Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa
File: 3135372e32302e33302e302f32332d3234203d3e20313532333836.roa (raw, json)
Hash identifier: fMQrJTpHdJy5xnd8AEm79HhM6FHn4Sj0MTLcrkihB9w=
Subject key identifier: 10:7F:B5:17:BE:D6:38:CD:38:AB:C4:BC:CE:15:D1:BC:B6:84:70:02
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 4501651CC9FBBE80349B4AB3D7DD34689175CDF9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa
Signing time: Fri 22 Mar 2024 06:46:44 +0000
ROA not before: Fri 22 Mar 2024 06:41:44 +0000
ROA not after: Fri 21 Mar 2025 06:46:44 +0000
asID: 152386
IP address blocks: 157.20.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:01:65:1c:c9:fb:be:80:34:9b:4a:b3:d7:dd:34:68:91:75:cd:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 22 06:41:44 2024 GMT
Not After : Mar 21 06:46:44 2025 GMT
Subject: CN=107FB517BED638CD38ABC4BCCE15D1BCB6847002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8a:f3:a6:f7:ff:c3:c5:0c:84:f6:c1:91:93:
0c:62:32:68:7b:58:80:c4:64:b7:46:eb:75:c7:ff:
9b:f3:86:5a:48:41:09:2d:3c:4d:d7:92:8f:77:d0:
85:b9:42:b4:f7:da:d0:a5:e4:af:b4:be:d1:51:89:
a4:37:7d:d6:e8:d9:c9:1f:ee:ec:d7:b8:8f:3e:52:
5e:53:05:af:38:ff:48:cc:04:b7:80:dd:75:e2:57:
d0:99:52:9b:a6:e0:bc:54:32:c4:39:2b:f1:8d:da:
6f:84:c2:95:68:38:39:85:a5:c4:6c:70:6d:fa:3b:
e8:95:69:a4:aa:f4:12:d8:82:0f:c9:2e:46:fb:02:
e7:32:cc:25:60:73:b2:97:5f:52:ca:f4:ca:60:04:
e1:64:2e:50:d0:66:46:08:65:a7:bb:c3:11:de:8e:
b9:8e:2b:bf:66:1d:99:b3:c8:89:d1:71:bb:8b:6d:
16:6c:ef:a7:a8:5b:94:c7:d6:25:0a:60:6d:65:80:
02:7a:bb:fa:0e:49:77:56:d4:da:60:ac:2d:b8:d6:
a3:a5:12:da:b7:59:84:b5:98:a2:45:6b:28:4a:d0:
70:76:67:36:7f:7b:c2:4a:1c:b8:a9:c0:33:38:48:
10:a0:5e:a3:19:a2:5f:7a:9a:e0:c7:16:c4:b8:fd:
a6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7F:B5:17:BE:D6:38:CD:38:AB:C4:BC:CE:15:D1:BC:B6:84:70:02
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e32302e33302e302f32332d3234203d3e20313532333836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.30.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:92:a6:0c:b8:64:61:36:ce:ae:6d:01:ba:67:37:bc:e0:da:
06:ca:91:ca:38:79:c0:17:de:f6:e1:ee:20:7c:3a:d7:e2:29:
27:b7:08:1a:42:37:84:c5:19:7d:a7:6c:1b:9d:6e:35:07:08:
f8:c5:cc:9c:7c:c3:f5:be:ae:ba:72:6f:01:7d:84:db:3a:71:
1d:2c:22:a3:70:dc:f3:0e:75:8b:30:21:69:a5:09:c0:0c:3e:
c8:38:a9:26:83:f1:db:92:9d:32:89:c5:b2:57:b1:81:c0:bc:
df:67:5e:77:d0:cc:19:48:55:1b:b4:0f:26:8f:ec:48:5f:98:
1f:50:d6:d4:d2:c0:eb:52:41:b3:03:5d:32:54:62:71:7c:fc:
91:7f:8a:74:d9:03:9f:18:58:1e:14:97:5d:a0:88:e1:61:37:
7d:a7:d8:68:aa:a6:7f:fd:0e:6d:5c:77:43:e6:33:28:d8:50:
be:9e:d2:e6:63:33:71:11:b7:48:5a:c6:5a:10:18:69:54:24:
2b:a7:49:26:64:94:95:a9:9c:02:4d:50:8f:59:c7:10:3c:fc:
67:21:20:4c:42:9a:35:a8:f8:a8:e4:37:ee:a6:03:2d:40:82:
4f:9c:8c:2e:73:e5:c9:df:42:16:32:fe:57:01:3e:ac:0e:cc:
96:05:4b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:04:59 2025 by rpki-client