Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e39362e302f32332d3234203d3e20313532333634.roa
File: 3135372e31352e39362e302f32332d3234203d3e20313532333634.roa (raw, json)
Hash identifier: pTvEu12B7Hs+Ks2Jv2Gn9NNQRGv0Gn7rOU1/My6+IPU=
Subject key identifier: 12:DE:0D:75:7A:CA:4B:4F:6D:88:AE:96:02:C0:76:D7:9F:BA:C2:FC
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 27137E1C320B6A4E5AB0415EB33FD187CFC3C0B5
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e39362e302f32332d3234203d3e20313532333634.roa
Signing time: Mon 06 Jan 2025 05:00:00 +0000
ROA not before: Mon 06 Jan 2025 04:55:00 +0000
ROA not after: Mon 05 Jan 2026 05:00:00 +0000
asID: 152364
IP address blocks: 157.15.96.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:13:7e:1c:32:0b:6a:4e:5a:b0:41:5e:b3:3f:d1:87:cf:c3:c0:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 6 04:55:00 2025 GMT
Not After : Jan 5 05:00:00 2026 GMT
Subject: CN=12DE0D757ACA4B4F6D88AE9602C076D79FBAC2FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ae:32:8d:61:9e:a8:b4:95:70:4a:04:f9:96:
81:1a:d3:ca:2b:9f:87:60:aa:f4:53:c5:50:81:6e:
33:b5:a5:53:bb:f5:94:dc:20:fd:07:5c:cb:a1:28:
db:40:86:e2:87:1c:02:53:73:21:fe:be:32:63:5c:
10:57:af:4a:d2:54:2e:8c:d5:63:e7:29:5a:4d:98:
f3:c0:ad:65:af:ce:2a:e4:b6:9d:34:ae:a2:e2:6c:
90:2c:84:df:d3:54:ac:a5:20:1d:d2:c9:d9:9d:f7:
7b:ad:a6:10:ee:e4:f2:48:35:c7:ad:04:95:34:ed:
2a:eb:c5:a3:cc:0f:6b:62:78:fa:88:aa:11:08:c0:
8e:c3:ee:21:24:76:f0:92:1b:94:8c:bd:53:8a:7c:
d8:ea:e4:f9:e8:ef:1c:15:55:ce:88:29:9f:d4:2c:
53:08:b7:58:96:9d:a1:9e:f1:ec:22:48:ee:0f:5f:
c0:a6:51:da:c6:be:01:77:2a:63:0f:b2:b8:70:ba:
15:b3:44:1c:4f:72:02:5b:87:90:0f:15:83:0a:a6:
41:83:56:4c:ff:45:1b:9d:d7:a5:b1:3e:5b:f8:a0:
5b:8f:84:49:5b:18:9d:64:3f:a4:72:13:94:17:26:
cc:af:cd:ec:a6:b4:be:38:a4:a2:57:a3:3b:ae:52:
72:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DE:0D:75:7A:CA:4B:4F:6D:88:AE:96:02:C0:76:D7:9F:BA:C2:FC
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e31352e39362e302f32332d3234203d3e20313532333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.96.0/23
Signature Algorithm: sha256WithRSAEncryption
91:13:2c:c4:2d:af:d4:95:00:e4:8d:ca:44:53:5d:3f:f8:59:
f9:82:a0:69:70:1a:cf:a7:b9:2b:80:8c:22:33:a1:58:72:92:
0e:1d:86:dd:20:3b:6a:9b:ac:0e:a2:f3:b7:f5:e2:41:25:98:
e4:30:45:07:3e:62:8b:be:69:38:62:20:a5:de:3d:83:e1:f3:
ea:98:bd:c8:e6:09:7f:64:6e:6a:f9:26:e4:ec:da:6c:d0:14:
44:24:fa:f9:b5:12:a9:78:a8:18:e1:75:3c:8f:66:75:99:c7:
b0:7d:59:39:a0:95:ca:9a:14:9e:56:e6:de:67:95:f9:50:1e:
ef:01:1c:63:95:be:c9:9f:a2:ed:ee:ea:1c:37:6c:e6:0c:0b:
dc:eb:ef:d1:37:02:0e:6b:d4:71:95:29:f3:66:32:49:89:e6:
0b:24:ea:13:1e:fb:52:1a:b7:bd:17:09:5d:88:b2:cb:86:12:
6d:11:f6:a4:17:8f:7c:c8:60:74:19:55:09:87:fd:32:0b:00:
5c:8c:7a:39:a8:5b:8d:e7:15:16:3a:b2:2e:ab:70:1f:d4:7d:
4a:de:59:3c:66:96:a3:b2:cc:18:55:9f:c8:78:e2:81:77:c5:
2d:1b:85:78:90:a8:fe:26:80:1a:7e:3f:80:21:36:fc:53:b9:
fe:29:0d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:36:09 2025 by rpki-client