Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa
File: 3135372e36362e38342e302f32332d3234203d3e20313339393831.roa (raw, json)
Hash identifier: UwghBxLjKyd2di1G1KoDzPcvU1ninheTXAM40M2/0/0=
Subject key identifier: 1E:60:E4:18:0D:3E:10:DB:36:B4:81:E0:95:FE:06:F2:AD:39:4B:B7
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 6A41EEC5AA47341797A9FF1262586B9253C1120E
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa
Signing time: Mon 01 Jul 2024 12:32:14 +0000
ROA not before: Mon 01 Jul 2024 12:27:14 +0000
ROA not after: Mon 30 Jun 2025 12:32:14 +0000
asID: 139981
IP address blocks: 157.66.84.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:41:ee:c5:aa:47:34:17:97:a9:ff:12:62:58:6b:92:53:c1:12:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 1 12:27:14 2024 GMT
Not After : Jun 30 12:32:14 2025 GMT
Subject: CN=1E60E4180D3E10DB36B481E095FE06F2AD394BB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ea:a4:c9:cb:58:22:03:1b:b0:e2:c2:9c:24:
5f:c0:de:a8:64:cc:31:17:04:29:e6:79:a0:2a:a4:
79:c4:a4:ab:8a:96:f9:89:1f:56:00:3a:01:33:22:
96:9e:ff:73:f9:9d:13:58:01:85:c2:96:62:49:36:
d5:0b:76:71:02:df:fa:6c:c8:6f:60:fe:95:b4:10:
14:0c:ef:36:b5:22:24:6b:c9:21:00:8d:88:90:2b:
1d:01:bd:a9:af:dc:b0:b7:4b:53:12:e1:46:0f:69:
65:79:f8:9f:a2:3a:e0:07:1f:40:a7:0c:93:a0:15:
49:72:91:97:b9:ff:e4:a3:db:d9:bd:1e:83:c2:63:
cc:17:55:6b:25:c7:85:94:4a:0b:f2:f7:52:dc:fd:
52:d6:4f:61:09:17:3d:90:99:8c:9b:65:9f:95:24:
82:f6:1d:c7:f3:49:af:b5:23:70:11:84:33:65:43:
66:a6:b6:7c:62:3c:7f:9f:23:2b:1b:9c:5a:d2:5c:
8f:8e:de:ba:70:e5:46:11:98:1d:8c:85:8b:e6:bd:
1c:a8:55:79:13:29:c5:63:58:15:d7:6f:55:3b:c9:
d3:6a:0d:07:b4:26:1f:63:1d:f2:69:89:20:5a:cf:
68:2c:9f:6e:34:0f:0d:ab:01:d0:87:cc:23:c6:78:
1f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:60:E4:18:0D:3E:10:DB:36:B4:81:E0:95:FE:06:F2:AD:39:4B:B7
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3135372e36362e38342e302f32332d3234203d3e20313339393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.84.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:ce:b0:72:d1:f5:cf:57:be:35:b2:ab:0c:48:6d:3a:74:d4:
e7:9a:3e:fa:04:82:20:c7:8e:7c:d7:bd:8b:91:86:62:68:23:
2b:80:1a:3f:a5:94:ff:ab:d7:ae:f9:24:74:3d:b3:96:e0:de:
f1:ea:b4:00:e7:27:41:63:66:1a:90:d6:e1:fa:10:eb:94:77:
a4:7e:47:1c:06:df:8f:53:e1:76:85:1b:5c:d2:45:a1:2d:f4:
96:86:f0:cf:d1:5a:08:88:57:f7:3b:c9:6a:c2:17:85:24:98:
81:0c:4a:3f:e3:23:7e:ee:2f:8f:45:44:73:12:1b:59:dc:71:
e1:69:3b:80:c8:8c:10:e7:a9:59:13:60:f3:94:31:e4:b4:a7:
d4:dc:11:97:38:eb:1a:67:22:04:7f:b2:d1:9b:97:f3:dd:20:
40:82:60:c2:49:0f:80:60:c1:f7:38:51:45:0e:fa:9b:82:ee:
02:6d:8d:2a:35:1b:f8:7d:a1:10:e4:2f:d0:1a:1e:26:68:6c:
ca:99:66:f6:25:b0:27:60:58:c2:17:b8:43:86:81:8b:1b:36:
17:4d:5f:3f:23:c4:6f:d3:25:59:61:e5:36:38:f5:86:78:e4:
2f:ad:56:15:8a:cf:35:78:22:6d:1d:ae:47:89:00:8f:5c:3d:
b3:58:a1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:01:29 2025 by rpki-client