Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa
File: 3135372e31302e302e302f32332d3234203d3e20313532303739.roa (raw, json)
Hash identifier: g6IJJUhQk+DmvlcvqYa3KoCTnszwpc7K2CNitQK9c7Y=
Subject key identifier: 74:EC:0D:93:7E:B0:C9:B7:4D:BD:87:D3:C3:5E:BD:62:2A:26:0D:5C
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 03AEEC95E1D32DC2DE6AC647893EF6180993315F
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa
Signing time: Fri 31 Jan 2025 04:00:00 +0000
ROA not before: Fri 31 Jan 2025 03:55:00 +0000
ROA not after: Fri 30 Jan 2026 04:00:00 +0000
asID: 152079
IP address blocks: 157.10.0.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ae:ec:95:e1:d3:2d:c2:de:6a:c6:47:89:3e:f6:18:09:93:31:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 31 03:55:00 2025 GMT
Not After : Jan 30 04:00:00 2026 GMT
Subject: CN=74EC0D937EB0C9B74DBD87D3C35EBD622A260D5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:61:d6:f8:7b:cd:7d:44:24:ac:d5:20:1a:1f:
11:9d:be:4a:ca:76:b6:1a:c4:91:16:d9:51:12:59:
00:c9:a8:4d:9f:57:94:7c:c2:b6:d3:a6:7e:8b:c3:
a9:c6:6c:b9:c0:9a:7e:65:96:17:af:26:44:9f:ee:
e2:03:6a:ba:30:40:13:f5:21:bc:c3:c8:f4:fc:a6:
ec:05:b1:72:38:39:d6:b0:d8:f5:9e:ce:3c:a9:40:
c4:fc:02:34:84:bb:43:7e:04:9d:51:9e:e3:d2:1d:
65:4a:0a:c7:a8:0b:ee:f4:44:0f:f1:0c:e9:1b:c0:
b3:d4:61:d1:96:ea:53:ae:26:1f:b8:64:38:d8:86:
24:02:dd:7f:1a:b4:db:1d:b2:b4:2a:a9:a3:10:fb:
8c:1e:7b:36:06:32:07:b9:8a:32:4a:2f:60:19:3e:
62:3c:63:0d:25:43:ef:e5:88:59:b4:16:96:0f:dc:
c0:6a:70:9b:40:9d:c6:d9:ca:fa:04:cf:4c:72:1f:
18:12:9f:90:86:8d:9c:45:ee:d0:ee:bb:03:b8:e7:
ca:ba:f6:52:82:4a:fd:1e:a5:d1:a6:91:d4:1a:93:
b6:9c:a1:d4:db:cd:ba:0a:51:27:d0:78:ed:f4:13:
3e:0c:6a:40:d8:4a:37:32:8c:12:1f:8e:ba:18:43:
b8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EC:0D:93:7E:B0:C9:B7:4D:BD:87:D3:C3:5E:BD:62:2A:26:0D:5C
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e302e302f32332d3234203d3e20313532303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.0.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:71:1b:89:a9:8e:b2:6e:ab:89:35:89:43:1a:0b:77:47:12:
1d:0d:40:e2:7e:80:41:3b:61:74:9d:95:d4:59:27:77:b4:63:
6e:da:b0:6b:7e:ca:b6:46:b8:e8:fa:3a:2f:dc:fe:f6:73:7d:
33:14:e4:28:0c:a6:ec:35:4c:96:5c:81:d6:0d:e6:b5:cb:f3:
aa:6e:9a:58:f8:4f:14:dd:74:15:8f:d3:95:36:14:fa:de:f5:
40:3d:78:44:92:63:3d:88:4c:33:3d:a5:68:71:b8:99:17:0f:
1f:9d:03:f6:25:c7:87:2e:f4:30:96:00:a3:5d:b4:1a:dc:9f:
c0:12:12:0e:41:64:f6:67:21:0e:28:7b:da:80:65:d4:61:b1:
06:bf:7b:f6:29:f2:69:4d:2f:71:12:3c:75:f9:9a:7c:62:f1:
48:a4:c4:06:01:10:2f:d2:05:02:51:fb:41:fb:58:23:6d:85:
5c:a3:26:ab:0a:42:79:fa:73:05:d4:23:b1:86:2d:b7:d0:2b:
78:d5:1d:14:2d:2a:d3:72:9c:17:d5:f4:5e:2c:4b:eb:87:36:
25:11:3d:89:bd:08:8e:53:87:78:11:bf:32:47:41:45:d9:b6:
05:fe:62:86:37:90:af:5a:16:0f:52:15:41:15:35:87:af:3a:
bd:f6:ab:e6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:59:12 2025 by rpki-client