Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa
File: 3135372e36362e35322e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: SBhwmjFnPlaKIVcALuTM6zaDYAolbgb1VqZburTnJR8=
Subject key identifier: FA:F5:D5:28:02:74:E5:BA:8B:0D:A5:B7:7F:0B:B3:74:38:3A:7B:46
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 6D2D7E87060BF3D497ED82763F4499F73300DFA4
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa
Signing time: Sun 30 Jun 2024 01:59:53 +0000
ROA not before: Sun 30 Jun 2024 01:54:53 +0000
ROA not after: Sun 29 Jun 2025 01:59:53 +0000
asID: 4800
IP address blocks: 157.66.52.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:2d:7e:87:06:0b:f3:d4:97:ed:82:76:3f:44:99:f7:33:00:df:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jun 30 01:54:53 2024 GMT
Not After : Jun 29 01:59:53 2025 GMT
Subject: CN=FAF5D5280274E5BA8B0DA5B77F0BB374383A7B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ef:8c:45:ad:29:b5:af:9c:51:3c:a6:95:80:
2d:29:a1:9f:30:b2:f4:58:35:0a:53:24:f4:f9:f9:
de:4e:75:66:a1:cc:86:14:0c:b3:32:19:ca:f9:70:
c2:6b:41:66:c1:02:59:8f:2c:fa:cf:12:e8:5b:52:
07:a8:e2:47:86:2d:90:47:2c:e5:4c:db:23:9d:18:
f5:e2:f1:ea:65:28:21:3f:ab:22:c0:79:4a:a2:d4:
fe:b6:51:47:f4:25:78:fc:65:05:71:74:4e:e7:e7:
23:a5:56:05:02:13:27:33:c5:26:63:22:b8:c2:fe:
69:9e:f5:7d:0e:a6:ec:c7:7c:a0:aa:d1:76:47:d5:
d7:4c:fd:97:33:92:66:4a:74:a9:35:be:40:d3:0e:
e3:e4:41:59:91:69:62:f9:04:10:a1:db:a5:72:02:
0f:15:5e:a1:0c:00:1e:4a:e5:29:1a:a0:93:1a:61:
a8:a2:e0:03:7b:50:f8:32:3f:37:cb:b1:f2:78:7a:
a8:c5:7f:27:bf:e5:3f:79:f1:ff:73:c6:ab:9d:71:
f1:a5:3e:d8:9c:ae:28:f0:cf:35:b4:7c:f6:67:15:
09:f3:13:a8:b3:ae:bb:f4:ba:25:90:2f:d1:5b:8b:
c5:6a:df:f8:1e:f1:41:36:97:c3:80:9e:ac:eb:94:
4c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F5:D5:28:02:74:E5:BA:8B:0D:A5:B7:7F:0B:B3:74:38:3A:7B:46
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e35322e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.52.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:88:f0:4a:8c:79:ad:17:f6:d0:5e:20:1b:4e:9a:8b:62:51:
f9:e4:63:0f:3e:9f:cd:16:65:24:90:5d:02:d4:4a:cd:7f:08:
56:01:1f:79:64:a9:e2:f5:67:01:07:36:b7:aa:ca:06:53:46:
bb:92:32:3d:c9:d5:61:bc:1a:42:a6:cd:a0:da:bd:ea:62:a6:
9b:2e:ba:53:b6:8f:58:02:b7:17:2b:2f:8f:cb:6b:4c:dd:e7:
c3:8f:fb:fc:f8:37:28:e8:23:b1:41:76:6c:43:19:13:ee:c0:
89:e2:cb:5f:41:28:1a:00:7e:0b:6f:5a:0c:8d:90:dc:14:db:
5c:2f:b7:2b:92:d6:fc:38:c4:b3:96:c0:83:04:9d:e0:ed:f2:
d8:f0:f6:af:4d:fc:0f:1d:ea:be:2f:ee:3f:47:4f:d0:6f:f5:
dc:dd:17:1f:27:0a:1e:5c:d6:06:59:7f:87:b3:db:1a:b9:e3:
25:cd:05:f0:72:27:93:3c:71:0f:9f:1f:cc:2b:cd:42:f6:53:
90:72:89:d1:a0:bf:15:d1:53:69:e0:79:35:f3:75:bc:e1:fa:
c2:a2:72:af:a0:2a:57:62:53:8e:1b:38:5b:8d:7c:94:49:8e:
d2:d5:ac:84:21:a1:cd:9e:a5:64:de:bc:d4:8d:04:b7:3a:ac:
0b:65:84:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:49:01 2025 by rpki-client