Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137312e302f32342d3234203d3e203436303534.roa
File: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (raw, json)
Hash identifier: x6HUjSxF1Hesr3n3pxIOWyMuhd/gV3tPQ4S5VvjGCt4=
Subject key identifier: 9C:AF:D7:BF:92:EE:1C:81:51:51:2B:49:2C:AD:B4:EB:D1:05:F3:52
Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Certificate serial: 3CE4BE3FEC1074118BF05C3BD0D8640D4B5067A7
Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137312e302f32342d3234203d3e203436303534.roa
Signing time: Mon 01 Jul 2024 01:05:43 +0000
ROA not before: Mon 01 Jul 2024 01:00:43 +0000
ROA not after: Mon 30 Jun 2025 01:05:43 +0000
asID: 46054
IP address blocks: 58.145.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:e4:be:3f:ec:10:74:11:8b:f0:5c:3b:d0:d8:64:0d:4b:50:67:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Validity
Not Before: Jul 1 01:00:43 2024 GMT
Not After : Jun 30 01:05:43 2025 GMT
Subject: CN=9CAFD7BF92EE1C8151512B492CADB4EBD105F352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:74:45:38:b5:22:8c:14:71:ec:34:ca:81:
76:43:bf:3d:cb:16:d1:a0:ab:d5:66:76:79:15:4d:
85:e1:c7:05:9c:5b:ab:a3:e5:19:d4:9f:07:80:fa:
1d:fe:8c:5d:11:fe:ae:83:f2:34:74:8f:72:ba:b4:
a0:4c:e8:02:36:57:36:b5:9d:1c:d1:ff:07:ae:6c:
5d:3b:bf:6b:b9:9e:b3:44:5f:23:d8:8e:f8:16:47:
0c:06:6e:9c:f1:76:df:e6:16:03:b5:9b:ac:db:ba:
d6:15:54:25:79:d2:0d:c3:e9:63:c1:2d:21:10:28:
dc:ac:e7:d3:ff:a5:7a:be:98:19:b2:50:54:c5:4d:
5d:61:1f:12:f6:66:71:d9:5d:b1:6b:ef:54:59:e7:
03:1c:3b:3c:91:f9:1f:89:ec:e5:a1:e9:27:c5:a6:
18:3f:a3:f1:25:47:d8:36:df:0e:0a:88:6b:83:ab:
15:b3:89:69:9c:a4:b0:70:54:5c:a3:cc:ee:d7:cf:
fd:40:17:3a:9b:68:8d:2c:68:02:5f:34:7f:84:83:
89:64:45:1f:a8:40:69:b4:68:f7:2b:52:a0:83:fa:
e4:e8:a7:29:04:04:99:9e:47:56:84:89:ce:77:c9:
e5:a1:9d:bf:56:0a:76:66:7f:f6:3b:e6:e5:ef:8d:
10:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AF:D7:BF:92:EE:1C:81:51:51:2B:49:2C:AD:B4:EB:D1:05:F3:52
X509v3 Authority Key Identifier:
keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137312e302f32342d3234203d3e203436303534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
58.145.171.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:fe:67:9d:27:1b:58:68:a0:ab:97:64:85:41:95:3a:5b:12:
31:48:66:c4:c7:5a:8d:e5:b8:f8:17:e5:61:b4:69:ed:cf:47:
1f:36:fa:be:42:7b:95:40:0d:86:1f:4b:00:77:d6:f0:e0:9c:
5f:e8:3f:7f:b6:8a:12:62:b2:e5:38:4e:b2:fe:6e:a4:4f:a0:
8c:3f:1d:cc:1a:1f:d4:f1:8c:44:32:da:36:86:2e:21:6a:6b:
ba:62:76:d7:58:e9:b1:51:a9:e5:84:7a:16:ee:80:2e:86:60:
24:bd:c4:3c:be:89:aa:c7:eb:ed:cc:bd:24:f6:d6:c5:e5:f1:
ad:23:18:52:ea:ac:8a:60:e0:34:0b:4b:b2:f2:29:5b:13:e2:
be:e6:ef:a4:bd:73:45:e2:93:81:e4:82:c2:72:c3:12:9b:e0:
47:38:2b:7d:8b:cb:a1:35:4c:71:06:ac:9b:63:1c:a3:50:7c:
85:eb:ef:d6:90:60:ae:ff:82:4d:f5:c6:44:d6:49:3f:88:75:
22:42:45:d4:7b:2e:a5:38:8c:c3:f3:7e:2f:a1:e1:50:1e:87:
ab:34:3a:e2:61:42:0e:18:2e:f0:63:97:d7:9b:90:4c:59:be:
3f:34:e2:53:52:96:9c:58:22:57:fb:42:9b:47:33:92:62:a1:
7b:84:9e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:49:24 2025 by rpki-client