Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3130302e302f32342d3234203d3e20313532383038.roa
File: 3136302e32322e3130302e302f32342d3234203d3e20313532383038.roa (raw, json)
Hash identifier: iOG7SWXRh8DBa6SHIJ2E8Nw+MmBoYgDbuMuf8UavX2Y=
Subject key identifier: AC:FC:1A:BB:63:8A:A4:1B:8B:9E:9A:D8:2F:49:D7:5A:37:88:52:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 0254371274DD5AA8BC276C097ADFF77FA2885624
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3130302e302f32342d3234203d3e20313532383038.roa
Signing time: Mon 15 Jul 2024 07:37:17 +0000
ROA not before: Mon 15 Jul 2024 07:32:17 +0000
ROA not after: Mon 14 Jul 2025 07:37:17 +0000
asID: 152808
IP address blocks: 160.22.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:54:37:12:74:dd:5a:a8:bc:27:6c:09:7a:df:f7:7f:a2:88:56:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 15 07:32:17 2024 GMT
Not After : Jul 14 07:37:17 2025 GMT
Subject: CN=ACFC1ABB638AA41B8B9E9AD82F49D75A378852D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f4:17:bc:9d:9e:5c:68:99:53:f9:d8:cd:c8:
1d:00:a4:3c:03:f1:a3:e6:44:95:cc:30:46:1d:ef:
03:73:f0:d4:23:e4:89:21:f5:7b:ee:f9:3d:8e:d8:
60:4b:09:9d:7f:08:85:58:72:bb:78:33:4c:e7:1f:
32:e5:c8:dd:91:6b:33:ce:5e:c4:14:75:e5:ea:ea:
d0:5e:81:4a:09:10:39:29:67:ba:4b:36:54:da:3d:
6f:93:d0:1c:68:dc:be:33:02:04:14:34:ae:06:10:
4e:6c:85:dd:f3:cc:b5:ae:69:01:0a:89:82:b1:52:
ef:e0:d6:68:b9:f6:66:40:7c:e9:06:ff:1a:eb:f6:
83:77:cd:4e:e0:4e:b2:20:e9:b0:8a:81:69:d4:14:
22:f9:60:a1:14:95:45:ba:bf:a6:8c:8c:ee:9a:91:
27:05:31:80:d9:10:32:bf:3a:d9:e1:8d:9a:8f:e7:
a1:b0:10:d4:eb:ac:4c:9d:df:66:94:6c:d0:04:4e:
88:68:83:2a:d2:90:a8:93:8b:6e:63:46:48:f4:19:
38:c4:7a:fd:70:a4:85:e1:33:ec:b6:0f:af:c6:6b:
db:95:a1:b4:73:76:45:38:d1:d6:84:cf:cb:15:aa:
60:38:22:0f:3f:d9:0c:10:3f:16:0a:b2:60:4f:d9:
39:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FC:1A:BB:63:8A:A4:1B:8B:9E:9A:D8:2F:49:D7:5A:37:88:52:D4
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32322e3130302e302f32342d3234203d3e20313532383038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.100.0/24
Signature Algorithm: sha256WithRSAEncryption
99:ac:06:bc:e0:ba:33:36:c1:86:12:de:c8:a1:0b:5a:99:83:
fd:6f:7e:3d:48:64:e8:1d:ea:f4:f4:ee:a4:0c:56:19:a7:e1:
a6:bd:f8:09:a1:ee:79:6d:f4:db:63:48:a4:e1:82:dd:c8:39:
ee:79:1d:1c:39:49:a2:3c:6c:66:6f:f0:7d:2a:e0:ce:a9:65:
1f:44:60:69:56:74:48:7b:0b:3d:11:0d:a4:67:67:cb:0e:cc:
86:87:4b:28:74:50:66:91:db:ce:f5:8c:3b:e0:81:73:41:0f:
4f:46:f0:72:1f:3c:b1:34:0a:63:0c:2c:19:e7:d9:7e:d2:3c:
30:06:aa:d2:1e:51:be:61:d3:2d:43:e0:06:be:ba:bb:a6:ee:
51:24:3f:eb:0d:c3:b2:9b:9f:b4:3d:2a:ad:3f:74:c5:9c:bd:
b1:52:84:5c:e8:98:41:ab:ab:8a:4b:12:d1:ae:11:f5:74:8f:
47:5c:7d:5f:39:5e:ce:ea:6a:b6:be:18:8d:4c:9a:b0:82:b7:
71:74:ae:a6:00:e2:1b:77:6e:5b:02:f3:66:3f:bc:d4:a9:44:
7a:e0:78:2c:50:07:5c:bf:de:e8:8d:ec:b8:4b:19:1a:31:4c:
84:28:3a:a0:e4:cc:12:ef:e6:5e:68:27:b7:b3:b9:9c:e3:a2:
39:1d:c7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:35:00 2025 by rpki-client