Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3131302e352e39362e302f32302d3234203d3e203234353233.roa
File: 3131302e352e39362e302f32302d3234203d3e203234353233.roa (raw, json)
Hash identifier: n9ozOWQMzMeEdYIo0FEte5X/HvtCyN9+aT5sTd+tN0c=
Subject key identifier: 61:9A:F4:91:DD:E1:50:B6:70:EB:A9:1C:18:32:FE:52:56:DA:D4:96
Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Certificate serial: 4668BE8C7434C4CA5D5F93430C7C2517DC43D2EF
Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3131302e352e39362e302f32302d3234203d3e203234353233.roa
Signing time: Mon 01 Jul 2024 01:03:58 +0000
ROA not before: Mon 01 Jul 2024 00:58:58 +0000
ROA not after: Mon 30 Jun 2025 01:03:58 +0000
asID: 24523
IP address blocks: 110.5.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:68:be:8c:74:34:c4:ca:5d:5f:93:43:0c:7c:25:17:dc:43:d2:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Validity
Not Before: Jul 1 00:58:58 2024 GMT
Not After : Jun 30 01:03:58 2025 GMT
Subject: CN=619AF491DDE150B670EBA91C1832FE5256DAD496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2f:9a:bc:33:25:33:2a:26:45:b1:dd:44:49:
21:26:56:45:b9:25:7b:e7:f8:bc:06:92:d9:9b:52:
0b:28:c5:e1:ac:e5:1a:67:29:fd:96:75:4a:09:4b:
c1:10:60:a3:0a:a7:23:c8:54:60:2a:fd:fe:7b:68:
fb:00:ea:68:6f:64:a0:29:f3:37:79:ea:6d:fe:ac:
39:aa:92:d6:50:5e:d1:68:a8:f7:20:af:c2:96:7a:
b7:25:1a:6c:7f:d6:fe:9e:e5:b6:94:57:d8:d9:73:
3c:6a:eb:6b:32:b4:d7:62:7c:ee:59:05:87:cf:8b:
94:d9:87:07:fe:91:62:57:81:ca:e7:ec:c4:f7:98:
ed:25:09:2e:78:ea:3c:d9:44:0a:4e:4b:55:4a:26:
42:bd:80:35:6d:65:6c:a0:05:ca:28:f0:32:49:77:
e6:c5:ed:e2:c4:d7:43:2c:4e:e2:41:7e:c6:1a:cf:
29:22:62:f0:04:0c:cc:90:6e:e8:f5:f9:2b:15:6d:
43:78:10:18:da:fd:ef:c0:e9:4a:95:e3:a6:09:0d:
5d:b0:c3:06:0a:c7:88:53:ec:34:d7:62:34:58:33:
52:0c:ac:29:1a:e5:97:92:71:94:0f:a7:3b:b3:97:
35:ee:a5:45:46:89:f0:d0:23:37:ce:a1:fa:46:de:
ef:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9A:F4:91:DD:E1:50:B6:70:EB:A9:1C:18:32:FE:52:56:DA:D4:96
X509v3 Authority Key Identifier:
keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3131302e352e39362e302f32302d3234203d3e203234353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.5.96.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:41:d7:e4:9d:83:c2:2b:73:49:eb:92:08:7a:5b:6a:1d:2f:
5f:61:4d:b4:5f:c3:a1:0b:87:94:eb:59:2f:1f:f3:f7:10:19:
a3:15:3e:7e:01:22:57:82:5d:42:4d:6e:54:4d:c2:9c:df:94:
46:0e:79:03:4c:03:66:f7:ea:b7:ff:e0:54:79:3a:67:bb:9e:
86:2d:b5:7d:e0:44:f2:d4:95:36:6e:a0:aa:cd:e3:86:3f:d8:
ce:fc:96:a0:1e:14:20:62:bd:68:38:b1:4b:7a:1c:81:a1:2f:
5f:14:16:4d:92:04:a3:20:0f:10:bd:75:f0:e7:61:e9:32:1a:
01:d3:9b:e6:b9:ac:7f:1c:7c:2a:b3:9c:3e:97:d2:38:a1:0a:
3f:46:69:3c:78:13:f5:46:00:ac:ad:80:74:59:ba:46:6b:1b:
58:cb:5c:d4:11:7d:7f:de:24:a3:13:9f:5e:6d:b0:67:33:6b:
5b:68:08:19:fe:c2:32:de:c1:9a:09:34:91:ff:bd:95:5c:bc:
c3:74:0e:d9:29:dd:c6:ee:ce:45:22:28:9b:b8:e7:a3:58:ec:
86:0c:ee:bb:32:fd:60:8c:54:20:7f:e1:91:3d:84:09:f1:75:
9c:08:1d:4f:81:f2:14:c1:fc:a8:f9:1b:58:71:a4:3d:ea:ed:
0f:d1:a4:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:41 2025 by rpki-client