Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137352e302f32342d3234203d3e203436303534.roa
File: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (raw, json)
Hash identifier: Rlel+43pEirvrfeffHgQ7cuDwzepsYOgj+qpnAyZmJg=
Subject key identifier: 73:2E:91:A2:43:5D:96:BF:3B:94:A8:9A:66:A4:4D:67:DE:7E:CE:B8
Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Certificate serial: 533A2AF5CFA6560DA77EEA4A766838ECDC870ADB
Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137352e302f32342d3234203d3e203436303534.roa
Signing time: Mon 01 Jul 2024 01:05:44 +0000
ROA not before: Mon 01 Jul 2024 01:00:44 +0000
ROA not after: Mon 30 Jun 2025 01:05:44 +0000
asID: 46054
IP address blocks: 58.145.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:3a:2a:f5:cf:a6:56:0d:a7:7e:ea:4a:76:68:38:ec:dc:87:0a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5
Validity
Not Before: Jul 1 01:00:44 2024 GMT
Not After : Jun 30 01:05:44 2025 GMT
Subject: CN=732E91A2435D96BF3B94A89A66A44D67DE7ECEB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:29:b0:5b:d6:e8:81:8d:72:04:72:d1:ea:27:
84:c4:35:f1:b7:8a:29:55:48:f6:83:03:01:80:5e:
45:a3:1b:91:45:aa:d4:27:84:e2:df:d3:a1:4f:a2:
4a:94:b1:b0:a2:b9:82:f9:f2:6f:80:38:21:58:cc:
51:eb:ef:4e:31:97:9c:21:54:6f:0c:45:fa:c8:a7:
e1:d7:ca:c2:42:79:26:c5:61:cb:28:60:86:a7:a5:
eb:7d:48:6e:e7:be:b0:9f:aa:94:e3:94:e5:d3:92:
09:ac:05:f7:ab:31:ef:a5:f5:33:0a:3b:1f:59:64:
ac:a9:a3:0c:b9:1f:4e:aa:58:f6:84:37:1c:38:c8:
f4:06:8a:27:1b:f3:c3:f2:a7:6f:79:4c:9d:87:f5:
11:86:0d:93:c6:a9:ca:c9:f6:44:db:f6:e9:e7:1e:
31:1a:5b:73:9f:4c:c1:8a:fe:fc:78:7c:62:bc:63:
3f:ef:46:e4:a0:db:b9:59:a5:80:13:a3:44:81:5d:
47:9a:a3:23:db:b8:1e:f5:f3:b4:03:16:1d:f8:1f:
47:c6:da:a0:bf:4a:47:a8:e2:62:5b:e7:46:91:01:
2a:2c:e6:ab:56:69:3e:03:57:f4:39:af:7a:69:21:
6b:0b:23:96:f2:94:a3:d9:ef:87:48:2e:9d:74:9c:
c1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2E:91:A2:43:5D:96:BF:3B:94:A8:9A:66:A4:4D:67:DE:7E:CE:B8
X509v3 Authority Key Identifier:
keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/35382e3134352e3137352e302f32342d3234203d3e203436303534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
58.145.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:29:a1:21:6f:29:68:f8:2c:71:65:91:a3:fd:36:2a:1f:62:
6b:4a:dd:aa:04:c7:65:5a:38:e8:f6:a4:46:0c:0b:e5:da:05:
21:58:12:39:42:43:3c:aa:b6:13:9f:1f:76:96:6b:17:80:97:
62:d1:2f:f9:87:26:81:08:f8:da:42:e3:67:91:c3:ba:e2:d0:
c1:75:32:11:76:23:7b:d5:95:b9:24:71:42:07:6a:75:7c:fe:
f7:0c:bb:f2:e9:c5:2b:27:c7:ab:06:48:bd:d4:54:3a:36:03:
92:97:7c:79:28:68:48:08:3b:2b:10:4a:a9:d8:b1:2e:cd:ea:
e3:cf:bc:6f:eb:99:86:a0:aa:72:af:d9:f2:9a:32:39:80:ff:
27:40:90:f6:76:d4:74:0d:8f:01:4a:df:df:42:77:6c:71:e9:
6d:fd:ea:6d:36:4d:7d:b4:d7:dc:60:36:12:e2:30:32:49:a8:
9a:e3:86:4c:49:27:c1:3f:00:f0:78:1b:93:ec:13:bc:e4:c0:
e6:ca:f5:bc:45:37:cd:29:1a:8f:3e:08:a8:92:02:13:75:ed:
13:d7:26:c1:c4:72:3c:64:57:08:84:4c:58:2f:87:10:72:a6:
69:cd:af:e1:ec:9e:a9:cb:dc:aa:3d:4f:02:ea:e4:8b:ec:05:
f7:cf:44:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:26 2025 by rpki-client