Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa
File: AS58816.roa (raw, json)
Hash identifier: 1n4t7Yn0PFJd/Nm01P5gujR22UqmuqgzHbrR73sH0I4=
Subject key identifier: F9:71:81:AA:E8:12:49:B2:50:95:CF:96:DD:41:E7:39:06:36:A0:7A
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 08E000C276E804A06C01ED6E0344BF3350A8AC36
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa
Signing time: Tue 30 Apr 2024 03:00:00 +0000
ROA not before: Tue 30 Apr 2024 02:55:00 +0000
ROA not after: Tue 29 Apr 2025 03:00:00 +0000
asID: 58816
IP address blocks: 124.158.134.0/23 maxlen: 24
124.158.142.0/23 maxlen: 24
202.181.80.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:e0:00:c2:76:e8:04:a0:6c:01:ed:6e:03:44:bf:33:50:a8:ac:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Apr 30 02:55:00 2024 GMT
Not After : Apr 29 03:00:00 2025 GMT
Subject: CN=F97181AAE81249B25095CF96DD41E7390636A07A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5e:24:e2:c6:8b:74:e5:75:2f:94:43:51:b6:
09:04:81:ff:b4:c4:f3:2b:cf:3e:27:40:d2:7f:38:
06:16:75:0f:70:c0:6a:a4:c3:15:b2:6b:1a:7b:7f:
b1:42:62:51:58:12:44:4e:dc:88:db:8e:48:38:65:
33:99:04:1d:80:24:27:fb:d2:20:61:64:ac:09:05:
45:24:d7:7d:6d:ee:45:49:61:9b:24:62:8f:1b:c7:
4a:37:a3:f8:23:5c:86:92:ca:32:55:59:dd:2f:dd:
62:85:31:84:c1:18:58:d1:95:d0:b4:fa:0a:d3:db:
08:4b:9f:79:2b:e7:6a:24:b9:71:1d:a4:7f:53:50:
5f:84:69:40:84:0d:56:a3:da:cd:da:58:f1:a5:8c:
2f:47:cf:33:83:d5:d3:23:81:42:1a:25:e4:49:63:
d7:43:3a:bc:30:27:48:c1:d7:05:fe:98:98:0c:72:
a6:b9:03:2a:dd:ad:86:7a:13:7b:9b:ee:9b:75:03:
6a:09:d0:c1:c8:cd:55:79:b5:c9:c8:dd:4e:3f:86:
dd:81:63:a1:3a:c7:b4:26:d8:12:1e:0a:66:d2:32:
b1:c6:60:96:3d:8c:72:50:a1:1b:96:73:e6:26:78:
7f:9d:30:f2:ff:92:13:b1:bf:5c:09:2e:69:05:ae:
84:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:71:81:AA:E8:12:49:B2:50:95:CF:96:DD:41:E7:39:06:36:A0:7A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58816.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.158.134.0/23
124.158.142.0/23
202.181.80.0/21
Signature Algorithm: sha256WithRSAEncryption
42:dc:e9:39:f8:1a:54:ff:cc:98:36:bc:dc:94:cc:a7:6c:7a:
b9:7b:f8:f2:05:5b:bd:25:24:f1:39:9d:9c:2b:4c:9b:92:e1:
8a:f4:d3:53:70:fc:79:54:50:b3:40:3d:c1:95:98:2d:28:d5:
e9:31:59:16:4e:fc:8d:bf:17:00:ab:21:fa:42:db:3e:bf:83:
4c:2a:22:00:31:d0:64:9e:58:60:99:55:2b:aa:a8:7a:b8:93:
d2:9b:2d:f0:c5:3c:40:9d:20:92:1a:ab:45:88:a5:a7:3f:e9:
2e:1f:07:3b:81:f2:93:a6:91:d6:6f:3f:03:da:63:01:cc:47:
36:f3:29:da:5e:17:64:6e:f2:e9:8b:5c:ed:20:c0:3a:4f:40:
90:c2:07:b3:2c:e9:6a:aa:1a:d2:cb:5e:2e:0b:60:19:f9:f6:
49:09:f8:05:ef:d6:13:9a:60:cd:fd:01:3e:85:29:94:ae:13:
64:59:1b:a5:d9:bd:fe:09:1c:94:68:f5:04:53:f7:49:51:84:
1e:12:d2:a1:3e:23:43:82:6e:93:39:1e:2d:1e:cf:ea:33:d6:
ba:b8:d5:09:77:1e:3e:54:2c:56:ec:ad:6e:68:a8:26:d6:0c:
ac:fa:9f:37:48:b2:73:9e:de:c1:a2:fa:8d:12:71:e1:fc:a8:
8e:8b:77:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:02 2025 by rpki-client