Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa
File: 3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa (raw, json)
Hash identifier: K20zbUaXoqYi9ZepQsDvwhkWcimLaFfC7m9XpHtvlEY=
Subject key identifier: 10:F1:B8:ED:8C:48:10:EB:DE:7C:BF:93:82:FC:C3:0F:65:61:1B:60
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 21247ADA34B1E401FDFEBBDDFFA324C0A3215F50
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa
Signing time: Mon 27 Jan 2025 04:00:00 +0000
ROA not before: Mon 27 Jan 2025 03:55:00 +0000
ROA not after: Mon 26 Jan 2026 04:00:00 +0000
asID: 152383
IP address blocks: 157.15.172.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:24:7a:da:34:b1:e4:01:fd:fe:bb:dd:ff:a3:24:c0:a3:21:5f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 27 03:55:00 2025 GMT
Not After : Jan 26 04:00:00 2026 GMT
Subject: CN=10F1B8ED8C4810EBDE7CBF9382FCC30F65611B60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c4:6b:37:03:69:e3:53:78:a4:13:80:d4:36:
19:2b:e3:46:d9:2c:b6:f2:53:6b:f9:e4:aa:f2:96:
f7:26:be:20:5d:4b:2a:97:56:3a:ff:0e:ee:86:29:
c1:a3:e3:a7:bf:ea:82:01:3e:f1:01:3d:e0:07:8a:
a4:19:64:5e:14:d2:18:13:01:03:80:7c:fe:f9:9d:
95:cf:16:d5:46:86:5c:7d:7b:c8:e9:3d:51:97:7c:
f9:96:5e:90:c5:6a:8f:20:78:a7:44:7d:d1:2b:da:
e9:c3:c7:f3:b8:5c:2a:18:69:86:25:74:c1:81:ad:
42:c2:94:5e:4c:fd:a3:95:12:6e:1f:72:41:5f:ce:
3e:aa:6c:74:22:c4:de:4b:e4:fa:6d:6a:db:af:f5:
9b:62:54:ef:9d:d2:9f:5a:35:3f:48:d1:af:be:59:
17:de:dc:03:18:66:97:d4:19:12:8f:74:fc:74:d6:
88:f7:9a:e3:26:d4:ff:dd:ff:78:91:9a:27:49:f3:
ca:14:32:cd:f7:3c:d9:ad:99:3f:94:f9:a2:35:a9:
87:25:71:2c:9e:97:23:e5:90:08:7c:ce:33:13:f9:
26:d8:bf:67:8f:64:0e:46:90:2d:c5:db:31:cf:e1:
86:9a:02:7d:a7:1f:32:b5:a5:7e:f8:6b:2f:43:d5:
1c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F1:B8:ED:8C:48:10:EB:DE:7C:BF:93:82:FC:C3:0F:65:61:1B:60
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3137322e302f32332d3234203d3e20313532333833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.172.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:8b:17:9c:f6:76:e1:24:32:a0:d4:01:19:f1:57:8b:1c:7b:
aa:c1:ea:11:1a:af:91:31:e8:22:87:c0:97:45:e5:79:cf:f8:
95:e0:27:bc:a7:bb:24:89:aa:08:e1:3b:b9:d4:0a:ed:28:20:
e2:85:68:1e:e9:71:e6:c4:75:43:09:58:fe:7c:1f:2f:5c:74:
8c:74:95:e6:01:30:ab:c6:0b:a9:1a:86:a4:c8:46:87:48:b0:
fe:84:8b:a7:0d:ac:30:48:10:74:44:53:45:c9:31:2c:b2:14:
8a:ba:99:d7:1b:a4:55:de:fd:f7:cd:3c:91:2b:79:e7:31:ae:
60:b7:72:a2:10:56:b4:66:e0:9b:e0:6d:52:b9:0d:a4:0d:d0:
c2:da:0d:c3:84:6c:c7:e5:ac:da:ef:32:95:eb:33:d2:fa:49:
b6:ec:7d:8e:59:19:44:4a:f1:d0:3a:b2:54:80:0e:aa:ea:78:
c8:ce:69:d4:e8:16:d5:d0:c9:b8:c0:3b:60:c5:07:ac:5e:52:
07:7c:8b:b9:04:89:56:46:97:86:fd:8a:82:ed:b1:ec:c0:65:
9e:b1:76:99:90:ff:80:cb:44:e5:56:d5:bc:87:ed:5e:35:91:
61:39:91:6e:96:8e:8e:45:24:e2:df:e6:e4:4f:5a:ba:3d:dd:
e5:cc:f5:54
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIUISR62jSx5AH9/rvd/6MkwKMhX1AwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDEyNzAzNTUwMFoX
DTI2MDEyNjA0MDAwMFowMzExMC8GA1UEAxMoMTBGMUI4RUQ4QzQ4MTBFQkRFN0NC
RjkzODJGQ0MzMEY2NTYxMUI2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJrEazcDaeNTeKQTgNQ2GSvjRtkstvJTa/nkqvKW9ya+IF1LKpdWOv8O7oYp
waPjp7/qggE+8QE94AeKpBlkXhTSGBMBA4B8/vmdlc8W1UaGXH17yOk9UZd8+ZZe
kMVqjyB4p0R90Sva6cPH87hcKhhphiV0wYGtQsKUXkz9o5USbh9yQV/OPqpsdCLE
3kvk+m1q26/1m2JU753Sn1o1P0jRr75ZF97cAxhml9QZEo90/HTWiPea4ybU/93/
eJGaJ0nzyhQyzfc82a2ZP5T5ojWphyVxLJ6XI+WQCHzOMxP5Jti/Z49kDkaQLcXb
Mc/hhpoCfacfMrWlfvhrL0PVHGkCAwEAAaOCAgEwggH9MB0GA1UdDgQWBBQQ8bjt
jEgQ6958v5OC/MMPZWEbYDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz
MTM1MmUzMTM3MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM1MzIzMzM4MzMu
cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAGdD6wwDQYJKoZIhvcNAQELBQADggEBAH6LF5z2duEkMqDUARnx
V4sce6rB6hEar5Ex6CKHwJdF5XnP+JXgJ7ynuySJqgjhO7nUCu0oIOKFaB7pcebE
dUMJWP58Hy9cdIx0leYBMKvGC6kahqTIRodIsP6Ei6cNrDBIEHREU0XJMSyyFIq6
mdcbpFXe/ffNPJEreecxrmC3cqIQVrRm4JvgbVK5DaQN0MLaDcOEbMflrNrvMpXr
M9L6SbbsfY5ZGURK8dA6slSADqrqeMjOadToFtXQybjAO2DFB6xeUgd8i7kEiVZG
l4b9ioLtsezAZZ6xdpmQ/4DLROVW1byH7V41kWE5kW6Wjo5FJOLf5uRPWro93eXM
9VQ=
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:04:00 2025 by rpki-client