Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031663a3a2f34382d3438203d3e203338353236.roa
File: 323430353a333734303a393031663a3a2f34382d3438203d3e203338353236.roa (raw, json)
Hash identifier: QfERJ5I6/LyF5+UMroee35urZfVcyqQeMQ//52QFnCw=
Subject key identifier: 1E:BB:AB:AC:FF:7B:86:DE:00:01:6A:AD:28:37:C9:12:41:C4:FF:71
Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Certificate serial: 69410E2D9D2FFB67CD80EF1C629EB096E1BD28E0
Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031663a3a2f34382d3438203d3e203338353236.roa
Signing time: Wed 26 Feb 2025 03:00:02 +0000
ROA not before: Wed 26 Feb 2025 02:55:02 +0000
ROA not after: Wed 25 Feb 2026 03:00:02 +0000
asID: 38526
IP address blocks: 2405:3740:901f::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:41:0e:2d:9d:2f:fb:67:cd:80:ef:1c:62:9e:b0:96:e1:bd:28:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D
Validity
Not Before: Feb 26 02:55:02 2025 GMT
Not After : Feb 25 03:00:02 2026 GMT
Subject: CN=1EBBABACFF7B86DE00016AAD2837C91241C4FF71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cf:2c:74:5f:52:d7:b2:2a:30:c5:de:32:5e:
b2:46:80:9c:a5:67:26:4e:8a:8d:61:1b:11:aa:5d:
dc:04:52:c3:c2:07:e8:cf:7e:86:6f:c4:2e:bc:e9:
39:bd:7d:8a:32:5c:b7:30:49:43:f0:66:a8:b8:d0:
74:b4:c2:a7:41:88:39:f0:aa:b2:01:56:94:af:4b:
45:ce:84:49:72:92:ba:3e:4e:65:a3:bc:4e:c6:69:
69:79:30:8e:98:d5:06:99:75:02:cf:2f:b8:a7:bf:
28:fa:fd:84:79:97:f9:97:18:57:93:94:35:4f:5e:
57:ae:03:2b:ea:f6:0f:75:67:61:62:12:24:8d:38:
04:04:40:bb:93:04:9b:d9:4c:ac:c5:f5:66:f5:34:
55:71:de:ef:25:0e:e6:c4:dd:d8:f1:0c:0d:ca:94:
f6:64:b3:54:2f:87:53:96:4c:44:c2:3b:8f:0c:c9:
17:dd:df:da:54:cc:7d:53:6f:be:64:17:07:7f:92:
e0:dd:59:99:ae:f9:a1:70:d3:5c:97:8e:b2:51:56:
c3:09:ea:c5:35:66:d3:d4:0b:8c:c9:4b:40:df:40:
99:9d:1e:21:16:01:96:44:39:c5:b0:a1:ec:58:a2:
94:11:65:c1:e2:c5:ff:2b:cc:da:f1:f8:cb:f5:4c:
d7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BB:AB:AC:FF:7B:86:DE:00:01:6A:AD:28:37:C9:12:41:C4:FF:71
X509v3 Authority Key Identifier:
keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031663a3a2f34382d3438203d3e203338353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:3740:901f::/48
Signature Algorithm: sha256WithRSAEncryption
59:b9:93:51:bd:9f:56:f4:a0:15:87:c9:86:31:a1:af:b2:c5:
f3:81:e8:53:1f:2c:e0:e1:4b:c4:60:bb:79:63:9d:d8:e2:b6:
62:c8:28:40:7a:93:e4:47:01:32:03:a3:72:e0:02:60:fe:01:
5f:5c:6e:f7:e7:41:ff:d7:62:72:cf:29:f5:0d:50:f7:c0:84:
09:96:07:35:2e:cb:7a:73:42:66:92:fd:7f:c0:76:40:40:e9:
88:2d:41:6c:a6:ee:08:73:70:7e:80:ce:42:d4:e9:b8:ee:be:
b1:61:e0:e4:d0:ad:75:7e:a5:81:bd:86:97:af:84:80:45:cd:
c1:11:6e:6a:ae:be:fb:54:d5:0d:c2:23:71:f2:35:64:0a:6d:
62:32:f4:dd:4c:ab:2d:1c:ab:0e:a0:19:a6:bd:26:b1:05:31:
e6:c6:d1:35:0b:1e:6e:12:14:b7:92:21:3f:f0:df:de:d5:09:
e5:00:08:10:01:08:47:e2:a3:8c:d6:bb:7d:8a:2a:e4:21:a8:
72:6f:96:89:22:09:e5:f8:86:22:92:94:ea:2f:9e:d3:14:62:
f5:1a:e4:60:49:96:ba:e0:c8:57:b7:53:ab:1d:57:a2:a5:31:
a1:46:4b:89:8f:b6:03:85:92:ab:a1:98:2e:36:40:40:2b:dc:
83:88:e7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:36:37 2025 by rpki-client