Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa
File: AS141642.roa (raw, json)
Hash identifier: QNscWLOWIWwEMvKuJizgZ+kqfCMnY1rZNXWeACDPjNE=
Subject key identifier: 41:C5:45:7F:52:C9:7D:F8:CF:38:45:8A:55:01:BE:45:83:FB:0C:C0
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 3C81D699C5AF3C940176F04A25F47BD3C2779979
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa
Signing time: Thu 06 Feb 2025 10:44:51 +0000
ROA not before: Thu 06 Feb 2025 10:39:51 +0000
ROA not after: Thu 05 Feb 2026 10:44:51 +0000
asID: 141642
IP address blocks: 157.15.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:81:d6:99:c5:af:3c:94:01:76:f0:4a:25:f4:7b:d3:c2:77:99:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 6 10:39:51 2025 GMT
Not After : Feb 5 10:44:51 2026 GMT
Subject: CN=41C5457F52C97DF8CF38458A5501BE4583FB0CC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:17:fc:1e:78:5c:12:a0:0a:43:0b:00:3d:a6:
44:6e:bf:9e:36:7c:98:fe:88:07:c5:2e:bb:92:38:
b9:53:64:dc:de:75:e3:47:b1:c4:d0:8f:af:7a:b7:
c9:47:42:a9:2e:ba:4a:85:fa:0b:2f:b5:7f:d9:20:
a9:dc:cf:cf:b1:fd:b1:b6:54:67:a2:2b:a3:06:75:
fb:15:bb:12:b7:20:84:f7:ab:f1:d4:a3:4a:32:59:
90:9d:3d:ba:c0:ae:53:5e:0a:d7:a2:66:26:4b:bf:
2f:c9:e8:23:fe:8e:93:2a:72:21:85:9d:ff:a3:92:
53:80:b2:7c:4f:fc:1e:00:4f:9c:eb:1c:d6:55:4e:
50:48:14:8f:50:a7:d4:f3:6b:24:f8:42:87:f2:7d:
c4:b2:9a:8d:f1:ea:a1:a1:f5:27:fe:1e:a9:d7:67:
83:df:fc:65:04:1a:94:4f:df:a9:3f:86:44:28:92:
ba:d5:05:56:12:cf:f8:9b:b5:89:57:87:42:62:0c:
74:e1:a8:af:35:74:04:da:0d:d9:32:9b:8e:9a:7d:
cc:62:4c:1e:28:3a:e9:89:fa:16:7b:3f:c2:d7:9c:
f4:bd:5f:c8:b9:4e:4d:8f:59:bf:60:51:ce:0c:ce:
4a:34:f7:f4:a4:11:18:31:db:82:55:4a:5a:35:60:
97:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C5:45:7F:52:C9:7D:F8:CF:38:45:8A:55:01:BE:45:83:FB:0C:C0
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS141642.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.139.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:21:d3:84:80:1d:54:28:72:d5:eb:7e:cb:2d:ab:c0:06:89:
2d:69:ba:da:d1:d9:eb:a9:97:f8:c6:b3:45:78:96:98:8d:c9:
d6:d7:61:46:f1:54:11:42:41:48:9e:e2:cb:f6:ea:e5:72:2b:
e9:76:e3:ce:eb:50:95:f4:fb:99:be:0c:b4:50:70:fd:d0:5b:
d4:db:0b:b0:2d:a9:67:8e:53:f2:ce:a3:df:15:aa:48:2f:47:
40:12:c2:f5:54:0d:91:94:6f:a7:46:a7:58:01:a7:9b:e4:06:
40:25:84:1c:0a:0e:08:24:d4:8f:c7:52:5b:0d:4d:e5:b5:f2:
00:94:c4:b9:fe:ce:8b:a4:1e:36:f0:aa:8a:e0:43:56:62:4f:
25:8d:bc:ab:39:e3:fe:cc:2c:2e:90:1a:ce:0a:5a:ed:2b:69:
5c:7e:05:64:94:8f:8c:2a:e8:a8:f1:60:76:5c:2b:fd:fd:38:
35:f9:0a:e7:0b:88:2c:b4:3a:bd:9b:f8:1f:f3:09:68:c6:b8:
48:0a:44:9b:ba:52:52:02:b9:24:45:96:50:00:ec:7d:ec:23:
9b:38:72:e0:8e:13:bf:f7:40:7e:6b:c0:8e:ee:fe:52:ea:a6:
57:f1:cb:bf:14:ac:52:d3:e5:e0:c6:9a:de:6a:eb:47:c8:de:
bd:67:3b:bf
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUPIHWmcWvPJQBdvBKJfR708J3mXkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1MVoX
DTI2MDIwNTEwNDQ1MVowMzExMC8GA1UEAxMoNDFDNTQ1N0Y1MkM5N0RGOENGMzg0
NThBNTUwMUJFNDU4M0ZCMENDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANwX/B54XBKgCkMLAD2mRG6/njZ8mP6IB8Uuu5I4uVNk3N5140exxNCPr3q3
yUdCqS66SoX6Cy+1f9kgqdzPz7H9sbZUZ6IrowZ1+xW7ErcghPer8dSjSjJZkJ09
usCuU14K16JmJku/L8noI/6OkypyIYWd/6OSU4CyfE/8HgBPnOsc1lVOUEgUj1Cn
1PNrJPhCh/J9xLKajfHqoaH1J/4eqddng9/8ZQQalE/fqT+GRCiSutUFVhLP+Ju1
iVeHQmIMdOGorzV0BNoN2TKbjpp9zGJMHig66Yn6Fns/wtec9L1fyLlOTY9Zv2BR
zgzOSjT39KQRGDHbglVKWjVglykCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRBxUV/
Usl9+M84RYpVAb5Fg/sMwDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MTY0Mi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAJ0PizANBgkqhkiG9w0BAQsFAAOCAQEAGyHThIAdVChy1et+yy2r
wAaJLWm62tHZ66mX+MazRXiWmI3J1tdhRvFUEUJBSJ7iy/bq5XIr6XbjzutQlfT7
mb4MtFBw/dBb1NsLsC2pZ45T8s6j3xWqSC9HQBLC9VQNkZRvp0anWAGnm+QGQCWE
HAoOCCTUj8dSWw1N5bXyAJTEuf7Oi6QeNvCqiuBDVmJPJY28qznj/swsLpAazgpa
7StpXH4FZJSPjCroqPFgdlwr/f04NfkK5wuILLQ6vZv4H/MJaMa4SApEm7pSUgK5
JEWWUADsfewjmzhy4I4Tv/dAfmvAju7+UuqmV/HLvxSsUtPl4Maa3mrrR8jevWc7
vw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:36:49 2025 by rpki-client