:21:A8:6E:F2:A8:CF:6F
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031353a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9015::/48
Signature Algorithm: sha256WithRSAEncryption
8e:63:81:28:d4:0d:bb:4e:06:89:b3:c7:a8:64:be:01:6b:b6:
1a:d2:2d:9f:ca:60:73:b4:e0:a5:36:da:de:42:62:f7:15:2b:
61:a2:ab:91:58:88:b4:0f:8c:3d:10:53:3f:ec:cc:1a:f2:3e:
4a:33:2c:78:08:05:00:db:d7:3b:da:b6:d2:d4:a0:dc:b5:cc:
87:56:81:9f:c1:5e:24:37:b9:b0:35:91:de:44:8f:e8:d0:c0:
6a:4a:96:95:f9:cd:5d:5c:81:f3:2b:e0:69:99:8e:61:40:fe:
bf:22:bc:b1:8b:5c:22:69:17:02:68:5f:1b:9d:33:b2:a7:6b:
e2:28:e1:23:ff:c5:78:4e:16:83:39:14:ca:aa:3e:6e:29:6a:
56:40:da:5d:4e:94:bc:54:68:49:19:e2:3a:25:e3:f8:24:e1:
81:13:a4:ca:db:bf:34:80:54:ab:86:75:2c:ab:2b:40:c1:1f:
d4:af:87:f6:cb:18:bc:25:6a:43:1e:77:ec:e1:0c:63:13:89:
f0:86:1f:31:71:73:15:77:cf:35:e0:4e:c9:8f:e6:12:a7:90:
49:18:c7:a8:c2:35:fd:a5:1b:0b:76:18:29:70:8c:16:b8:8e:
0a:cc:d0:ab:a9:e7:6e:1c:68:c9:62:dc:a1:b9:81:61:5f:31:
f2:01:dc:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:40:53 2025 by rpki-client