Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa
File: 3131362e36382e3136332e302f32342d3234203d3e203536323436.roa (raw, json)
Hash identifier: ekgtrO14u1OZDLyQQfuVbfInYWbsBsWfML58w4Bv9ZU=
Subject key identifier: 21:AF:7D:1A:F6:2F:98:09:2C:F0:F6:48:76:C1:37:5F:25:81:70:36
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 66E7D7BF1D7B4DC32493EDC5E9D237D91981D4CF
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa
Signing time: Mon 01 Jul 2024 01:03:07 +0000
ROA not before: Mon 01 Jul 2024 00:58:07 +0000
ROA not after: Mon 30 Jun 2025 01:03:07 +0000
asID: 56246
IP address blocks: 116.68.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:e7:d7:bf:1d:7b:4d:c3:24:93:ed:c5:e9:d2:37:d9:19:81:d4:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Jul 1 00:58:07 2024 GMT
Not After : Jun 30 01:03:07 2025 GMT
Subject: CN=21AF7D1AF62F98092CF0F64876C1375F25817036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:b7:7f:d5:36:55:db:02:8c:dd:a9:4c:b2:
ce:08:9d:13:5e:6c:5f:4c:ef:56:81:d8:3d:a0:e5:
7a:1c:bf:d1:e5:41:fa:df:fd:96:bb:88:d2:44:e6:
43:1c:b7:b6:28:97:7d:f2:78:64:58:c8:7a:b6:e4:
7e:49:b2:24:4f:15:0b:9b:9c:3c:c2:80:0c:65:20:
dd:a1:16:b2:88:84:3c:88:99:08:d6:61:72:3c:ff:
3d:af:9b:48:b4:b8:91:94:0c:c0:f5:92:d1:b9:f3:
3d:21:5d:be:5c:39:8d:bf:7f:27:6a:a7:57:91:3d:
5f:73:05:64:50:36:fb:64:ef:82:8e:e1:a2:45:b6:
c8:05:ea:2d:ef:0b:ee:73:e8:96:5b:28:6b:c9:41:
09:7b:fd:fd:3f:2a:6b:aa:78:cf:62:b0:4f:69:92:
68:77:86:de:31:9f:07:98:ec:13:f0:cc:c2:34:0a:
b9:ca:43:83:cd:53:fa:04:c1:b5:8e:47:73:d6:d1:
a2:0b:bd:b5:6b:33:0e:94:05:13:de:94:95:22:2a:
ca:73:43:6a:38:ac:e2:44:94:2c:91:9f:29:81:63:
14:68:45:3c:ee:6c:13:04:68:d7:ba:f4:88:26:53:
6e:f4:43:b1:68:ca:37:60:25:df:05:32:af:74:b9:
78:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AF:7D:1A:F6:2F:98:09:2C:F0:F6:48:76:C1:37:5F:25:81:70:36
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136332e302f32342d3234203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.68.163.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ba:8f:9a:5e:90:1d:69:1e:60:00:f2:11:d4:e9:ed:30:7a:
a9:0f:d6:ef:bd:5b:80:84:a1:d5:d5:07:39:73:54:67:e5:30:
55:1c:cb:cc:4e:a7:f9:51:0b:1c:86:47:d7:81:cb:da:ee:64:
fb:26:49:21:fc:42:78:af:42:ca:f3:8e:67:eb:0c:f4:4d:0b:
83:66:36:a4:46:2d:88:58:1e:cb:bb:57:f2:9d:1b:88:f9:00:
c5:0d:b9:b0:b7:ba:2a:f9:f8:0c:14:a0:4c:ab:01:b0:4d:0e:
40:76:95:7a:0f:e9:b2:99:53:2d:11:72:b3:7b:a5:e8:08:cd:
7e:35:f1:c3:53:36:df:87:c8:44:ae:0b:ca:7b:cc:5e:3e:dd:
1a:d7:8e:79:40:3d:ce:a1:e6:c9:f0:64:35:91:ea:db:87:16:
c6:c1:10:2b:60:60:e0:e7:30:60:b3:ff:e9:d9:d3:c5:c3:0e:
45:67:6f:81:1b:d1:31:72:fb:c4:11:63:8f:53:62:c7:d8:db:
ba:83:e5:aa:56:c8:93:dc:b0:08:d0:9c:c0:78:d9:69:3e:b6:
ad:35:df:5e:16:8d:83:9c:79:a3:eb:bc:d5:63:7f:77:4e:54:
3c:ec:85:9f:b9:8e:15:8b:bc:a0:e2:85:0f:f5:af:82:8b:0a:
d5:7f:fb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:58 2025 by rpki-client