Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa
File: 3135372e36362e3231342e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: STge6uU6WOAa7W24MrB1T6wfBa1lQJuhEo4n3k++7IA=
Subject key identifier: 39:96:9C:3D:38:94:DB:23:CA:7C:C7:FE:34:58:66:08:79:C0:CD:6A
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 6B6ED6BE8E5D09C813801585E63ACEECA18FD934
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa
Signing time: Sun 30 Jun 2024 01:59:53 +0000
ROA not before: Sun 30 Jun 2024 01:54:53 +0000
ROA not after: Sun 29 Jun 2025 01:59:53 +0000
asID: 4800
IP address blocks: 157.66.214.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:6e:d6:be:8e:5d:09:c8:13:80:15:85:e6:3a:ce:ec:a1:8f:d9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jun 30 01:54:53 2024 GMT
Not After : Jun 29 01:59:53 2025 GMT
Subject: CN=39969C3D3894DB23CA7CC7FE3458660879C0CD6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1e:69:85:ec:60:e0:10:b4:84:b2:c1:4a:e1:
55:c6:95:75:e1:52:e8:0d:0e:c3:25:ff:a1:1e:af:
dc:3f:a4:92:6c:88:6f:0d:5b:20:7d:c6:da:aa:bb:
f6:de:f8:c6:bf:36:32:78:d6:76:a7:ed:10:9a:4c:
63:ab:00:b2:34:09:ce:8c:ec:ce:4a:63:15:79:63:
97:20:14:59:d7:d6:2e:3f:41:fa:2f:e3:8c:30:11:
03:65:ea:4b:02:e4:a0:b1:39:8a:9c:65:ea:41:f1:
32:9b:79:2f:12:89:eb:ec:4c:97:e7:3c:e0:37:49:
1e:cd:84:88:d8:51:07:2f:5d:9c:03:50:52:2d:c8:
0e:76:52:b6:63:33:e4:c4:e1:9c:e3:b3:3e:63:e3:
2a:2c:6e:07:a2:68:6e:8d:21:c3:a4:20:13:61:88:
93:7e:11:b1:34:e7:92:99:75:a6:44:06:14:fc:57:
8f:79:83:67:25:9f:61:52:94:5a:38:3e:29:11:7f:
3c:e0:24:88:6c:53:28:67:93:b8:07:0b:0c:86:78:
5f:2a:54:5e:a2:c2:df:9a:19:50:04:61:4f:87:4b:
b0:b4:13:5a:4e:c0:bc:db:47:1c:08:84:d2:d7:09:
d2:79:d3:ec:ea:db:3c:2e:d9:75:63:52:08:6d:a4:
62:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:96:9C:3D:38:94:DB:23:CA:7C:C7:FE:34:58:66:08:79:C0:CD:6A
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e3231342e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.214.0/23
Signature Algorithm: sha256WithRSAEncryption
25:19:bd:7c:8f:79:a0:2b:07:23:0d:1e:06:5c:b4:d1:6c:57:
87:4a:8e:d0:36:9f:f9:5a:b3:53:ed:c7:d6:51:cb:47:b6:45:
b3:cd:61:f5:c1:bc:ce:19:41:86:5b:46:a4:d5:14:67:8d:07:
80:b2:fd:d3:fe:d8:0e:74:03:4f:8e:ee:ec:02:e7:89:04:58:
30:ff:1f:9e:8e:75:82:92:e0:4a:d6:8a:9a:48:94:18:a0:3b:
73:36:6b:9f:e9:6c:c9:63:2f:ed:b9:36:02:8e:4b:ef:93:be:
e4:d6:2f:21:d5:1c:1a:2f:20:76:72:6e:10:3b:4d:66:0c:ef:
c5:c7:77:f0:f1:4f:66:9a:dd:f0:80:c0:cb:a1:0b:d3:5e:6a:
57:7b:ac:92:65:71:ec:4f:b4:0a:2c:ff:a2:b4:b3:5d:69:82:
ac:71:a5:0f:e7:80:08:71:b7:b6:0a:81:40:8f:ee:1a:c8:dd:
85:0e:bc:90:fc:47:e1:6b:98:72:d7:61:ff:28:be:9d:19:a4:
4f:bd:83:8d:6f:ae:48:5f:1a:99:0e:3b:93:60:35:d9:14:7b:
b9:46:9c:3f:e1:72:7c:52:12:4e:0d:0d:8f:c6:ab:21:76:ca:
6f:76:3b:71:92:ee:18:7f:7a:61:cb:2e:87:54:3d:3b:2f:a8:
c7:01:58:15
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:55:59 2025 by rpki-client