Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa
File: 3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa (raw, json)
Hash identifier: OvyvdheJuMzbru6Ky1R20fFBCIcjoCjs3UJ3tnNrBeA=
Subject key identifier: 5D:EE:58:0B:90:C1:DE:21:42:9B:85:4C:79:0A:0A:DF:DC:F1:25:38
Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Certificate serial: 25275E4C0863B1FF6057EA2214D814A29B9A47B4
Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa
Signing time: Tue 17 Sep 2024 00:36:31 +0000
ROA not before: Tue 17 Sep 2024 00:31:31 +0000
ROA not after: Tue 16 Sep 2025 00:36:31 +0000
asID: 38149
IP address blocks: 150.129.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:27:5e:4c:08:63:b1:ff:60:57:ea:22:14:d8:14:a2:9b:9a:47:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Validity
Not Before: Sep 17 00:31:31 2024 GMT
Not After : Sep 16 00:36:31 2025 GMT
Subject: CN=5DEE580B90C1DE21429B854C790A0ADFDCF12538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:be:4d:45:9e:be:3e:db:0d:36:3e:29:da:
1d:14:5d:e8:36:27:cf:c5:fb:60:1b:52:43:28:15:
f9:ba:ea:59:85:fb:14:5b:0d:6b:70:d1:ba:c3:fa:
13:85:98:14:9b:8d:a2:29:16:77:2b:6c:0a:d0:8b:
9c:5b:d8:db:f6:be:6a:c1:bb:eb:a8:b9:cc:e6:ce:
f2:89:87:93:6e:ea:ef:e6:84:f6:c7:ba:46:b4:0d:
57:47:5a:0c:4a:ef:35:23:4a:09:5b:7a:0e:73:01:
65:77:b4:46:17:63:4e:3a:e9:3f:16:02:7a:71:1a:
97:7e:10:a5:6b:eb:54:ac:19:59:1e:b8:69:a2:ff:
2b:49:38:73:4b:92:5a:b5:c3:27:cc:00:e9:2c:d8:
2d:17:6a:b9:fc:cb:5c:20:d9:9e:8c:f9:ef:bb:3c:
07:22:66:96:01:64:08:17:08:ac:82:be:7b:6c:1d:
da:82:45:06:b9:fd:80:39:9b:f5:8f:14:21:15:53:
f1:93:43:8f:5a:ba:f3:23:07:a1:6d:87:06:9a:1e:
2a:4f:ba:37:27:9b:16:32:7b:a9:c0:67:99:1e:5b:
a8:dc:10:62:46:11:ce:6f:40:a9:76:5f:20:d9:ff:
5e:0f:c8:15:ba:6a:e2:eb:ad:c8:32:e6:14:65:bd:
17:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EE:58:0B:90:C1:DE:21:42:9B:85:4C:79:0A:0A:DF:DC:F1:25:38
X509v3 Authority Key Identifier:
keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3135302e3132392e3138382e302f32342d3234203d3e203338313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.129.188.0/24
Signature Algorithm: sha256WithRSAEncryption
74:16:44:a8:4e:b8:76:71:59:5e:4b:76:96:14:85:f4:25:c2:
48:b9:cc:ad:d4:55:f9:4d:54:58:27:20:34:fb:70:84:49:f2:
6a:fd:39:17:a2:14:56:03:db:2c:de:c4:63:c4:0d:21:bc:96:
89:4f:b8:d3:fe:16:b9:aa:b8:73:40:63:3a:0c:5d:4f:aa:04:
86:1c:e9:49:aa:ec:74:27:c6:00:b8:f6:68:f3:0b:b7:d6:72:
ea:25:ed:20:41:3b:82:57:4e:fb:8b:a8:6b:31:8d:d3:18:c8:
dc:02:4a:c0:36:45:0e:3e:74:bd:4d:cf:6e:94:56:40:7d:c5:
07:d1:87:43:a1:4a:52:01:f7:f2:47:11:3b:8b:55:62:68:60:
af:26:40:6d:af:20:23:46:08:88:ea:c6:a8:fd:4b:e3:dd:5e:
63:57:e6:c2:5e:d8:b6:a1:ca:e3:16:02:f0:63:7a:66:c8:28:
d2:42:81:69:d1:72:55:4e:bd:dc:ed:ce:73:d1:79:fc:cd:55:
e8:ec:81:60:0c:76:c0:4d:b4:da:30:bf:e7:cb:09:ac:a5:46:
85:a7:97:9b:40:34:cb:59:2f:7a:57:f9:19:2c:2e:25:d6:f4:
41:f4:f7:75:f1:04:9b:23:2f:5f:2b:9f:a8:5e:93:f9:20:22:
44:b0:b8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:52:45 2025 by rpki-client