Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230302e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3230302e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: lov5KIrtcr4oAxW734EdJqS5mrRDyBDwqOdrg8l59RE=
Subject key identifier: 0E:FB:E2:D7:6A:E6:10:73:8E:3D:57:C6:5F:85:66:57:A6:EF:3D:D1
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 15581A593B06AF31C52CFAFBCC0DBE55FD2BA96B
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230302e302f32342d3234203d3e20313339393934.roa
Signing time: Sun 28 Jul 2024 06:00:00 +0000
ROA not before: Sun 28 Jul 2024 05:55:00 +0000
ROA not after: Sun 27 Jul 2025 06:00:00 +0000
asID: 139994
IP address blocks: 140.213.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:58:1a:59:3b:06:af:31:c5:2c:fa:fb:cc:0d:be:55:fd:2b:a9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 28 05:55:00 2024 GMT
Not After : Jul 27 06:00:00 2025 GMT
Subject: CN=0EFBE2D76AE610738E3D57C65F856657A6EF3DD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:8e:f1:a2:75:60:1d:21:5c:dc:e4:f1:e3:
a7:13:2e:25:1b:f3:ea:b5:ce:8d:89:e6:8f:b1:cb:
5a:6f:47:da:d6:e4:19:b1:f1:47:04:cc:b7:84:c1:
aa:03:4f:ea:5a:3a:ba:6e:32:cf:e0:6c:43:93:93:
44:70:a7:d2:ef:7d:05:a4:69:5f:63:16:fe:d5:2d:
4f:b1:fa:6c:25:ee:11:d0:55:5e:71:66:0e:5a:c3:
5e:62:2a:40:c9:0f:dd:ac:cb:90:a3:7f:fa:ac:9b:
a8:d2:11:40:32:83:9b:bd:3e:a9:28:3c:1b:65:84:
d6:44:6e:85:9f:75:24:c4:d5:68:4d:d4:cd:5a:09:
b3:30:9e:63:ad:15:6e:4f:59:04:06:5a:26:1b:32:
0d:18:99:77:78:fb:2c:0b:aa:2b:e6:7a:56:ff:fe:
9d:0d:05:07:51:8a:62:90:2f:ce:f3:da:31:aa:08:
6e:08:6f:cf:a5:3e:c9:d6:58:d0:92:dd:3e:5c:97:
a4:a2:ed:94:93:70:49:79:ec:3a:1d:5b:95:04:78:
5d:e2:68:c6:82:70:f8:a1:ff:11:a5:d8:89:60:d3:
1c:b4:af:f2:fe:1e:41:a4:19:3c:aa:54:ec:95:bd:
6c:44:1a:44:cc:b2:96:e1:b5:9b:02:f2:0b:dc:a0:
bd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FB:E2:D7:6A:E6:10:73:8E:3D:57:C6:5F:85:66:57:A6:EF:3D:D1
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230302e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.200.0/24
Signature Algorithm: sha256WithRSAEncryption
44:b2:de:94:23:b9:af:c6:34:a5:dc:ad:f2:db:dd:da:a7:5f:
06:0c:92:01:a8:99:90:1c:b9:52:de:73:e8:8f:73:84:4c:2f:
5c:d3:31:17:2f:fa:c2:5a:25:b4:56:3e:60:46:0f:a2:7c:fc:
2e:d1:1f:35:c0:01:3d:0b:56:a6:55:53:d8:98:78:f8:d5:fe:
b6:9c:e7:67:b2:a6:c0:a5:2a:53:98:e1:e6:5c:61:dd:0a:31:
6a:36:4f:33:12:a9:2c:9e:82:97:d3:8f:a8:1a:67:df:52:05:
c2:40:05:46:34:18:a1:da:04:08:45:52:4f:ac:d6:36:a6:9a:
16:3d:30:c4:34:56:1f:1b:0b:00:9d:48:79:29:eb:8d:df:53:
a6:72:f0:92:b3:ee:c0:dd:69:2b:33:18:a9:a6:1d:e2:0d:70:
a8:d3:5c:07:e8:9b:09:6b:67:82:26:39:67:5f:d9:6e:60:8b:
dd:f2:b1:8b:d8:0f:7a:48:6b:5a:92:7d:56:bf:ff:20:e5:b8:
bd:ab:fc:37:c5:36:4e:6c:aa:d8:3a:36:2c:f8:59:20:f1:f8:
2f:e5:d9:41:bb:b5:1c:04:13:da:98:c8:ac:81:dd:69:59:0e:
2d:af:ab:64:20:e9:1b:c1:70:8e:8a:50:22:58:51:10:49:3e:
6a:28:62:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:15:14 2025 by rpki-client