Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137322e302f32342d3234203d3e203436303534.roa
File: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (raw, json)
Hash identifier: loxHv0+F3ZLNQEYmkghwWbkz+YGFFT2QGW5V6emi7YY=
Subject key identifier: 45:1C:DF:22:47:09:43:2B:C6:9F:C8:EA:D7:53:D0:4F:06:A4:6E:3B
Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Certificate serial: 10951F1CAC623E1AAABE480FDDF2A69F27924187
Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137322e302f32342d3234203d3e203436303534.roa
Signing time: Mon 01 Jul 2024 01:05:44 +0000
ROA not before: Mon 01 Jul 2024 01:00:44 +0000
ROA not after: Mon 30 Jun 2025 01:05:44 +0000
asID: 46054
IP address blocks: 58.145.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:95:1f:1c:ac:62:3e:1a:aa:be:48:0f:dd:f2:a6:9f:27:92:41:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Validity
Not Before: Jul 1 01:00:44 2024 GMT
Not After : Jun 30 01:05:44 2025 GMT
Subject: CN=451CDF224709432BC69FC8EAD753D04F06A46E3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e5:d8:59:bd:a6:bc:6a:99:20:4b:1d:a4:e6:
d6:f1:af:ff:0c:b2:96:f9:85:b4:97:d1:11:ea:83:
fb:5e:00:ca:29:e7:96:48:2a:c2:37:3e:24:af:27:
61:8a:2a:97:81:a1:7e:34:7c:e3:8f:ce:2b:29:65:
6a:05:75:97:b3:b3:74:95:ea:fe:95:e3:b4:73:9b:
c3:39:b5:76:de:22:c0:e5:e4:56:f0:9a:60:5d:d8:
58:4a:4b:4d:7e:d4:80:f9:7e:a9:23:42:62:ff:07:
29:cb:8c:b6:6a:6a:f1:00:b4:4f:73:f1:d3:9c:90:
bf:8e:e1:49:51:4e:e8:19:44:1f:75:2d:30:ac:51:
f2:d0:34:32:b0:be:2f:19:b7:32:c3:95:70:c2:c3:
05:e1:b0:21:9a:7c:0c:64:38:86:05:f9:ad:e4:30:
19:60:2a:e8:37:b8:96:d4:22:1f:be:d7:48:44:f5:
ef:8a:4a:29:fb:f5:8b:a0:2f:f0:e9:cc:bd:f3:1d:
0b:90:24:2b:30:a0:12:e9:dc:a1:51:69:ab:e2:7c:
01:02:a6:3f:5e:ad:4a:94:a8:be:f7:86:cb:9b:c0:
bc:67:98:de:e1:f7:6a:be:7b:bc:9a:75:7b:31:e8:
c7:8f:1e:16:1e:68:18:f1:01:aa:ba:f1:8a:de:fb:
f1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:1C:DF:22:47:09:43:2B:C6:9F:C8:EA:D7:53:D0:4F:06:A4:6E:3B
X509v3 Authority Key Identifier:
keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137322e302f32342d3234203d3e203436303534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
58.145.172.0/24
Signature Algorithm: sha256WithRSAEncryption
93:35:f0:31:14:1c:25:c0:68:94:fd:3e:c0:b5:c2:0a:64:08:
6a:3e:60:e4:1d:27:09:05:2e:0a:b2:16:52:23:73:26:a3:15:
a6:f8:9e:8d:1a:2d:28:73:2b:c6:aa:72:4d:49:f3:82:71:f5:
fc:11:03:ed:5b:98:48:fb:43:5b:79:15:a4:c2:72:ba:a5:09:
42:eb:60:66:89:b5:18:7f:a0:b4:f9:ef:80:6c:35:d7:89:48:
f9:c3:d2:ed:8c:df:b9:82:20:31:72:16:c4:37:aa:45:d3:4e:
3a:09:02:a7:8c:ed:5b:57:2d:e9:75:cd:62:74:4a:3b:41:3e:
87:e4:19:1d:71:4c:9f:ec:db:a4:a6:42:29:0e:f5:9d:e7:20:
0e:f2:d8:d7:0a:05:f8:ad:ea:f4:ff:75:a2:1d:9d:1c:18:d6:
a1:13:52:0f:6d:67:09:57:18:2c:e9:68:29:b6:bd:31:53:95:
e9:1f:63:1b:a8:f0:a7:a8:59:a1:94:d8:58:5e:20:7a:39:bd:
0f:55:06:42:86:47:14:8d:12:89:6f:7d:22:28:22:b6:19:b7:
a6:b0:51:c3:9c:77:32:70:e2:bc:f9:5d:c5:63:61:4c:ea:7b:
50:5d:aa:b7:a1:0c:e3:b5:9f:14:43:8e:22:b4:d8:76:40:d4:
7f:6b:ad:9f
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUEJUfHKxiPhqqvkgP3fKmnyeSQYcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF
QjlDOUNFNTAeFw0yNDA3MDEwMTAwNDRaFw0yNTA2MzAwMTA1NDRaMDMxMTAvBgNV
BAMTKDQ1MUNERjIyNDcwOTQzMkJDNjlGQzhFQUQ3NTNEMDRGMDZBNDZFM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85dhZvaa8apkgSx2k5tbxr/8M
spb5hbSX0RHqg/teAMop55ZIKsI3PiSvJ2GKKpeBoX40fOOPzispZWoFdZezs3SV
6v6V47Rzm8M5tXbeIsDl5FbwmmBd2FhKS01+1ID5fqkjQmL/BynLjLZqavEAtE9z
8dOckL+O4UlRTugZRB91LTCsUfLQNDKwvi8ZtzLDlXDCwwXhsCGafAxkOIYF+a3k
MBlgKug3uJbUIh++10hE9e+KSin79YugL/DpzL3zHQuQJCswoBLp3KFRaavifAEC
pj9erUqUqL73hsubwLxnmN7h92q+e7yadXsx6MePHhYeaBjxAaq68Yre+/E9AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQURRzfIkcJQyvGn8jq11PQTwakbjswHwYDVR0j
BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5
NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD
OUNFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZjMwOTM2LWM3NTAtNDMzYi05
YzJhLThmZjVmMzhlNjNkNC8wLzM1MzgyZTMxMzQzNTJlMzEzNzMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADqRrDANBgkqhkiG
9w0BAQsFAAOCAQEAkzXwMRQcJcBolP0+wLXCCmQIaj5g5B0nCQUuCrIWUiNzJqMV
pviejRotKHMrxqpyTUnzgnH1/BED7VuYSPtDW3kVpMJyuqUJQutgZom1GH+gtPnv
gGw114lI+cPS7YzfuYIgMXIWxDeqRdNOOgkCp4ztW1ct6XXNYnRKO0E+h+QZHXFM
n+zbpKZCKQ71necgDvLY1woF+K3q9P91oh2dHBjWoRNSD21nCVcYLOloKba9MVOV
6R9jG6jwp6hZoZTYWF4gejm9D1UGQoZHFI0SiW99Iigithm3prBRw5x3MnDivPld
xWNhTOp7UF2qt6EM47WfFEOOIrTYdkDUf2utnw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:51:52 2025 by rpki-client