Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa
File: 3135372e36362e35302e302f32332d3234203d3e20313532343338.roa (raw, json)
Hash identifier: yy4AjmLaBUMFlGKIew5yIYtfOZqRhgssccp8ffvjgLE=
Subject key identifier: 43:A1:70:F4:6F:D8:E6:7F:B4:09:59:81:FA:96:AC:2A:1B:CB:D1:93
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 65BFA9923A707E3C2B7F99D4412C6DA99FF9A58F
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa
Signing time: Wed 03 Apr 2024 13:22:55 +0000
ROA not before: Wed 03 Apr 2024 13:17:55 +0000
ROA not after: Wed 02 Apr 2025 13:22:55 +0000
asID: 152438
IP address blocks: 157.66.50.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:bf:a9:92:3a:70:7e:3c:2b:7f:99:d4:41:2c:6d:a9:9f:f9:a5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Apr 3 13:17:55 2024 GMT
Not After : Apr 2 13:22:55 2025 GMT
Subject: CN=43A170F46FD8E67FB4095981FA96AC2A1BCBD193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:eb:5e:82:82:18:d1:b6:c5:33:5d:0f:ce:57:
4e:ce:7c:2b:1a:96:f6:f6:2e:af:4e:cc:bb:56:4f:
14:30:cf:a3:4b:25:af:c5:ea:d3:12:f7:13:bd:73:
a7:1f:94:b4:9b:52:8f:b7:64:1a:df:ac:66:be:60:
41:b2:78:3b:cb:69:21:f3:ab:6f:72:67:3b:92:1d:
23:ee:8c:d7:66:7c:23:87:2f:10:0d:0a:ea:b8:ed:
4c:70:83:83:0c:90:20:f6:92:2b:90:ad:9b:36:62:
4b:b9:ec:9f:7a:04:5f:31:5d:7c:5c:09:28:91:c8:
a4:d4:49:22:59:63:38:09:4c:5e:fe:e4:a2:35:90:
eb:04:a5:1d:29:11:0c:ec:ec:1e:1f:8d:df:b8:08:
27:99:d3:4a:85:fa:ae:c9:d6:bd:5f:91:f3:bd:91:
3c:58:e5:b6:e6:1d:f8:41:a1:6f:fa:9a:90:d7:68:
af:65:f9:da:08:44:f6:48:1c:eb:5f:b1:ea:67:88:
01:6a:ec:fa:73:c9:1f:5e:71:71:d4:22:ae:ba:8a:
c0:f1:c9:9d:03:2b:47:6b:1c:7d:0a:03:55:7f:cc:
b4:c5:31:b5:de:32:d8:49:76:9a:6a:2c:5a:34:70:
72:18:aa:43:af:1a:8f:62:ad:f4:c8:dd:66:b3:fa:
e7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A1:70:F4:6F:D8:E6:7F:B4:09:59:81:FA:96:AC:2A:1B:CB:D1:93
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35302e302f32332d3234203d3e20313532343338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.50.0/23
Signature Algorithm: sha256WithRSAEncryption
96:db:f7:6f:4d:d2:69:50:d2:35:32:9a:cf:3a:15:88:0d:7d:
36:ca:f2:7a:86:86:46:94:e2:6a:42:f5:70:14:f4:7a:42:52:
eb:03:18:0f:0e:c4:ca:f5:dc:d2:fe:cc:0c:9e:3d:ed:88:64:
0f:1b:0e:a8:0a:88:04:e5:e2:78:95:a2:1b:a6:a0:6b:e8:76:
a8:05:92:1a:de:29:8d:06:34:d8:39:b1:c6:86:f4:fc:0c:48:
61:1c:91:bf:a8:b5:66:7f:c4:48:4b:c3:03:48:4b:3a:21:43:
e5:22:b7:c3:8d:66:41:2a:d0:65:27:e5:e6:4f:81:7e:de:df:
62:bb:28:12:e0:27:ec:63:bf:16:4f:12:5e:6f:5d:30:b3:02:
b4:c6:8d:b3:b2:1c:54:2b:2c:bb:f5:d4:6c:87:73:88:85:89:
05:02:82:ae:d7:83:75:09:bf:e2:b5:f9:48:dc:b7:60:e8:44:
86:e9:73:e8:97:80:4e:0e:61:71:e5:2b:ee:32:ab:94:1a:bb:
5f:46:f5:2f:25:fb:14:ff:13:3c:d4:c6:ec:44:63:09:01:86:
81:7a:0b:6f:f6:33:a0:4b:d8:7c:08:0d:b1:05:38:3a:c4:77:
3f:7f:1d:40:ab:b5:ef:0f:05:da:c5:d5:fb:fa:e3:67:6e:ae:
40:11:11:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:56:00 2025 by rpki-client