Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa
File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json)
Hash identifier: URzYg2LypxBmczlks3WHab7a++Svz/tgN65+HHSDhJg=
Subject key identifier: 4F:F0:E0:38:77:73:43:0A:11:1A:AA:0F:7F:93:4B:19:4C:FD:F1:D1
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 55C20B8FE9B699F931C86453BA50A06FD750DA75
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa
Signing time: Fri 02 Aug 2024 08:51:22 +0000
ROA not before: Fri 02 Aug 2024 08:46:22 +0000
ROA not after: Fri 01 Aug 2025 08:51:22 +0000
asID: 153091
IP address blocks: 160.25.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:c2:0b:8f:e9:b6:99:f9:31:c8:64:53:ba:50:a0:6f:d7:50:da:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 2 08:46:22 2024 GMT
Not After : Aug 1 08:51:22 2025 GMT
Subject: CN=4FF0E0387773430A111AAA0F7F934B194CFDF1D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6e:72:a7:ef:c4:de:3b:4e:ac:70:a6:62:be:
de:de:01:bf:4f:50:3d:2a:4d:a4:cc:b2:4b:b7:f7:
d8:18:27:be:92:04:8a:ec:5b:cf:db:a8:30:65:17:
05:ab:cf:ed:f7:91:b8:9d:58:fd:67:07:b4:a1:51:
72:95:52:44:28:8b:0d:1a:58:16:86:17:23:62:3b:
2c:40:fe:e3:c0:d2:a2:a7:ca:99:fd:c8:4d:26:00:
66:1d:36:f0:9a:30:b0:3b:16:a3:c1:30:97:eb:b1:
39:a9:54:b0:63:65:19:ca:98:58:4d:bc:6e:02:8c:
f6:14:41:c5:3e:59:30:86:91:f2:8e:a1:cc:88:d4:
8c:2d:6a:9f:28:12:8e:b3:a5:3c:28:40:ed:d8:99:
8d:cf:52:e3:e5:ac:9d:b8:d5:92:e7:5a:98:32:a0:
00:34:d9:61:c3:8f:bf:78:c1:a0:50:8e:87:30:bd:
51:29:cf:94:03:1a:00:13:31:fc:73:de:5e:68:de:
39:60:3d:75:07:9e:95:c6:81:4a:fa:ba:b6:99:f2:
41:f9:fb:87:b9:59:c7:13:03:9c:dd:67:53:1d:55:
eb:1a:65:b7:23:ec:0a:3c:2d:4c:58:e6:de:23:bc:
f0:4c:94:e8:04:f1:82:9c:35:01:8d:22:de:82:7a:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F0:E0:38:77:73:43:0A:11:1A:AA:0F:7F:93:4B:19:4C:FD:F1:D1
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.248.0/24
Signature Algorithm: sha256WithRSAEncryption
45:79:57:92:6c:6c:c8:92:84:c2:cf:59:97:7d:a0:b4:0f:15:
3d:d1:88:81:dd:fd:f2:f7:2d:d5:4c:1b:dd:22:81:82:96:2a:
ab:dc:6e:a7:3c:84:4b:74:a6:9f:ee:13:f8:bc:4c:e6:17:ec:
e4:77:ef:61:a9:9b:b9:8e:eb:6f:5e:c7:b0:c6:61:38:38:12:
d7:4d:8d:8e:ed:2c:3f:d9:de:07:12:35:43:83:05:75:89:18:
0f:f5:b6:98:e3:2e:12:1e:ce:aa:31:a5:b8:35:05:c6:2d:c5:
df:19:b2:9b:01:a7:6b:11:75:2a:88:58:56:79:76:be:0f:ca:
66:fd:b5:6f:e5:0d:10:e9:2a:e5:5d:99:7f:41:7c:c9:03:d4:
e5:9b:41:e4:84:cb:65:97:a8:1e:4c:06:f7:9d:53:16:cf:f5:
88:f5:a0:ff:48:94:2f:f6:d0:2d:79:b1:20:72:37:3b:87:98:
61:92:fc:f9:bc:1a:b6:fd:0a:26:73:33:68:84:0a:4c:ea:b0:
60:2d:f2:22:d2:a2:86:4c:1d:c8:10:ab:6c:40:fb:b6:7d:b5:
01:0b:9b:d1:39:64:17:20:77:bf:c8:a1:01:5f:00:b1:53:97:
30:b3:00:93:b6:99:e7:87:70:44:11:3d:08:cb:34:91:40:42:
ab:bc:d7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:56:02 2025 by rpki-client