Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa
File: 3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa (raw, json)
Hash identifier: rXkUip59Gd4zF9WtRcnqIH6RX8DvbMyMf0TvK1aShLE=
Subject key identifier: E1:CB:45:02:3E:38:67:D5:CA:56:11:24:64:FF:03:01:25:21:E6:96
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 68C24ECCEC2E87C2A8035EC29949DECB68E828A9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa
Signing time: Mon 30 Sep 2024 04:08:21 +0000
ROA not before: Mon 30 Sep 2024 04:03:21 +0000
ROA not after: Mon 29 Sep 2025 04:08:21 +0000
asID: 153116
IP address blocks: 160.25.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:c2:4e:cc:ec:2e:87:c2:a8:03:5e:c2:99:49:de:cb:68:e8:28:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 30 04:03:21 2024 GMT
Not After : Sep 29 04:08:21 2025 GMT
Subject: CN=E1CB45023E3867D5CA56112464FF03012521E696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:de:36:ca:3b:96:9a:0f:33:8b:6a:9f:d9:
da:5c:71:50:3e:b3:70:c0:49:65:99:1c:52:09:ed:
53:9d:65:57:15:49:36:a2:fa:43:06:b8:20:a3:a0:
37:b2:bf:7d:4f:c0:1b:b5:07:40:fe:c8:5a:eb:8f:
77:bc:90:60:a7:89:80:51:7e:cd:08:7f:51:8c:6a:
83:c3:6a:80:98:cf:ff:65:a8:70:8f:90:c2:eb:52:
3c:8d:81:cf:bf:48:4a:62:55:2b:5d:57:03:a9:02:
19:a5:9e:72:34:12:8d:21:f4:ac:ee:64:37:43:30:
d7:32:03:5c:7b:91:89:f0:5f:ca:a2:35:71:e7:b6:
a8:a2:b5:4f:fb:d2:90:9d:35:9e:1f:06:ef:6a:26:
09:6e:92:bc:2a:65:7d:25:50:8d:3d:29:7a:66:29:
d2:14:5d:fe:bb:65:96:82:4d:b3:b2:e9:cf:71:6a:
f5:e0:38:db:b5:13:b2:5d:0b:f0:3e:d2:81:27:e7:
99:21:91:3f:f5:db:fc:30:bd:06:a1:30:80:d9:06:
9e:8d:03:1e:32:80:f0:52:85:77:5c:ca:24:18:fc:
dd:ce:a6:88:d8:74:11:66:87:5f:af:36:cf:ed:10:
88:e5:11:f7:ea:d7:de:78:3e:38:83:f0:c5:26:90:
88:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CB:45:02:3E:38:67:D5:CA:56:11:24:64:FF:03:01:25:21:E6:96
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3230302e302f32342d3234203d3e20313533313136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.200.0/24
Signature Algorithm: sha256WithRSAEncryption
41:da:ba:e8:18:77:27:20:b5:e5:2d:4a:6f:4e:41:fc:a5:0f:
01:d8:8c:68:15:6e:01:ce:78:94:53:f2:6a:17:51:e3:46:70:
fa:2d:48:10:db:58:af:5a:fc:f4:00:19:ae:60:10:99:fc:1e:
78:5a:9c:45:a5:6b:60:47:84:dd:4e:ea:cc:70:6b:18:55:f6:
e8:6c:b0:f4:25:91:44:1a:a6:9c:54:43:33:00:00:ce:31:50:
ff:91:52:29:ef:fd:c4:e3:6d:8a:1e:f4:e8:06:15:5f:44:ac:
0d:f9:d0:96:22:b4:93:a9:34:ee:09:36:63:6a:a7:1a:18:69:
e4:0d:be:fe:43:30:07:f5:8a:75:06:e9:7d:70:b2:2b:9a:49:
2a:84:ed:2a:5f:7c:5b:61:3a:87:5e:db:5a:df:ff:c9:e9:55:
c9:4e:82:88:6d:2f:b5:95:18:69:03:96:23:ac:73:b2:56:ca:
e4:5d:04:5a:3d:5d:08:f9:3a:e6:21:e5:12:01:6b:de:e5:00:
a3:bb:f6:ee:af:70:19:32:58:9f:39:60:10:d2:84:47:e3:df:
33:90:a1:40:82:26:a3:d0:ea:ed:02:b8:02:bc:b3:d3:04:e7:
6b:70:5d:d4:7a:ab:03:0d:38:2f:87:60:45:e6:e6:de:c9:c1:
cb:92:62:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:35:06 2025 by rpki-client