Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa
File: 3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa (raw, json)
Hash identifier: +uKXS6Rig5GG4wCD7tTGdHNlTS1lRyJqkQfzrCIEHnc=
Subject key identifier: CF:B9:9B:97:49:05:FD:F9:6C:F6:03:AA:67:40:70:4C:27:83:EF:84
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 042E5BCDDB8F4506B536B54EC3E08C88780DBA61
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa
Signing time: Wed 01 Jan 2025 03:00:00 +0000
ROA not before: Wed 01 Jan 2025 02:55:00 +0000
ROA not after: Wed 31 Dec 2025 03:00:00 +0000
asID: 141898
IP address blocks: 157.10.222.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:2e:5b:cd:db:8f:45:06:b5:36:b5:4e:c3:e0:8c:88:78:0d:ba:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 1 02:55:00 2025 GMT
Not After : Dec 31 03:00:00 2025 GMT
Subject: CN=CFB99B974905FDF96CF603AA6740704C2783EF84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:68:21:fb:05:ae:0a:53:79:67:77:0e:3e:
2a:38:9b:6c:11:d0:23:27:62:ae:1f:8d:f8:8f:18:
39:4d:64:67:31:47:fc:c3:25:19:e1:26:51:a2:3b:
f0:b2:2d:02:4b:ef:27:df:51:01:77:ab:bb:3a:f1:
5c:5a:1a:89:27:94:f1:66:80:fb:2d:d2:a4:2d:ff:
ed:69:44:a6:80:90:13:b8:1d:20:50:f1:06:2d:5a:
2b:c7:a4:84:c8:79:87:91:51:8c:ed:b9:01:7c:b5:
0b:67:1e:db:c4:12:15:2b:46:ee:28:62:f3:29:9f:
de:35:ee:80:1b:c1:ef:71:91:47:54:2f:13:2d:d7:
92:c9:05:57:fd:4b:bd:5f:5d:f3:26:e9:19:47:a7:
fa:ab:82:2f:7a:17:50:37:c1:a1:2b:b9:81:e4:3c:
67:7a:05:22:04:8a:8b:a5:fb:89:e6:20:01:b4:c5:
2d:c7:e7:99:89:fe:40:c4:df:58:e9:bd:4a:7b:ed:
d3:8d:3e:ea:ac:ed:b5:85:82:2a:55:cc:5c:2b:34:
c8:bc:0f:8e:78:25:dd:ba:c5:01:d2:47:bc:6f:f5:
7c:8e:64:00:0e:be:76:11:d1:35:38:e8:fb:44:a5:
0b:25:45:94:88:29:a9:7c:a6:f9:4f:15:88:04:98:
c5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B9:9B:97:49:05:FD:F9:6C:F6:03:AA:67:40:70:4C:27:83:EF:84
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.222.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:13:03:53:08:02:51:82:4c:66:ef:69:bf:2f:38:ee:e1:aa:
03:3f:19:ef:c1:62:91:6e:51:0a:ff:cf:f3:dd:f9:80:15:aa:
bd:ee:50:2c:a2:ef:87:b1:07:c5:25:9b:61:7f:e0:8f:10:7d:
47:28:b1:d5:a0:b0:73:a8:0d:74:b3:ee:3e:af:e9:18:dd:3c:
fc:0a:aa:f2:50:0e:cb:80:36:c9:cb:96:3d:4b:33:3a:98:0a:
e4:ef:a3:03:f7:96:55:3e:5d:fd:e6:64:4e:de:1f:79:46:e0:
ba:b7:a8:09:e3:41:2f:85:5f:67:11:52:21:b3:f5:05:6e:c1:
cf:7e:57:bd:e4:11:3f:dc:6c:b6:12:88:bd:b7:89:5c:ac:5b:
97:7a:22:d5:d4:5a:79:25:3b:7d:d2:24:b5:07:3c:97:a4:a4:
92:af:a5:60:d8:4b:2b:25:f1:ee:12:62:07:12:6c:31:bf:3b:
df:49:93:c1:cd:3e:f7:45:e7:1b:cb:2b:95:f0:34:41:b1:68:
1c:8e:49:ae:9f:a6:7d:d9:f6:0b:09:2b:fa:f4:60:6a:69:43:
64:d9:6a:cb:df:78:4a:50:6a:9c:f5:0c:28:cf:12:07:67:03:
05:e5:25:d2:97:de:5a:c2:b9:c1:73:2b:2b:c0:9c:c9:24:a0:
d4:65:ae:a3
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIUBC5bzduPRQa1NrVOw+CMiHgNumEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDEwMTAyNTUwMFoX
DTI1MTIzMTAzMDAwMFowMzExMC8GA1UEAxMoQ0ZCOTlCOTc0OTA1RkRGOTZDRjYw
M0FBNjc0MDcwNEMyNzgzRUY4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMlbaCH7Ba4KU3lndw4+KjibbBHQIydirh+N+I8YOU1kZzFH/MMlGeEmUaI7
8LItAkvvJ99RAXeruzrxXFoaiSeU8WaA+y3SpC3/7WlEpoCQE7gdIFDxBi1aK8ek
hMh5h5FRjO25AXy1C2ce28QSFStG7ihi8ymf3jXugBvB73GRR1QvEy3XkskFV/1L
vV9d8ybpGUen+quCL3oXUDfBoSu5geQ8Z3oFIgSKi6X7ieYgAbTFLcfnmYn+QMTf
WOm9Snvt040+6qzttYWCKlXMXCs0yLwPjngl3brFAdJHvG/1fI5kAA6+dhHRNTjo
+0SlCyVFlIgpqXym+U8ViASYxS8CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTPuZuX
SQX9+Wz2A6pnQHBMJ4PvhDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz
MTMwMmUzMjMyMzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5Mzgu
cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAGdCt4wDQYJKoZIhvcNAQELBQADggEBAHoTA1MIAlGCTGbvab8v
OO7hqgM/Ge/BYpFuUQr/z/Pd+YAVqr3uUCyi74exB8Ulm2F/4I8QfUcosdWgsHOo
DXSz7j6v6RjdPPwKqvJQDsuANsnLlj1LMzqYCuTvowP3llU+Xf3mZE7eH3lG4Lq3
qAnjQS+FX2cRUiGz9QVuwc9+V73kET/cbLYSiL23iVysW5d6ItXUWnklO33SJLUH
PJekpJKvpWDYSysl8e4SYgcSbDG/O99Jk8HNPvdF5xvLK5XwNEGxaByOSa6fpn3Z
9gsJK/r0YGppQ2TZasvfeEpQapz1DCjPEgdnAwXlJdKX3lrCucFzKyvAnMkkoNRl
rqM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 10:02:54 2025 by rpki-client