Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa
File: 3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa (raw, json)
Hash identifier: tLX7v2FXZZxC1JTT02XTPOl+08kJCb/hTPb3LbXHoO4=
Subject key identifier: A0:10:A8:2F:7B:80:44:BD:9C:5B:C9:70:8D:8E:1A:C3:46:40:4D:15
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 18A6D401F98CC3F77057F63F2D22954258D7DD84
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa
Signing time: Wed 29 Jan 2025 04:00:00 +0000
ROA not before: Wed 29 Jan 2025 03:55:00 +0000
ROA not after: Wed 28 Jan 2026 04:00:00 +0000
asID: 152393
IP address blocks: 157.15.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:a6:d4:01:f9:8c:c3:f7:70:57:f6:3f:2d:22:95:42:58:d7:dd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 29 03:55:00 2025 GMT
Not After : Jan 28 04:00:00 2026 GMT
Subject: CN=A010A82F7B8044BD9C5BC9708D8E1AC346404D15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7d:31:07:08:da:b1:e4:46:c7:27:62:e3:2d:
60:af:f8:d9:c5:89:11:7c:d1:06:98:29:37:9c:dc:
02:59:1b:47:a1:f4:31:3e:a3:a7:87:a4:c5:93:06:
f9:cf:62:8d:b9:03:83:25:3b:23:71:1a:5d:61:7f:
b1:46:12:6e:fe:96:98:2c:2d:aa:15:a0:db:7f:07:
14:ff:65:1a:d3:50:f6:4a:a3:d5:0c:d3:da:08:43:
20:32:ed:1f:8a:33:bc:2d:3c:5c:e8:bd:bf:b1:ce:
cc:02:12:2f:6f:7a:a3:98:f8:69:17:b4:15:dd:e7:
2b:2e:2c:d6:f8:43:cc:a1:28:0b:a1:c6:7c:f9:f3:
af:10:e8:68:55:01:8f:52:b1:66:cd:6b:b3:e2:8b:
09:e6:31:a4:43:1b:58:2b:ff:ae:db:5f:fe:ab:9b:
4b:e2:c1:bb:5b:dc:9f:54:d6:aa:8a:58:fe:7e:c9:
0b:27:53:b7:00:17:79:0c:e6:5c:b7:6a:61:a2:b1:
76:8f:14:c4:12:0c:a0:f6:a4:b5:d3:04:43:36:0f:
c2:d6:a5:af:30:e9:04:bd:d1:6e:29:37:15:d3:31:
25:45:19:42:b1:bd:ba:25:b4:bc:a8:ab:de:5e:99:
db:45:81:fe:ce:e4:41:cd:30:92:86:65:ff:af:68:
1e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:10:A8:2F:7B:80:44:BD:9C:5B:C9:70:8D:8E:1A:C3:46:40:4D:15
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e3231302e302f32332d3234203d3e20313532333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.210.0/23
Signature Algorithm: sha256WithRSAEncryption
14:07:17:0a:38:3b:1a:23:0e:7e:87:aa:21:d1:da:19:9d:ed:
92:b9:e6:9f:ba:12:99:40:c8:f2:6f:1b:06:46:cb:a2:8e:f2:
ef:65:c3:8a:28:b5:8b:54:4e:2e:0b:fb:31:42:4f:fb:e1:ec:
83:e3:98:dc:4c:79:5e:36:4c:e3:4a:10:d5:4c:6d:05:ac:71:
41:37:62:43:07:67:3e:66:f7:12:aa:69:e7:9a:92:79:6f:17:
3e:9c:23:9e:1f:09:5b:07:8c:84:2d:6e:85:1e:57:c2:d8:1b:
cf:4e:7e:67:5b:e0:74:03:f4:af:51:10:0d:cc:01:2f:c8:9d:
f5:20:b4:8e:6d:dd:17:46:c1:41:a1:ff:62:8b:b5:65:2d:be:
64:30:ba:4d:22:59:ca:95:9b:cc:fe:ec:6a:0a:0b:ba:d0:73:
76:54:1c:6d:19:cd:1a:76:b2:8d:0a:14:69:93:d2:c3:3e:13:
6d:b0:55:9f:a6:9d:7c:d2:4e:bb:bc:e6:0f:b2:5b:5f:59:a9:
d0:54:89:db:a4:a1:64:67:44:78:bb:22:9d:12:5d:5a:0b:03:
03:9e:2d:1c:ec:73:c0:30:fd:82:f6:11:70:2a:75:12:3e:ee:
eb:7e:e9:37:af:6c:f3:85:0a:08:0d:70:1d:2b:0d:d1:57:ac:
44:09:fd:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:14:08 2025 by rpki-client