Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa
File: AS136835.roa (raw, json)
Hash identifier: /XH839jC652fSkrZ/Vt0qRvvQImR4JCCuXy0GLzS0yo=
Subject key identifier: 28:B8:C0:13:04:52:1F:27:CF:F8:31:68:DE:CB:1E:0E:5E:97:1F:96
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2FD9A144260BF523858C900917571A83B5B692FB
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa
Signing time: Tue 10 Dec 2024 05:00:15 +0000
ROA not before: Tue 10 Dec 2024 04:55:15 +0000
ROA not after: Tue 09 Dec 2025 05:00:15 +0000
asID: 136835
IP address blocks: 2407:24c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:d9:a1:44:26:0b:f5:23:85:8c:90:09:17:57:1a:83:b5:b6:92:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:15 2024 GMT
Not After : Dec 9 05:00:15 2025 GMT
Subject: CN=28B8C01304521F27CFF83168DECB1E0E5E971F96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bf:76:c9:50:2f:1b:bc:ab:c6:93:3c:0a:77:
b4:2b:c1:88:6b:20:d3:ff:b2:46:92:dd:df:45:41:
93:00:86:96:78:f1:eb:6f:33:d2:30:89:db:2b:e9:
99:25:0c:14:5a:43:08:8f:0a:14:22:16:58:48:ff:
1e:d4:75:74:ab:b2:7d:9d:c0:cf:c1:d2:10:00:2a:
8f:5f:d2:b4:c0:74:5c:3c:47:4e:f7:f5:02:b6:71:
e3:df:8b:66:b3:46:8f:87:18:cc:1e:70:25:df:56:
38:a0:09:8e:ec:45:b9:ee:a2:99:e8:8a:87:3d:ca:
6f:79:9b:cc:29:ae:9f:c4:1e:e8:4c:68:0d:94:68:
8d:2b:f3:02:b5:84:e7:cb:79:d2:3d:f8:27:94:69:
28:b2:f3:19:e3:21:ea:86:f8:ca:36:6a:ea:c1:40:
a7:ec:9d:d0:d2:ad:70:bc:aa:42:4c:20:76:a6:f3:
2e:66:2b:c0:58:d2:b8:ed:64:c4:ef:11:12:6d:47:
20:29:cb:a3:01:3b:55:13:75:10:c8:3d:24:29:ad:
1b:5e:a2:0b:27:59:34:d2:b7:1b:13:68:48:a3:62:
e2:e7:eb:d7:e9:df:e6:a7:d7:69:00:bf:62:f2:cb:
17:5e:bd:65:67:81:b5:25:b9:1c:cc:6e:7f:3c:9f:
7e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B8:C0:13:04:52:1F:27:CF:F8:31:68:DE:CB:1E:0E:5E:97:1F:96
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:24c0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:03:3a:d3:3c:47:88:fa:c6:06:39:c7:cf:f3:ac:91:6d:99:
5c:a7:1d:ee:8a:10:3d:f6:2b:15:48:b2:55:cf:73:2d:2e:63:
24:ae:a9:0c:78:7d:98:d1:91:83:7d:ec:90:7e:53:c9:aa:97:
15:88:49:e8:42:1a:be:4f:fa:22:d3:e7:ce:fe:6a:ae:f6:e9:
a8:b6:af:d3:db:c4:23:13:91:9f:56:2e:f8:c6:e0:18:41:df:
8c:34:11:e6:6f:9e:b3:7c:99:27:b6:4d:07:aa:66:7b:de:c1:
ec:13:00:01:c6:48:b4:e6:4f:50:88:b5:91:33:6a:7d:bb:a8:
d1:2c:4f:a8:d9:0c:c4:09:34:9d:8b:2a:03:9a:69:93:2f:f6:
1a:39:12:98:7a:d1:c8:c2:fb:cc:46:00:42:b0:d7:46:4b:b2:
df:51:e0:3d:d9:18:41:8b:89:ce:9c:c5:89:d5:58:63:f5:9e:
22:de:62:56:e6:e9:e0:c4:2e:ea:f5:0f:f4:b1:aa:9f:36:df:
de:51:3f:74:43:45:1a:d2:cc:93:fb:3d:72:45:88:b7:aa:5a:
f9:06:ee:ca:c6:f8:28:df:e4:b0:42:ff:f0:9c:5a:7f:7c:09:
77:fa:8a:5a:fe:2a:da:ae:7e:4c:f4:86:25:55:62:43:fe:46:
0b:b1:a9:33
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgIUL9mhRCYL9SOFjJAJF1cag7W2kvswDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxNVoX
DTI1MTIwOTA1MDAxNVowMzExMC8GA1UEAxMoMjhCOEMwMTMwNDUyMUYyN0NGRjgz
MTY4REVDQjFFMEU1RTk3MUY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANK/dslQLxu8q8aTPAp3tCvBiGsg0/+yRpLd30VBkwCGlnjx628z0jCJ2yvp
mSUMFFpDCI8KFCIWWEj/HtR1dKuyfZ3Az8HSEAAqj1/StMB0XDxHTvf1ArZx49+L
ZrNGj4cYzB5wJd9WOKAJjuxFue6imeiKhz3Kb3mbzCmun8Qe6ExoDZRojSvzArWE
58t50j34J5RpKLLzGeMh6ob4yjZq6sFAp+yd0NKtcLyqQkwgdqbzLmYrwFjSuO1k
xO8REm1HICnLowE7VRN1EMg9JCmtG16iCydZNNK3GxNoSKNi4ufr1+nf5qfXaQC/
YvLLF169ZWeBtSW5HMxufzyfftMCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQouMAT
BFIfJ8/4MWjeyx4OXpcfljAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjgzNS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w
DQQCAAIwBwMFACQHJMAwDQYJKoZIhvcNAQELBQADggEBAA4DOtM8R4j6xgY5x8/z
rJFtmVynHe6KED32KxVIslXPcy0uYySuqQx4fZjRkYN97JB+U8mqlxWISehCGr5P
+iLT587+aq726ai2r9PbxCMTkZ9WLvjG4BhB34w0EeZvnrN8mSe2TQeqZnvewewT
AAHGSLTmT1CItZEzan27qNEsT6jZDMQJNJ2LKgOaaZMv9ho5Eph60cjC+8xGAEKw
10ZLst9R4D3ZGEGLic6cxYnVWGP1niLeYlbm6eDELur1D/Sxqp82395RP3RDRRrS
zJP7PXJFiLeqWvkG7srG+Cjf5LBC//CcWn98CXf6ilr+Ktqufkz0hiVVYkP+Rgux
qTM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:22 2025 by rpki-client