Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa
File: 3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa (raw, json)
Hash identifier: 5jX+EwC29E13Gqk2viGhCqYXDyRDJsAx9xIeDBQg44c=
Subject key identifier: CC:91:0D:B6:F0:91:4C:27:2B:30:48:B5:9C:DD:89:08:2C:EB:48:4B
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 0CFE117E8C0BB998043D979EFF2546C41B126B3C
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa
Signing time: Fri 15 Mar 2024 07:08:19 +0000
ROA not before: Fri 15 Mar 2024 07:03:19 +0000
ROA not after: Fri 14 Mar 2025 07:08:19 +0000
asID: 152401
IP address blocks: 157.15.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:fe:11:7e:8c:0b:b9:98:04:3d:97:9e:ff:25:46:c4:1b:12:6b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 15 07:03:19 2024 GMT
Not After : Mar 14 07:08:19 2025 GMT
Subject: CN=CC910DB6F0914C272B3048B59CDD89082CEB484B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ca:49:b3:0d:18:4d:7e:f3:86:2f:af:1e:24:
3a:c4:77:a3:8c:5d:36:bd:e6:99:63:10:f8:83:f9:
ae:d6:88:32:12:6e:2b:f6:18:40:11:42:5a:30:e9:
e5:ff:f8:84:92:6a:42:17:e7:4a:0f:02:a2:24:7e:
00:9c:10:75:db:0a:bb:c2:9e:bb:a8:fb:87:38:fc:
4d:14:38:e4:12:c3:13:e2:c8:83:4b:b1:15:f0:36:
61:81:fa:97:8a:38:5e:bb:3a:11:db:6c:53:cc:d6:
53:a0:fe:85:23:d2:33:6c:3e:3e:a7:57:b8:26:4d:
86:d2:52:dc:7e:93:2c:0a:b7:34:92:68:e0:57:df:
8d:ff:35:9c:50:4b:a3:03:02:33:28:04:82:76:ed:
cb:8b:5f:c0:86:d2:eb:2c:be:0a:b8:8c:cc:62:b6:
75:f9:56:b9:1b:8b:8f:c5:a9:0b:e3:fc:b9:6f:d7:
ae:8a:ac:f7:b3:a4:95:04:5b:b4:ff:3c:da:7e:a2:
bd:49:7c:c6:f7:f9:b9:cf:e9:8c:a4:99:df:ef:55:
5e:7d:d2:21:ce:04:00:87:ea:e6:05:f3:5c:8b:16:
e1:a1:f5:b2:a6:d2:a5:fa:ca:35:c3:c3:f2:42:7b:
85:5a:b9:78:4d:ec:56:b6:1b:bd:5e:ff:5e:20:68:
87:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:91:0D:B6:F0:91:4C:27:2B:30:48:B5:9C:DD:89:08:2C:EB:48:4B
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3131382e302f32342d3234203d3e20313532343031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.118.0/24
Signature Algorithm: sha256WithRSAEncryption
60:f9:8c:b7:93:bf:15:be:2e:ce:44:f4:39:4c:75:a4:c7:8b:
74:7f:98:a0:2b:e9:a4:a1:f8:f8:f5:f3:f3:3e:09:71:9b:d9:
6c:8d:88:32:11:2f:f2:a2:a0:1b:51:53:46:bd:f5:b0:50:bb:
30:2a:e6:ed:40:a1:c5:17:f4:47:00:af:bc:fc:a9:cc:a8:df:
25:ba:63:05:a5:4d:39:20:29:71:51:3d:e3:5f:0a:0a:1c:de:
ce:a6:12:fd:38:4b:65:56:ae:8a:cb:67:3e:d2:98:98:83:e3:
c6:6e:7e:37:74:45:4a:55:86:d7:f6:58:c8:ca:c8:03:fd:70:
12:0d:6e:8d:30:ca:2a:96:6c:e2:e2:b5:d5:8a:84:2f:c4:0e:
8c:a0:73:6f:de:09:51:4b:b3:7e:dc:84:82:15:64:be:3c:b6:
af:5c:8a:dd:9a:32:0f:8a:a6:5b:66:01:9a:ea:42:79:d2:97:
79:8f:18:f1:ed:79:4e:65:3d:32:7e:4f:d0:a9:4d:a0:47:d4:
c6:11:01:59:f1:88:bf:6c:df:dd:a5:7d:65:9e:f2:c3:16:d0:
31:e3:ea:a9:2a:cd:94:87:06:46:76:2a:d1:89:29:af:23:a3:
91:de:fd:ad:4e:f2:eb:e5:d2:e3:45:a0:4a:1d:6e:85:ee:8e:
23:ca:18:1e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIUDP4RfowLuZgEPZee/yVGxBsSazwwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMxNTA3MDMxOVoX
DTI1MDMxNDA3MDgxOVowMzExMC8GA1UEAxMoQ0M5MTBEQjZGMDkxNEMyNzJCMzA0
OEI1OUNERDg5MDgyQ0VCNDg0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM3KSbMNGE1+84Yvrx4kOsR3o4xdNr3mmWMQ+IP5rtaIMhJuK/YYQBFCWjDp
5f/4hJJqQhfnSg8CoiR+AJwQddsKu8Keu6j7hzj8TRQ45BLDE+LIg0uxFfA2YYH6
l4o4Xrs6EdtsU8zWU6D+hSPSM2w+PqdXuCZNhtJS3H6TLAq3NJJo4Fffjf81nFBL
owMCMygEgnbty4tfwIbS6yy+CriMzGK2dflWuRuLj8WpC+P8uW/Xroqs97OklQRb
tP882n6ivUl8xvf5uc/pjKSZ3+9VXn3SIc4EAIfq5gXzXIsW4aH1sqbSpfrKNcPD
8kJ7hVq5eE3sVrYbvV7/XiBoh80CAwEAAaOCAgEwggH9MB0GA1UdDgQWBBTMkQ22
8JFMJyswSLWc3YkILOtISzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz
MTM1MmUzMTMxMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM1MzIzNDMwMzEu
cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBACdD3YwDQYJKoZIhvcNAQELBQADggEBAGD5jLeTvxW+Ls5E9DlM
daTHi3R/mKAr6aSh+Pj18/M+CXGb2WyNiDIRL/KioBtRU0a99bBQuzAq5u1AocUX
9EcAr7z8qcyo3yW6YwWlTTkgKXFRPeNfCgoc3s6mEv04S2VWrorLZz7SmJiD48Zu
fjd0RUpVhtf2WMjKyAP9cBINbo0wyiqWbOLitdWKhC/EDoygc2/eCVFLs37chIIV
ZL48tq9cit2aMg+KpltmAZrqQnnSl3mPGPHteU5lPTJ+T9CpTaBH1MYRAVnxiL9s
392lfWWe8sMW0DHj6qkqzZSHBkZ2KtGJKa8jo5He/a1O8uvl0uNFoEodboXujiPK
GB4=
-----END CERTIFICATE-----
Generated at Mon Apr 7 07:17:23 2025 by rpki-client