Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa
File: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (raw, json)
Hash identifier: pui7zb2XJ4+X3ruOIeMi3Iddl1A0mCCFNXvLOJrEw2o=
Subject key identifier: 5E:44:4C:E6:B9:97:34:70:AE:E6:9B:F6:32:97:BF:6D:4A:42:67:94
Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Certificate serial: 4F69495E3AAD60D26AF1E83870C4899760DD9E8C
Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa
Signing time: Sat 20 Jul 2024 13:00:00 +0000
ROA not before: Sat 20 Jul 2024 12:55:00 +0000
ROA not after: Sat 19 Jul 2025 13:00:00 +0000
asID: 24534
IP address blocks: 58.147.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:69:49:5e:3a:ad:60:d2:6a:f1:e8:38:70:c4:89:97:60:dd:9e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Validity
Not Before: Jul 20 12:55:00 2024 GMT
Not After : Jul 19 13:00:00 2025 GMT
Subject: CN=5E444CE6B9973470AEE69BF63297BF6D4A426794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:87:b1:eb:0a:c7:11:b0:28:b2:d2:32:8e:
3e:de:d7:af:c4:cf:4b:52:a4:d1:cb:51:a0:72:45:
06:d6:98:9a:f2:27:e3:6a:17:dc:97:02:7e:8b:05:
2d:6e:33:ca:9e:4d:dc:2d:48:e0:35:17:9d:0c:b0:
00:af:4c:98:a3:5b:f7:1f:57:07:d4:cf:c5:bb:ad:
dd:7b:f1:36:40:a8:21:92:9e:09:27:c2:88:98:4b:
d6:85:2b:09:7a:2d:1a:fd:eb:d4:a8:11:34:b3:ba:
6b:72:0d:34:34:0b:be:c8:96:59:80:a0:a5:40:bd:
16:c4:3e:56:ad:2c:90:28:50:80:5b:66:91:7d:b5:
2f:0b:43:3e:f0:f8:6f:a5:cf:63:3b:0c:26:82:43:
f4:c7:5a:ec:30:6b:d3:66:c9:47:43:f3:8b:70:46:
ac:43:d1:f8:df:20:37:15:b3:c6:83:e2:77:e0:04:
63:1a:6c:73:44:11:ce:46:61:9e:38:e5:3e:f3:8e:
23:39:00:f2:df:0f:15:c8:c5:6e:56:66:5c:23:7f:
d7:90:a4:41:cd:0b:2f:ff:d6:48:58:1f:ed:5a:46:
7f:7b:b1:24:45:d6:84:0f:0f:55:a6:23:55:1a:73:
db:c5:50:05:7d:50:cd:bc:ac:2a:ca:7e:e1:55:5d:
d3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:4C:E6:B9:97:34:70:AE:E6:9B:F6:32:97:BF:6D:4A:42:67:94
X509v3 Authority Key Identifier:
keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/35382e3134372e3138342e302f32342d3234203d3e203234353334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
58.147.184.0/24
Signature Algorithm: sha256WithRSAEncryption
05:05:47:e3:e5:fb:72:c4:8b:1c:57:80:29:9d:b6:7f:2f:ba:
0c:2b:dd:0c:79:5e:5a:39:11:bf:05:70:4c:0e:0e:53:bb:9d:
c3:da:5d:56:4d:2e:c9:53:58:0c:f6:47:98:d8:30:a0:8a:3a:
ed:ad:90:7e:22:0d:8e:ad:79:ba:5f:6e:d8:95:70:c1:4b:a6:
39:dd:91:e9:b6:34:75:cd:56:98:27:43:fa:d2:c9:9a:94:7c:
c0:47:65:8c:b8:3a:24:6c:c9:ba:70:13:5f:f5:20:00:22:f5:
7f:26:7f:10:3f:55:bb:9f:14:bd:a9:07:d3:fa:0e:48:9f:49:
1b:6c:cc:b7:a1:56:a7:dc:bf:81:63:c1:0f:0f:dd:61:3c:7b:
35:82:c0:42:47:58:9c:7b:c2:63:e2:66:f6:ed:d0:02:a4:17:
35:a8:5d:88:70:37:b1:32:11:02:06:3b:1b:bb:ca:e5:79:80:
57:d5:4b:3d:ae:44:14:63:d6:15:71:44:b7:e4:72:fa:23:40:
ca:b5:2c:66:0c:42:39:75:d0:cd:ea:26:fb:47:9b:44:1c:63:
36:2a:d8:7f:82:f9:34:e7:61:95:37:27:26:de:df:b9:21:51:
56:d3:14:43:1f:55:0b:be:3e:f1:21:16:a6:09:41:30:bd:40:
6b:bc:9f:7a
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUT2lJXjqtYNJq8eg4cMSJl2DdnowwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF
NzUyNjNENzAeFw0yNDA3MjAxMjU1MDBaFw0yNTA3MTkxMzAwMDBaMDMxMTAvBgNV
BAMTKDVFNDQ0Q0U2Qjk5NzM0NzBBRUU2OUJGNjMyOTdCRjZENEE0MjY3OTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXpYex6wrHEbAostIyjj7e16/E
z0tSpNHLUaByRQbWmJryJ+NqF9yXAn6LBS1uM8qeTdwtSOA1F50MsACvTJijW/cf
VwfUz8W7rd178TZAqCGSngknwoiYS9aFKwl6LRr969SoETSzumtyDTQ0C77IllmA
oKVAvRbEPlatLJAoUIBbZpF9tS8LQz7w+G+lz2M7DCaCQ/THWuwwa9NmyUdD84tw
RqxD0fjfIDcVs8aD4nfgBGMabHNEEc5GYZ445T7zjiM5APLfDxXIxW5WZlwjf9eQ
pEHNCy//1khYH+1aRn97sSRF1oQPD1WmI1Uac9vFUAV9UM28rCrKfuFVXdP/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUXkRM5rmXNHCu5pv2Mpe/bUpCZ5QwHwYDVR0j
BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF
NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy
NjNENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h
M2NiLWNlOGIzMjZiOGY3MS8wLzM1MzgyZTMxMzQzNzJlMzEzODM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqTuDANBgkqhkiG
9w0BAQsFAAOCAQEABQVH4+X7csSLHFeAKZ22fy+6DCvdDHleWjkRvwVwTA4OU7ud
w9pdVk0uyVNYDPZHmNgwoIo67a2QfiINjq15ul9u2JVwwUumOd2R6bY0dc1WmCdD
+tLJmpR8wEdljLg6JGzJunATX/UgACL1fyZ/ED9Vu58UvakH0/oOSJ9JG2zMt6FW
p9y/gWPBDw/dYTx7NYLAQkdYnHvCY+Jm9u3QAqQXNahdiHA3sTIRAgY7G7vK5XmA
V9VLPa5EFGPWFXFEt+Ry+iNAyrUsZgxCOXXQzeom+0ebRBxjNirYf4L5NOdhlTcn
Jt7fuSFRVtMUQx9VC74+8SEWpglBML1Aa7yfeg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:05:46 2025 by rpki-client