Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa
File: 3131362e36382e3136382e302f32342d3234203d3e203536323436.roa (raw, json)
Hash identifier: SOZv6U2grR/lFgs4nL2ttidzPqo22IwdrV48Ef59WBw=
Subject key identifier: FD:36:FD:E6:20:F8:01:F2:8C:93:66:A5:19:34:85:6E:97:85:7C:6F
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 2F84E5522423FE3E6A4964A2F58534724C610426
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa
Signing time: Mon 01 Jul 2024 01:03:08 +0000
ROA not before: Mon 01 Jul 2024 00:58:08 +0000
ROA not after: Mon 30 Jun 2025 01:03:08 +0000
asID: 56246
IP address blocks: 116.68.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:84:e5:52:24:23:fe:3e:6a:49:64:a2:f5:85:34:72:4c:61:04:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Jul 1 00:58:08 2024 GMT
Not After : Jun 30 01:03:08 2025 GMT
Subject: CN=FD36FDE620F801F28C9366A51934856E97857C6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:d9:5b:ee:64:a0:8b:a9:bd:0a:ce:50:40:
37:e4:60:f9:8c:de:c4:58:5f:40:20:5a:17:34:94:
24:9a:95:dd:4f:72:0a:b6:30:2e:27:c1:a3:dc:48:
9b:d7:5d:3d:ae:20:51:6b:c8:ca:1c:4a:61:96:7d:
25:42:2c:e2:2b:af:8f:34:47:8a:56:e3:cb:ea:82:
ce:f6:47:2b:cc:21:b5:95:cb:67:1b:63:2e:d4:1e:
e7:df:5d:61:aa:02:6b:19:a1:8e:81:95:f3:45:88:
6d:97:9c:d6:5b:09:09:f1:ad:14:13:af:1f:5c:2c:
85:9a:1c:30:cc:4a:1e:66:e3:ff:82:05:d2:27:b6:
9d:2d:bc:57:34:76:6d:0c:80:f7:62:bd:0d:61:65:
bf:77:eb:06:29:74:33:f5:c4:58:3e:3e:df:02:fe:
d4:f3:56:87:90:9e:20:72:86:9b:27:f4:3b:cd:53:
a4:e0:7b:f9:50:d8:cf:53:5b:dd:bf:9d:05:f4:20:
1a:46:63:41:72:4a:bf:43:31:43:29:a0:a6:4e:d9:
eb:4e:cd:07:c0:fe:0d:d4:72:db:2c:bb:78:f6:cd:
b8:44:fb:cd:19:cb:a6:1a:c3:19:bc:83:f9:d8:66:
92:ca:eb:d7:7a:aa:62:50:c0:12:07:af:fb:e3:51:
af:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:36:FD:E6:20:F8:01:F2:8C:93:66:A5:19:34:85:6E:97:85:7C:6F
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3131362e36382e3136382e302f32342d3234203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
98:c1:ae:4d:a0:1c:b2:a8:a9:72:9b:18:02:22:0a:df:9f:6d:
4d:db:76:3a:82:d6:20:af:e0:75:da:e4:13:f9:f2:92:88:0c:
83:88:d2:7d:5c:1e:ad:8d:25:af:5d:46:30:e3:3d:db:6a:fb:
bd:ea:35:ef:91:e4:fc:14:ce:70:06:0b:89:e7:35:b4:b7:4e:
66:97:93:e6:c5:fb:38:a9:aa:46:2f:c8:ca:19:44:08:1a:d6:
94:1e:5d:52:a5:60:69:df:91:b4:7f:70:f0:57:2b:be:d5:7a:
7e:55:fe:6e:44:4d:68:ec:28:4c:80:ca:2f:4e:7f:5e:d3:f0:
0e:54:a2:92:54:39:56:a3:7d:f2:3d:a9:e6:42:db:0a:84:d4:
04:4d:40:de:42:b8:24:a1:9f:27:77:91:57:29:32:e0:56:24:
c5:6a:e0:1b:2c:6d:3f:48:7a:5d:35:8b:38:7e:db:7c:57:ae:
c2:e8:42:89:63:93:d0:57:70:5b:54:3d:49:3b:9f:6b:31:8b:
71:44:58:e9:5a:e7:8c:d3:73:d6:00:8a:d7:fd:ab:bb:70:11:
6f:0e:f8:02:35:08:5c:91:52:2a:5e:cd:70:a1:05:87:25:9f:
4e:2e:eb:bd:75:01:2f:ec:5a:8d:15:13:fc:cd:e8:5a:d6:61:
52:0e:8a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:47 2025 by rpki-client