Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa
File: 3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa (raw, json)
Hash identifier: MApB0t5E0dWbD+F5eyxnWgvkeApqqSwFfD4jjllVT3Y=
Subject key identifier: 88:C9:60:BE:6F:0C:B8:6D:03:FC:2B:75:08:DC:95:02:7A:12:8D:51
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 17A318D7A8EFB3E6884198CA2659FE0B88D8497D
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa
Signing time: Mon 06 May 2024 03:32:33 +0000
ROA not before: Mon 06 May 2024 03:27:33 +0000
ROA not after: Mon 05 May 2025 03:32:33 +0000
asID: 141662
IP address blocks: 157.66.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:a3:18:d7:a8:ef:b3:e6:88:41:98:ca:26:59:fe:0b:88:d8:49:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: May 6 03:27:33 2024 GMT
Not After : May 5 03:32:33 2025 GMT
Subject: CN=88C960BE6F0CB86D03FC2B7508DC95027A128D51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9f:b9:8d:b2:8c:95:b3:06:d8:b3:2e:af:02:
d7:89:ee:e9:57:b9:72:01:92:26:75:e5:c7:bc:a3:
98:9a:0b:6f:1b:db:99:23:cd:2d:da:bf:20:10:03:
95:45:d0:fe:44:c5:c6:01:d4:4b:e9:e7:3f:bd:80:
2a:12:b5:94:6a:93:0f:9e:d9:4f:6f:42:a2:56:b4:
15:32:71:81:85:f6:ab:89:7a:24:55:10:7f:40:95:
5e:86:2c:af:c6:88:01:0d:a2:79:67:7f:54:d6:ea:
55:1e:48:49:4f:87:a1:b2:53:a2:00:f5:74:e6:73:
55:36:bb:d5:1b:0a:60:f2:2b:4e:07:b1:96:96:c5:
86:f9:2e:5c:9f:d1:0f:3d:80:8d:28:80:09:19:9d:
31:65:4a:15:cb:22:3c:f4:da:31:5a:a8:cc:91:09:
78:69:5f:42:3b:18:d9:0b:76:20:03:57:07:3d:8e:
0d:f7:80:dc:5d:e5:e8:96:17:8a:92:3e:2c:5b:5b:
62:6e:06:fc:23:01:18:e7:92:6f:53:56:33:56:b1:
4e:66:a3:e8:c2:15:81:4e:88:2c:ce:f4:d1:03:1d:
50:b9:ef:22:2e:d0:bb:57:57:0c:f9:89:2f:20:22:
ad:fc:80:d7:6c:5e:dc:9e:85:67:6a:82:cc:6b:ed:
8b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C9:60:BE:6F:0C:B8:6D:03:FC:2B:75:08:DC:95:02:7A:12:8D:51
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3133382e302f32342d3234203d3e20313431363632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.138.0/24
Signature Algorithm: sha256WithRSAEncryption
02:47:5f:59:f1:b5:b6:94:0b:95:f4:b9:41:8a:88:8c:18:71:
76:0d:ad:bd:f8:49:b6:03:b0:de:2d:dc:eb:d6:c5:f3:dc:e9:
9d:54:9b:b6:f5:04:70:87:64:f0:e6:4a:75:2b:29:de:1c:48:
3a:2f:ba:3e:44:b6:12:22:c4:90:a0:56:4c:fb:7c:4f:16:57:
da:9d:ac:72:10:49:85:78:38:d1:50:e6:4f:41:63:91:34:16:
a6:7a:38:37:2c:8d:5d:ab:38:37:e7:ae:0d:ac:14:96:61:ef:
79:dd:f6:80:0f:b7:4e:d5:5d:f2:6f:98:b8:ff:82:2c:a7:e5:
5c:be:b1:8c:6f:39:22:43:d6:ba:f3:02:1c:2a:3f:96:09:46:
f6:17:94:6a:b9:30:38:8c:a4:48:e9:25:88:27:e6:28:2a:63:
84:34:6a:d8:83:de:fa:de:a0:00:d1:df:c7:60:ab:59:f2:4b:
fa:2e:62:90:f0:2d:41:ac:0d:d4:e4:f9:4f:fc:0f:13:94:44:
75:df:fa:23:2e:5b:b4:f3:dd:f1:ca:8c:6b:2c:4e:13:92:fc:
22:62:85:db:f3:9d:5c:74:d4:07:6d:2b:31:d5:ae:a0:e8:1d:
85:ec:73:49:cf:35:d4:ce:43:77:f9:d6:0e:aa:5f:0e:1c:58:
26:74:d1:f7
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIUF6MY16jvs+aIQZjKJln+C4jYSX0wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUwNjAzMjczM1oX
DTI1MDUwNTAzMzIzM1owMzExMC8GA1UEAxMoODhDOTYwQkU2RjBDQjg2RDAzRkMy
Qjc1MDhEQzk1MDI3QTEyOEQ1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN+fuY2yjJWzBtizLq8C14nu6Ve5cgGSJnXlx7yjmJoLbxvbmSPNLdq/IBAD
lUXQ/kTFxgHUS+nnP72AKhK1lGqTD57ZT29Cola0FTJxgYX2q4l6JFUQf0CVXoYs
r8aIAQ2ieWd/VNbqVR5ISU+HobJTogD1dOZzVTa71RsKYPIrTgexlpbFhvkuXJ/R
Dz2AjSiACRmdMWVKFcsiPPTaMVqozJEJeGlfQjsY2Qt2IANXBz2ODfeA3F3l6JYX
ipI+LFtbYm4G/CMBGOeSb1NWM1axTmaj6MIVgU6ILM700QMdULnvIi7Qu1dXDPmJ
LyAirfyA12xe3J6FZ2qCzGvti0ECAwEAAaOCAgEwggH9MB0GA1UdDgQWBBSIyWC+
bwy4bQP8K3UI3JUCehKNUTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGEBggrBgEFBQcBCwR4MHYwdAYIKwYBBQUHMAuGaHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNTM3MmUz
NjM2MmUzMTMzMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM2MzIu
cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBACdQoowDQYJKoZIhvcNAQELBQADggEBAAJHX1nxtbaUC5X0uUGK
iIwYcXYNrb34SbYDsN4t3OvWxfPc6Z1Um7b1BHCHZPDmSnUrKd4cSDovuj5EthIi
xJCgVkz7fE8WV9qdrHIQSYV4ONFQ5k9BY5E0FqZ6ODcsjV2rODfnrg2sFJZh73nd
9oAPt07VXfJvmLj/giyn5Vy+sYxvOSJD1rrzAhwqP5YJRvYXlGq5MDiMpEjpJYgn
5igqY4Q0atiD3vreoADR38dgq1nyS/ouYpDwLUGsDdTk+U/8DxOURHXf+iMuW7Tz
3fHKjGssThOS/CJihdvznVx01AdtKzHVrqDoHYXsc0nPNdTOQ3f51g6qXw4cWCZ0
0fc=
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:01:49 2025 by rpki-client