Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa
File: AS138115.roa (raw, json)
Hash identifier: i97V1OjcJjTsyeayEng0qEdiJpi5hc48zxbcuGDBA0g=
Subject key identifier: 46:89:88:FD:41:4F:F2:15:57:34:76:89:E8:56:C4:C7:AB:9F:65:D7
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 4093F14F97FBAA0B92AA38239CBD2AE4A22C1EEE
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa
Signing time: Thu 06 Feb 2025 10:44:56 +0000
ROA not before: Thu 06 Feb 2025 10:39:56 +0000
ROA not after: Thu 05 Feb 2026 10:44:56 +0000
asID: 138115
IP address blocks: 157.15.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:93:f1:4f:97:fb:aa:0b:92:aa:38:23:9c:bd:2a:e4:a2:2c:1e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 6 10:39:56 2025 GMT
Not After : Feb 5 10:44:56 2026 GMT
Subject: CN=468988FD414FF21557347689E856C4C7AB9F65D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5b:84:b7:d5:62:5c:77:ad:34:14:f6:ce:c3:
11:93:21:92:6e:92:9e:ab:34:45:72:f1:07:17:91:
d0:15:dd:93:f1:3d:fb:68:5d:4b:ea:3e:69:8b:b1:
88:39:5e:fc:08:b5:e9:5d:34:5b:d5:5f:6c:c2:3a:
c6:48:3f:2b:18:bf:dc:15:2e:62:44:0a:3e:f2:5f:
7b:43:b1:02:00:9a:74:f9:f6:7b:6d:a0:16:35:6d:
40:53:10:3b:a1:1c:69:a4:7f:58:a1:f8:00:cf:0e:
52:44:65:b4:93:ff:c6:fb:be:7e:f3:11:01:05:bc:
24:e6:6d:8e:29:fb:fc:85:05:8c:ba:04:57:bc:cd:
32:8a:d5:2e:a7:43:dc:29:65:d3:02:7e:c1:2b:a9:
ec:83:1a:cf:b7:5b:30:b1:17:d7:7c:a8:e2:69:da:
a2:a2:1b:3b:b1:5f:db:6f:fd:30:52:2a:a2:52:fd:
70:ab:5f:c7:59:1a:9d:f1:3b:aa:6c:a1:2a:83:4d:
da:71:0a:06:9a:01:69:24:2c:42:ef:3d:53:bc:d0:
3f:a0:e5:3d:26:f0:0c:e2:5e:4a:a6:d8:6c:78:2b:
06:b0:d5:ad:6b:ef:8c:07:f5:a8:97:f7:f7:03:1d:
a0:c1:b9:63:8d:1d:e8:2d:74:96:f5:12:d7:74:2e:
85:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:89:88:FD:41:4F:F2:15:57:34:76:89:E8:56:C4:C7:AB:9F:65:D7
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.124.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:75:0a:14:ff:0b:23:7d:bc:db:81:23:a7:04:81:7c:86:ef:
b6:31:c6:c2:6b:03:7c:8b:f5:fb:4d:28:24:0c:43:c5:53:13:
8d:9a:7e:a1:1f:c8:37:f8:8e:da:e5:8f:c0:fb:6e:db:14:5d:
db:99:b1:1c:13:6a:d1:da:1c:79:54:10:ee:91:fa:74:d8:6d:
92:3f:cc:6e:ff:bd:48:d0:6a:36:81:f3:4e:fe:59:37:5d:0c:
2e:f4:f1:8b:13:9c:1f:6e:c1:ec:8f:52:8b:2c:00:d0:1c:03:
c9:26:45:ab:b5:de:1f:0f:80:6d:09:c7:5e:18:02:28:4d:84:
0e:4c:f9:76:09:c4:0f:94:9f:d5:98:66:3a:10:06:61:f3:f2:
b8:18:54:2e:8e:61:c7:6c:b9:9a:3d:2e:77:38:2b:2d:20:9f:
3d:e2:0a:80:80:cb:15:95:70:99:a7:d0:ba:0c:0d:e1:91:87:
e6:1c:47:63:ac:8e:33:1a:9c:2d:79:30:d8:21:5d:d7:70:7d:
c6:38:3c:d2:3a:b5:dd:fa:a9:23:a6:59:62:3d:19:51:19:86:
eb:e4:8a:75:20:18:eb:d4:c3:61:8e:f6:29:dd:e3:16:8d:13:
e7:b0:ee:47:c9:ee:f1:78:24:4c:e8:fb:97:20:8a:a1:6c:d3:
19:3c:60:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:05:54 2025 by rpki-client