Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa
File: 3136302e32352e35362e302f32332d3234203d3e20313533303834.roa (raw, json)
Hash identifier: JVhI71v59R/hdNxBL7c0eTiyALFYKviHtHY7ZYsnL3I=
Subject key identifier: 09:F2:6B:E0:13:36:B6:C3:10:45:1B:DC:DA:B7:4C:98:3A:BE:AE:FC
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 637CDECB79A9F2315F988F2CC9AF89944F9CEE81
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa
Signing time: Wed 18 Sep 2024 06:36:05 +0000
ROA not before: Wed 18 Sep 2024 06:31:05 +0000
ROA not after: Wed 17 Sep 2025 06:36:05 +0000
asID: 153084
IP address blocks: 160.25.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7c:de:cb:79:a9:f2:31:5f:98:8f:2c:c9:af:89:94:4f:9c:ee:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 18 06:31:05 2024 GMT
Not After : Sep 17 06:36:05 2025 GMT
Subject: CN=09F26BE01336B6C310451BDCDAB74C983ABEAEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3d:31:0a:23:e0:c4:6e:82:ad:1d:35:fe:94:
4f:a7:b6:af:ae:50:c0:0d:e0:64:0d:cf:e5:24:a1:
2c:28:cb:84:7b:46:84:39:b8:2e:16:13:c3:a6:e3:
ec:43:4c:b2:1c:1f:d6:33:31:49:07:62:a8:ca:c9:
8f:4a:02:40:6d:d0:76:3f:1b:79:48:94:e4:62:ae:
09:99:df:ec:25:30:a7:6d:e6:6c:72:34:a4:0b:eb:
39:4e:3e:7a:66:e7:51:51:fb:0e:4f:2a:fe:91:a9:
dd:4d:59:ef:e5:d6:1a:cd:e3:fb:7c:84:6c:dc:15:
e7:e1:75:5e:ff:4c:54:24:5a:28:f0:13:3a:87:8f:
99:7b:ca:c0:5e:7f:20:f2:ad:e7:76:cf:38:c3:dc:
ae:bc:05:3e:a5:10:f0:98:d1:4b:0c:0d:36:11:ea:
b7:7a:7b:2d:4f:d1:d0:91:f1:03:98:02:4e:4b:58:
69:e6:b0:0b:2c:b6:c2:5d:a2:b6:a1:c9:40:02:1f:
46:12:a7:49:02:d4:66:b6:3c:62:b2:ff:bb:1d:08:
ba:55:2a:a1:5d:72:f7:d2:9c:a1:a6:d8:59:24:29:
ed:f9:a3:99:1b:57:a0:2b:20:18:68:bf:91:1e:14:
bd:6e:e3:d8:10:58:42:b4:b4:e2:23:02:54:df:8c:
e3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F2:6B:E0:13:36:B6:C3:10:45:1B:DC:DA:B7:4C:98:3A:BE:AE:FC
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3136302e32352e35362e302f32332d3234203d3e20313533303834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.56.0/23
Signature Algorithm: sha256WithRSAEncryption
48:13:19:7a:f2:fa:e7:41:7c:f5:a6:f4:70:04:b4:4b:c1:a5:
53:24:46:dc:e7:f0:43:44:4f:01:e7:ef:ba:de:62:51:1a:3b:
f5:4a:20:e2:18:54:ed:c8:74:ae:ac:42:7a:f4:75:14:3c:83:
75:75:e8:30:6e:d1:2e:7d:3f:76:16:d7:21:30:b7:b3:79:e5:
47:cb:ff:53:64:49:f8:5d:68:07:04:f2:83:a9:d8:da:94:92:
06:15:08:34:25:9e:18:6f:13:f4:d6:fc:e2:cc:85:f2:d0:e9:
8d:d9:18:bf:8a:c0:29:12:45:dd:f5:45:2c:1d:e1:24:e5:9f:
14:4e:34:1f:b2:d3:c9:db:26:c3:87:89:74:da:1c:ed:b5:fa:
fb:dd:d8:a8:22:3d:30:59:49:27:ab:b7:6b:96:8b:fc:dd:41:
02:37:8d:99:83:4a:53:dd:79:bb:6c:62:0a:00:5c:95:35:cf:
9b:3f:26:6a:02:13:ae:83:69:0c:0d:22:52:c9:09:f6:0a:5d:
2f:ff:10:df:23:44:e0:d5:9f:ca:81:03:1b:ce:62:b7:3f:ec:
e2:54:6c:9b:d7:22:68:12:af:32:c1:73:9c:5c:90:f6:a6:d2:
46:c5:4f:40:8e:27:51:b6:7f:26:90:8d:c6:fa:2c:22:70:55:
17:30:e4:b2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUY3zey3mp8jFfmI8sya+JlE+c7oEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkxODA2MzEwNVoX
DTI1MDkxNzA2MzYwNVowMzExMC8GA1UEAxMoMDlGMjZCRTAxMzM2QjZDMzEwNDUx
QkRDREFCNzRDOTgzQUJFQUVGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKg9MQoj4MRugq0dNf6UT6e2r65QwA3gZA3P5SShLCjLhHtGhDm4LhYTw6bj
7ENMshwf1jMxSQdiqMrJj0oCQG3Qdj8beUiU5GKuCZnf7CUwp23mbHI0pAvrOU4+
embnUVH7Dk8q/pGp3U1Z7+XWGs3j+3yEbNwV5+F1Xv9MVCRaKPATOoePmXvKwF5/
IPKt53bPOMPcrrwFPqUQ8JjRSwwNNhHqt3p7LU/R0JHxA5gCTktYaeawCyy2wl2i
tqHJQAIfRhKnSQLUZrY8YrL/ux0IulUqoV1y99KcoabYWSQp7fmjmRtXoCsgGGi/
kR4UvW7j2BBYQrS04iMCVN+M43ECAwEAAaOCAf8wggH7MB0GA1UdDgQWBBQJ8mvg
Eza2wxBFG9zat0yYOr6u/DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzEvMzEzNjMwMmUz
MjM1MmUzNTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODM0LnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQBoBk4MA0GCSqGSIb3DQEBCwUAA4IBAQBIExl68vrnQXz1pvRwBLRL
waVTJEbc5/BDRE8B5++63mJRGjv1SiDiGFTtyHSurEJ69HUUPIN1degwbtEufT92
FtchMLezeeVHy/9TZEn4XWgHBPKDqdjalJIGFQg0JZ4YbxP01vzizIXy0OmN2Ri/
isApEkXd9UUsHeEk5Z8UTjQfstPJ2ybDh4l02hzttfr73dioIj0wWUknq7drlov8
3UECN42Zg0pT3Xm7bGIKAFyVNc+bPyZqAhOug2kMDSJSyQn2Cl0v/xDfI0Tg1Z/K
gQMbzmK3P+ziVGyb1yJoEq8ywXOcXJD2ptJGxU9AjidRtn8mkI3G+iwicFUXMOSy
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:24:59 2025 by rpki-client