Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: UcadFXlPmU9JeMpKlngbRnDr0KGE5h4Gx4HFeifVeO0=
Subject key identifier: DF:5F:10:1C:4A:18:66:EF:38:60:33:71:23:0A:58:36:CE:DE:90:7B
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 5A5799A0F7DFB0BA6B67717E140C4277444B09D9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa
Signing time: Sun 28 Jul 2024 06:00:00 +0000
ROA not before: Sun 28 Jul 2024 05:55:00 +0000
ROA not after: Sun 27 Jul 2025 06:00:00 +0000
asID: 139994
IP address blocks: 140.213.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:57:99:a0:f7:df:b0:ba:6b:67:71:7e:14:0c:42:77:44:4b:09:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 28 05:55:00 2024 GMT
Not After : Jul 27 06:00:00 2025 GMT
Subject: CN=DF5F101C4A1866EF38603371230A5836CEDE907B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d2:70:02:11:52:22:d9:b9:a3:ae:71:ff:b2:
6f:b8:5e:23:60:c3:5f:95:fa:26:06:2f:01:f6:1e:
0b:44:30:3f:66:02:dc:75:90:a3:63:65:49:76:ea:
ed:38:3d:94:9d:ca:e1:ba:03:f4:a2:d0:62:62:a2:
11:8b:4d:89:9a:7d:b9:81:b4:2b:ae:ab:0c:84:bf:
2d:ea:ee:5a:c5:95:6d:d6:69:dc:76:92:6f:65:92:
63:bd:f6:c1:ce:31:ca:a6:42:76:ba:0a:62:55:09:
5b:32:46:1d:d0:32:09:05:d1:02:c5:a2:f7:fd:ab:
02:52:de:c0:98:df:5c:fb:b6:b3:10:23:db:3f:99:
be:1d:71:b8:d5:ff:71:70:cf:c7:6c:2b:77:8c:73:
32:b1:43:13:8f:6f:2d:79:ef:d7:3f:2b:a1:79:79:
a6:eb:72:50:c9:f1:17:68:86:40:7b:e1:ce:75:3c:
f0:f2:7f:af:22:2e:4b:77:7c:23:05:86:4e:c4:13:
4c:a9:de:1b:f0:d9:9b:97:03:19:af:15:c0:ac:c7:
ef:c0:58:76:6f:b9:82:e7:24:f0:ba:94:e1:c6:f8:
2b:87:52:89:6f:29:a3:e2:71:c9:6f:31:4d:48:41:
a0:07:1a:93:6a:f0:88:7c:69:23:06:58:1d:cc:c5:
f4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5F:10:1C:4A:18:66:EF:38:60:33:71:23:0A:58:36:CE:DE:90:7B
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3139382e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.198.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c6:9c:b0:43:31:ca:fe:71:4c:39:bf:b4:5d:7e:d5:42:f0:
5d:e2:0a:14:24:8a:7d:4d:11:16:bb:59:bf:ee:41:bb:6f:7e:
3f:63:11:a6:2a:22:6f:8e:2f:20:37:10:64:bf:a1:3d:60:99:
59:94:50:a4:7a:56:f9:85:d3:6d:1f:53:4d:2e:0a:90:2d:83:
f8:05:4c:d0:48:a5:e7:4b:cb:38:79:63:a2:58:8e:0d:9c:88:
e3:58:4b:8f:07:46:3e:74:ad:3f:4b:fe:3c:cc:01:ee:29:ee:
cc:5a:a3:55:64:ee:62:e6:0e:81:57:24:87:0c:05:4f:56:f9:
ad:15:e8:2e:9a:df:db:7a:96:7b:b0:5f:2c:f6:fa:1c:0c:4c:
57:46:f7:e4:c3:61:bf:c5:30:92:b7:59:36:e5:a7:75:99:2e:
ba:60:fb:41:92:4f:66:ea:d1:cc:07:10:0a:14:4f:23:07:60:
1b:00:08:e9:cc:49:7a:9e:23:23:62:92:d9:68:b9:15:71:ce:
c9:dd:dc:ac:ad:85:94:30:4c:ad:4c:32:63:34:b2:97:23:6a:
3a:61:88:bc:8f:71:05:37:e8:85:92:48:1a:e8:8d:f1:e1:ee:
5c:af:51:36:68:3b:73:f6:47:14:09:d2:b8:2e:df:f8:77:b0:
05:f9:c3:d2
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIUWleZoPffsLprZ3F+FAxCd0RLCdkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMFoX
DTI1MDcyNzA2MDAwMFowMzExMC8GA1UEAxMoREY1RjEwMUM0QTE4NjZFRjM4NjAz
MzcxMjMwQTU4MzZDRURFOTA3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM7ScAIRUiLZuaOucf+yb7heI2DDX5X6JgYvAfYeC0QwP2YC3HWQo2NlSXbq
7Tg9lJ3K4boD9KLQYmKiEYtNiZp9uYG0K66rDIS/LeruWsWVbdZp3HaSb2WSY732
wc4xyqZCdroKYlUJWzJGHdAyCQXRAsWi9/2rAlLewJjfXPu2sxAj2z+Zvh1xuNX/
cXDPx2wrd4xzMrFDE49vLXnv1z8roXl5putyUMnxF2iGQHvhznU88PJ/ryIuS3d8
IwWGTsQTTKneG/DZm5cDGa8VwKzH78BYdm+5guck8LqU4cb4K4dSiW8po+JxyW8x
TUhBoAcak2rwiHxpIwZYHczF9MMCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBTfXxAc
Shhm7zhgM3EjClg2zt6QezAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz
MjMxMzMyZTMxMzkzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz
NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAIzVxjANBgkqhkiG9w0BAQsFAAOCAQEAhMacsEMxyv5xTDm/
tF1+1ULwXeIKFCSKfU0RFrtZv+5Bu29+P2MRpioib44vIDcQZL+hPWCZWZRQpHpW
+YXTbR9TTS4KkC2D+AVM0Eil50vLOHljoliODZyI41hLjwdGPnStP0v+PMwB7inu
zFqjVWTuYuYOgVckhwwFT1b5rRXoLprf23qWe7BfLPb6HAxMV0b35MNhv8UwkrdZ
NuWndZkuumD7QZJPZurRzAcQChRPIwdgGwAI6cxJep4jI2KS2Wi5FXHOyd3crK2F
lDBMrUwyYzSylyNqOmGIvI9xBTfohZJIGuiN8eHuXK9RNmg7c/ZHFAnSuC7f+Hew
BfnD0g==
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:35:29 2025 by rpki-client