Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa
File: 3131362e36382e3136312e302f32342d3234203d3e203536323436.roa (raw, json)
Hash identifier: VDdbNFzFHNBvEaVT2TBJ5Dxjke4vL7AU1Tm9HHCLKLk=
Subject key identifier: CD:F1:9C:40:4D:9D:8D:3B:73:FA:EB:DE:58:09:EE:92:0F:8F:02:9E
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 5086E156FAAD7C1C811F71A4B85E3373E1513C11
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa
Signing time: Fri 01 Nov 2024 04:00:00 +0000
ROA not before: Fri 01 Nov 2024 03:55:00 +0000
ROA not after: Fri 31 Oct 2025 04:00:00 +0000
asID: 56246
IP address blocks: 116.68.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:86:e1:56:fa:ad:7c:1c:81:1f:71:a4:b8:5e:33:73:e1:51:3c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Nov 1 03:55:00 2024 GMT
Not After : Oct 31 04:00:00 2025 GMT
Subject: CN=CDF19C404D9D8D3B73FAEBDE5809EE920F8F029E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:f8:e3:cc:c0:b3:7e:58:5f:66:c2:4c:a0:
3b:15:db:47:a3:ad:8d:15:e0:4f:55:34:ae:1f:63:
33:fa:ad:86:22:77:a8:73:71:c8:35:7c:ed:4a:13:
fb:9d:18:30:95:9f:0e:5e:99:15:91:78:a9:bc:98:
e4:c9:92:2c:da:16:ca:38:a3:bf:0d:ab:de:e8:96:
96:1c:a1:ab:d8:b8:26:3f:03:e5:e3:84:35:2b:83:
b2:a1:4d:b0:c9:14:c6:8a:4f:eb:c1:e5:93:00:8b:
9d:75:1f:10:ae:16:35:2b:db:ba:e7:78:5d:f7:a5:
c0:fa:1b:20:d5:a9:ab:d2:43:90:20:75:e1:e6:70:
65:ed:be:b2:c0:5c:fc:31:5a:0a:10:80:17:2b:f3:
a3:56:62:a7:46:73:64:de:02:3e:21:fa:b4:7b:6b:
cf:3c:21:8c:5f:3d:aa:b7:2f:32:7c:fe:2c:15:d0:
97:81:f6:4c:4a:c6:16:19:03:84:e7:dd:ff:48:60:
a1:59:fa:f4:eb:31:be:09:35:43:3a:22:79:8a:dc:
ce:d0:ff:6d:8e:ca:e9:d7:07:1a:2f:41:de:73:2f:
5f:44:dc:c4:7a:c9:c4:a5:81:f3:7d:4f:b6:8b:28:
ae:25:ec:db:c6:e4:e8:4a:92:8d:b8:b9:9f:b9:3c:
c7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F1:9C:40:4D:9D:8D:3B:73:FA:EB:DE:58:09:EE:92:0F:8F:02:9E
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136312e302f32342d3234203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.68.161.0/24
Signature Algorithm: sha256WithRSAEncryption
52:9b:cc:09:4d:65:61:54:d3:b7:05:67:90:b3:c6:8a:36:e4:
84:66:06:e3:5b:04:8a:c9:22:9b:46:3b:56:e0:cc:ab:df:3d:
5f:6f:30:8c:07:a7:41:39:4f:10:dd:86:6f:8c:49:ab:cd:0d:
c8:96:83:d2:8c:67:b6:55:5e:59:1e:4f:33:c4:d7:37:a6:d2:
b6:8c:0d:06:58:6a:d8:c3:b1:67:14:c1:58:19:b4:0c:00:d2:
3a:33:a5:3e:0b:ad:ca:c0:ff:95:57:ea:18:a8:1c:8c:9c:19:
bc:40:b8:92:f4:14:52:19:eb:57:16:36:af:c4:af:2d:28:5d:
e0:a5:ea:ba:44:cb:58:0a:a1:cc:d8:1c:ff:06:b6:c8:f0:23:
9a:52:37:e3:8e:ad:4a:2f:8e:34:b7:f5:c0:b3:01:5f:d2:6e:
c7:24:07:2e:49:f7:7c:ff:4f:e5:c2:18:0f:a9:ce:30:95:36:
e1:de:08:24:d1:19:e1:dc:8e:20:78:18:71:03:cf:03:5a:48:
46:b6:09:e4:37:91:6e:15:38:58:7c:b0:4f:ef:4a:14:1e:7a:
d6:5b:79:f0:1e:b0:a3:72:37:28:2d:b6:be:a6:cc:fa:ae:8b:
15:b1:ff:e2:4b:03:7f:ad:27:30:44:82:e1:14:6b:e9:70:73:
c0:29:ea:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:32 2025 by rpki-client