Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa
File: 34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa (raw, json)
Hash identifier: /cpzswwTNxt4PA+y5NQBd3j9f6qF16C52KUQtHtdF0o=
Subject key identifier: A4:4E:42:6E:33:B6:C4:61:D6:C0:46:D0:12:EB:DB:EB:7A:17:C0:C0
Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087
Certificate serial: 281AD9CF7711EA9ACA86B86A37C88473EF8307E1
Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:02:44 +0000
ROA not before: Mon 01 Jul 2024 00:57:44 +0000
ROA not after: Mon 30 Jun 2025 01:02:44 +0000
asID: 131717
IP address blocks: 45.118.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:1a:d9:cf:77:11:ea:9a:ca:86:b8:6a:37:c8:84:73:ef:83:07:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087
Validity
Not Before: Jul 1 00:57:44 2024 GMT
Not After : Jun 30 01:02:44 2025 GMT
Subject: CN=A44E426E33B6C461D6C046D012EBDBEB7A17C0C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5f:72:65:f6:a1:94:87:25:3a:2c:6d:d1:0f:
d9:27:bc:e2:ad:31:a3:70:d9:bf:fc:72:2e:37:b3:
ad:20:dc:b8:ef:a1:22:31:7c:b7:b4:f5:99:e4:68:
5d:2f:06:ee:a7:39:47:e8:25:6f:31:34:04:32:ee:
b3:64:5f:03:c7:cb:98:43:d3:ae:86:43:4c:47:ed:
b8:13:0f:db:89:eb:df:17:22:fa:88:10:31:17:02:
e0:9c:4d:78:5f:ba:f1:5f:cf:dc:52:93:12:db:2b:
83:f3:ae:56:4c:22:53:7f:51:4c:d6:ac:17:3f:1e:
1c:19:dc:29:4d:d0:16:f6:0a:5e:0e:2b:aa:4a:5b:
6c:e9:9c:9e:5a:72:1f:02:e8:f2:41:81:70:9f:25:
36:ad:c0:ea:a3:3d:b8:e6:1e:6a:7b:67:88:39:64:
f5:13:61:30:de:e8:70:f0:5a:09:08:55:15:f4:da:
89:3e:c6:19:d8:c7:f6:3f:f1:38:75:00:28:fa:aa:
e8:0a:e8:0b:a0:4b:77:e1:b1:f2:7f:3b:69:fa:f9:
dc:06:cb:ef:fd:3c:4f:9f:77:af:87:72:f6:31:10:
24:6f:fb:c7:76:63:8b:3c:16:20:12:b7:e7:6c:5d:
23:e4:47:15:a4:3c:6b:42:04:db:2c:fd:2d:3a:ce:
7e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4E:42:6E:33:B6:C4:61:D6:C0:46:D0:12:EB:DB:EB:7A:17:C0:C0
X509v3 Authority Key Identifier:
keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.118.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:5d:19:9e:77:2d:55:a9:0c:2f:5d:9a:d5:3b:5d:e9:a8:3e:
26:57:96:e4:ac:b4:ba:52:f6:3b:cf:49:2b:eb:43:59:5e:16:
5e:07:d1:be:92:fd:2e:72:4b:f2:cb:c5:74:a9:c4:e6:61:bd:
07:c0:4d:04:4f:3d:01:08:7f:36:36:29:9a:5e:8e:2e:79:92:
e2:86:bd:69:8f:2b:d2:92:d2:ff:66:18:15:84:fc:5f:55:18:
14:08:c0:00:66:9c:66:a6:1a:af:eb:16:ca:f4:da:ef:7e:29:
08:3c:ba:74:fe:1b:0a:fd:76:fa:c5:ae:72:70:e7:48:53:a5:
1d:de:bc:44:70:7a:51:dc:bb:67:05:e5:09:60:08:1e:a1:6c:
e1:67:64:96:63:21:4b:ad:28:2e:7b:a4:97:4f:93:bf:fd:4a:
b2:06:2d:8c:ea:c3:26:6e:e7:e0:1e:48:ee:91:da:6e:0f:c4:
13:50:9b:b3:ae:65:be:03:9d:91:73:59:69:3a:10:49:e6:9a:
9e:58:6a:1b:5e:6f:f1:71:dd:f1:f3:e1:60:99:18:19:d8:c2:
74:dc:f6:91:f3:0c:76:1d:49:fc:6a:86:b8:8b:b1:c1:3f:1f:
93:b9:77:38:64:03:4a:92:cd:b7:8e:5c:dd:1c:c1:f8:bb:59:
00:fa:e7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:43:54 2025 by rpki-client