Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: hXn0i7Nh2/rLMoCIDgyO5o3VucIUe6Jz3aHYSBC9lDA=
Subject key identifier: 64:C4:4D:9C:19:F8:66:DD:C6:A2:EC:E9:2C:08:F7:07:2A:68:54:02
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 12111DF4626A3B05D57E301F349D23025F653D51
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 03:00:02 +0000
ROA not before: Wed 26 Feb 2025 02:55:02 +0000
ROA not after: Wed 25 Feb 2026 03:00:02 +0000
asID: 38526
IP address blocks: 2405:3740:9019::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:11:1d:f4:62:6a:3b:05:d5:7e:30:1f:34:9d:23:02:5f:65:3d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 02:55:02 2025 GMT
Not After : Feb 25 03:00:02 2026 GMT
Subject: CN=64C44D9C19F866DDC6A2ECE92C08F7072A685402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:7b:1b:6a:44:89:36:5d:bc:b5:e4:c6:44:
b0:91:6b:8d:74:bf:4a:83:7e:65:7b:b8:15:68:0a:
72:94:c6:a4:50:85:7f:4f:d2:2b:27:10:d9:aa:1c:
4a:e8:2e:4f:fe:a3:31:0b:fe:4e:15:a5:c5:fe:63:
0a:db:fc:f4:37:e0:eb:ea:a2:e5:39:75:e4:6c:e2:
70:71:30:07:98:16:da:1b:49:0f:69:d8:d6:0c:f6:
05:2b:d8:7f:a6:61:78:69:e8:64:c6:0a:8e:3b:bd:
aa:83:36:b9:c3:6d:92:94:ef:d0:31:16:36:f1:0c:
ff:ed:aa:bf:62:10:7d:40:ff:fd:3f:da:ee:ad:7b:
ee:bb:a0:f9:b8:b8:8a:77:45:bd:00:3c:10:a7:bc:
de:d7:11:51:ad:e7:89:b9:89:94:fe:85:bb:2f:77:
d0:11:db:76:03:07:aa:68:fd:c5:d4:cb:31:27:b2:
b6:f4:91:2d:b1:a5:74:4a:66:f6:ea:f6:bd:2f:d9:
df:77:43:37:5e:92:4b:fb:b1:81:a1:05:ae:c2:f0:
7a:80:82:e2:42:01:a7:2c:2c:46:6b:02:16:61:50:
86:ac:0e:d7:f4:08:99:f9:5b:06:ca:fc:3f:6c:d5:
75:52:8e:a7:a5:3a:18:ee:ca:d3:62:0c:a6:ae:87:
d2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C4:4D:9C:19:F8:66:DD:C6:A2:EC:E9:2C:08:F7:07:2A:68:54:02
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:9019::/48
Signature Algorithm: sha256WithRSAEncryption
d7:bf:ec:37:69:57:e4:8c:25:2d:55:a0:b4:af:d4:24:20:43:
1b:63:a1:d1:29:33:37:45:59:5d:2c:a2:11:e9:ac:e9:c3:0d:
a1:f4:2e:c4:dc:3b:6c:a9:43:e6:63:e6:e3:fa:95:ca:5e:0c:
64:d5:91:2a:e9:be:9d:67:eb:02:4c:a0:77:06:6f:73:44:0d:
a6:99:38:80:28:f9:53:a8:95:ef:32:fb:6c:ce:06:0b:9b:e9:
81:12:67:95:7a:8c:a0:55:06:6a:2d:35:c4:47:be:72:3b:63:
c5:ee:d6:55:cb:a7:7d:f1:b4:94:5c:e8:50:f3:b7:0f:18:57:
b7:55:34:d1:27:08:7e:70:05:76:a8:05:d4:2c:ec:86:b8:04:
6c:26:0e:21:4e:78:df:56:73:f9:65:70:30:31:f0:48:32:a3:
7d:dd:5b:47:c0:83:84:e3:5a:95:03:cb:d2:e6:38:05:15:26:
35:bd:88:0f:64:62:09:3d:02:07:49:63:14:75:2d:ad:fb:f1:
9f:93:6f:5b:25:bd:95:29:b6:3e:46:0d:01:98:00:12:16:34:
0d:0e:0d:c9:d0:6c:81:ac:29:77:e1:7b:b4:cd:28:00:14:59:
3e:90:d6:d4:45:15:53:0f:8b:fc:2a:a9:d3:39:04:91:8d:de:
45:d6:58:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:21 2025 by rpki-client