Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa
File: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (raw, json)
Hash identifier: yUU8eRWdJM0KAeL5ryFX1nKEMORk+JZS4xmHiaGvMOY=
Subject key identifier: 65:2C:AF:6F:CB:E9:73:AD:95:41:DE:B1:66:95:3D:91:1C:28:BA:C0
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 0EBB9FF030CF766D6978338AECCA32F2C6AA386D
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa
Signing time: Mon 13 Jan 2025 08:00:00 +0000
ROA not before: Mon 13 Jan 2025 07:55:00 +0000
ROA not after: Mon 12 Jan 2026 08:00:00 +0000
asID: 152344
IP address blocks: 157.10.182.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:bb:9f:f0:30:cf:76:6d:69:78:33:8a:ec:ca:32:f2:c6:aa:38:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 13 07:55:00 2025 GMT
Not After : Jan 12 08:00:00 2026 GMT
Subject: CN=652CAF6FCBE973AD9541DEB166953D911C28BAC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:78:8a:c5:56:eb:53:1f:30:3f:51:9b:37:
15:4b:28:b7:d3:d5:f6:dc:50:e1:bc:43:40:24:c5:
2f:0d:bf:53:72:4e:c3:02:39:69:ff:93:a6:ef:39:
f0:d8:80:7f:1a:57:39:23:a4:49:ef:0c:cd:c7:05:
c9:12:0a:28:4d:04:fb:ff:7d:32:87:c9:92:ce:6a:
0a:2b:92:f3:ae:ed:9c:6b:f7:c4:2c:66:b9:79:cf:
3d:c9:5c:fd:e0:43:7a:c4:3f:c3:8c:9a:7f:dd:68:
c3:4c:68:21:d0:c2:f2:bb:a0:b6:51:5f:2b:99:8a:
8e:e9:b6:78:b3:2e:c6:15:5b:bf:6a:0f:52:64:01:
df:23:4b:1f:03:fb:cb:2c:d4:4b:16:da:2c:d0:43:
83:6f:21:e9:aa:51:5a:25:aa:e6:fc:54:d0:ac:dc:
9c:ac:43:f0:4c:33:c6:8a:76:14:3f:cb:67:f8:60:
11:2f:e6:a5:2a:3a:c9:b2:75:af:a8:22:7e:85:6e:
31:4c:67:14:8e:b8:da:07:22:7f:44:48:3c:54:13:
55:9a:3e:e8:04:1d:ac:0f:b4:28:e4:29:d3:59:ea:
de:d8:bf:ef:c1:c9:7c:6c:57:77:a3:52:3f:63:f1:
79:09:41:57:ec:2d:45:90:29:f7:81:1b:23:21:49:
b9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2C:AF:6F:CB:E9:73:AD:95:41:DE:B1:66:95:3D:91:1C:28:BA:C0
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.182.0/23
Signature Algorithm: sha256WithRSAEncryption
29:86:90:ad:cb:aa:49:61:fd:6d:78:7b:49:1e:70:a1:7b:a8:
2e:91:b2:12:f7:e0:62:52:26:61:d4:b0:18:85:27:53:20:c4:
c4:6d:8e:5f:ad:0b:13:b4:04:aa:66:7d:07:4c:cb:0e:84:4f:
59:32:bd:92:3e:bf:36:0f:6d:3d:f5:1e:b5:e4:b2:47:eb:0e:
ca:09:4c:0e:ac:ea:c4:9a:6e:a2:12:2d:6e:3d:a4:0d:6f:b5:
85:98:c4:0e:af:1b:61:f2:d2:f4:43:6a:9e:f8:22:da:e7:23:
ad:16:ed:e9:f7:82:fa:eb:e7:d6:66:1e:dd:65:c2:e8:54:33:
98:a6:e4:45:30:ef:68:12:96:c1:46:8e:36:74:b9:6d:59:ce:
4f:33:eb:f6:b5:ba:f8:7f:5b:7f:68:b4:17:b2:51:2e:ec:33:
d8:ab:9b:82:46:02:16:52:84:d1:9f:03:d8:e7:b5:7a:da:2c:
9d:1a:de:5f:3b:31:56:f1:30:76:f3:a9:28:1f:6e:ff:64:a1:
84:93:b4:48:28:03:e8:62:03:6f:4e:e1:cd:d6:7b:36:f6:a7:
ed:a0:5e:e2:19:26:7b:5c:3e:00:a5:1e:fe:e1:1b:ba:1f:75:
bf:d6:d5:32:4f:f5:d7:81:57:4e:ab:9b:d3:28:fb:de:29:9f:
73:cd:04:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:37:27 2025 by rpki-client