Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
File: 3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa (raw, json)
Hash identifier: ILz39uDDReV7VBaWutCIKdkzsJNd0ZJX5BYeo7Dzmhs=
Subject key identifier: 3B:BA:B3:DC:86:AA:DE:C6:BF:B1:CE:23:6F:6A:5A:0B:71:BF:81:E6
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 06AE351B72522CB9B2F2CCB64F32F09431091731
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
Signing time: Sun 28 Jul 2024 06:00:01 +0000
ROA not before: Sun 28 Jul 2024 05:55:01 +0000
ROA not after: Sun 27 Jul 2025 06:00:01 +0000
asID: 139994
IP address blocks: 140.213.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:ae:35:1b:72:52:2c:b9:b2:f2:cc:b6:4f:32:f0:94:31:09:17:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 28 05:55:01 2024 GMT
Not After : Jul 27 06:00:01 2025 GMT
Subject: CN=3BBAB3DC86AADEC6BFB1CE236F6A5A0B71BF81E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f3:f9:27:63:f0:39:bf:85:29:65:11:75:0c:
3f:f7:de:3a:8e:19:4d:34:d7:d7:00:50:c2:8b:60:
33:45:08:c2:ff:8d:b7:13:cb:e3:60:39:6e:dc:e5:
f3:c0:e5:14:8d:ba:04:65:ce:f7:be:e4:9b:02:c9:
99:8b:cb:81:b6:24:80:f8:0c:01:c9:0e:49:d2:40:
1d:c3:7e:e3:25:02:7b:c8:b1:00:86:dd:50:d6:49:
eb:5c:44:29:3b:d6:d5:b9:41:a5:04:49:56:8d:9b:
05:a4:f2:39:02:dc:08:ad:96:ee:8a:db:c0:9c:76:
87:cb:73:cf:32:6d:f9:24:04:04:e5:55:1f:b1:9d:
1e:da:b0:b7:7e:2c:7d:6c:cb:34:6e:51:02:76:32:
b3:99:15:d7:27:01:6a:b0:50:95:f0:12:09:08:d9:
a1:55:5a:c3:6d:c1:49:e8:ba:49:3d:bb:a8:72:8f:
28:ba:c4:09:88:2d:67:e3:c0:0c:a1:b8:2b:82:df:
a0:5a:5c:c1:c8:fd:fe:d7:0c:ca:62:74:a3:ce:fe:
69:62:70:0c:75:b6:75:e5:b8:3c:3d:55:23:4a:d2:
48:c1:d3:73:61:7e:35:1b:3c:70:5b:cc:01:e8:b3:
79:29:2c:94:29:e9:41:d8:3c:e3:67:f6:77:29:64:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BA:B3:DC:86:AA:DE:C6:BF:B1:CE:23:6F:6A:5A:0B:71:BF:81:E6
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3134302e3231332e3230312e302f32342d3234203d3e20313339393934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.201.0/24
Signature Algorithm: sha256WithRSAEncryption
59:3c:74:fa:2c:be:ce:1b:ea:78:88:d2:7d:05:2a:64:25:0f:
20:86:47:77:88:95:b5:95:f7:69:2a:af:b2:93:4b:7d:21:4c:
e7:c6:43:d2:61:6b:1e:e7:b1:59:15:6a:64:6b:c2:d3:0c:d6:
23:89:15:24:c9:fd:6e:a3:ab:b9:89:8e:d3:34:80:c5:fe:7e:
7c:96:ac:96:be:fa:d0:ab:ce:a7:f0:96:7f:96:0a:97:0a:75:
cd:56:d0:69:1a:4f:c6:00:95:42:fa:29:de:a9:73:b4:fe:ef:
73:e0:17:cc:4c:32:49:d4:17:85:df:75:67:fe:44:c6:ba:a7:
6c:d0:b9:fd:b1:74:a2:66:8c:83:4f:12:55:6c:b6:06:78:e4:
c6:41:5b:48:02:51:b9:a5:ac:05:49:d9:00:55:8b:b9:27:fe:
1a:b8:c4:ca:8e:6f:71:17:40:7f:8d:71:16:68:ae:91:c1:e2:
19:2a:a9:34:bb:3a:5c:71:8f:0e:85:38:06:78:a6:03:e0:4a:
4d:23:12:a9:8f:4d:e3:bc:81:e4:ce:97:b4:52:21:78:f1:da:
26:42:7e:fa:0a:71:f9:70:98:f9:62:08:0a:56:83:a0:43:15:
62:37:e8:d2:e8:71:93:3c:92:ac:68:4d:62:ea:d5:e8:49:d1:
af:77:29:22
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIUBq41G3JSLLmy8sy2TzLwlDEJFzEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyODA1NTUwMVoX
DTI1MDcyNzA2MDAwMVowMzExMC8GA1UEAxMoM0JCQUIzREM4NkFBREVDNkJGQjFD
RTIzNkY2QTVBMEI3MUJGODFFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAObz+Sdj8Dm/hSllEXUMP/feOo4ZTTTX1wBQwotgM0UIwv+NtxPL42A5btzl
88DlFI26BGXO977kmwLJmYvLgbYkgPgMAckOSdJAHcN+4yUCe8ixAIbdUNZJ61xE
KTvW1blBpQRJVo2bBaTyOQLcCK2W7orbwJx2h8tzzzJt+SQEBOVVH7GdHtqwt34s
fWzLNG5RAnYys5kV1ycBarBQlfASCQjZoVVaw23BSei6ST27qHKPKLrECYgtZ+PA
DKG4K4LfoFpcwcj9/tcMymJ0o87+aWJwDHW2deW4PD1VI0rSSMHTc2F+NRs8cFvM
AeizeSkslCnpQdg842f2dylkf1cCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBQ7urPc
hqrexr+xziNvaloLcb+B5jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGGBggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNDMwMmUz
MjMxMzMyZTMyMzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTM5Mzkz
NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAIzVyTANBgkqhkiG9w0BAQsFAAOCAQEAWTx0+iy+zhvqeIjS
fQUqZCUPIIZHd4iVtZX3aSqvspNLfSFM58ZD0mFrHuexWRVqZGvC0wzWI4kVJMn9
bqOruYmO0zSAxf5+fJaslr760KvOp/CWf5YKlwp1zVbQaRpPxgCVQvop3qlztP7v
c+AXzEwySdQXhd91Z/5ExrqnbNC5/bF0omaMg08SVWy2BnjkxkFbSAJRuaWsBUnZ
AFWLuSf+GrjEyo5vcRdAf41xFmiukcHiGSqpNLs6XHGPDoU4BnimA+BKTSMSqY9N
47yB5M6XtFIhePHaJkJ++gpx+XCY+WIIClaDoEMVYjfo0uhxkzySrGhNYurV6EnR
r3cpIg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:11:18 2025 by rpki-client