Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142347.roa
File: AS142347.roa (raw, json)
Hash identifier: CnOpaMKBMIFc2TISjgh8cuurSj4qngah8Cy4NgVKysM=
Subject key identifier: 38:B2:B4:AD:62:B2:36:77:23:CE:8D:A4:A8:A5:B0:B1:42:79:73:2E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7AAAA1852C7CA2301F4978E8FE542383EBA8DF81
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142347.roa
Signing time: Fri 07 Mar 2025 04:00:00 +0000
ROA not before: Fri 07 Mar 2025 03:55:00 +0000
ROA not after: Fri 06 Mar 2026 04:00:00 +0000
asID: 142347
IP address blocks: 2400:e520::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:aa:a1:85:2c:7c:a2:30:1f:49:78:e8:fe:54:23:83:eb:a8:df:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 7 03:55:00 2025 GMT
Not After : Mar 6 04:00:00 2026 GMT
Subject: CN=38B2B4AD62B2367723CE8DA4A8A5B0B14279732E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:43:eb:12:0d:94:15:57:78:ba:57:a1:e6:22:
30:b8:14:29:a7:c3:59:b0:2d:99:3e:51:6e:5a:9a:
47:35:9e:55:92:03:dd:94:cb:7e:3f:31:2a:fd:d5:
59:b8:f6:d0:9b:5b:01:60:c6:2a:e6:58:da:f5:64:
de:4d:ce:2c:e4:1d:84:c2:d8:52:e7:f6:7d:87:a5:
c4:b6:f8:a8:87:88:c7:ab:2d:05:3e:88:bc:33:a5:
ab:d2:57:58:cf:ca:45:6b:61:84:91:5b:ba:a7:af:
fc:c2:c1:80:cf:7f:3d:af:ba:8c:2d:bd:40:da:4c:
05:b2:f9:46:32:14:a9:2b:d8:65:a3:f2:66:02:a8:
95:f7:ff:cd:f8:14:30:84:51:21:d9:8f:d4:47:9a:
4f:ff:ec:46:28:21:d7:6d:f9:b3:22:26:b4:3c:da:
12:ec:cd:9b:9d:e9:4e:a2:3a:cc:67:ce:74:21:42:
2d:c1:a0:65:70:43:32:bc:e7:65:ce:b9:0f:34:4a:
b0:6b:1d:11:66:56:19:a1:77:98:cd:47:04:eb:83:
80:a9:19:0b:09:db:b6:03:fe:a0:fe:3a:33:44:d1:
d0:d2:c3:f5:b1:c5:e0:ea:2c:ad:65:1c:ac:72:32:
d2:6e:e9:b1:f0:69:5d:73:8f:11:b7:33:a7:aa:da:
a3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B2:B4:AD:62:B2:36:77:23:CE:8D:A4:A8:A5:B0:B1:42:79:73:2E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142347.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:e520::/32
Signature Algorithm: sha256WithRSAEncryption
55:c6:09:57:c5:f5:15:ff:a0:b1:bf:78:cb:75:37:fa:03:f8:
97:96:61:b9:3a:af:76:ad:8c:d1:70:41:ef:09:6b:91:f7:82:
80:d4:6a:bb:20:51:01:73:66:33:fd:26:56:07:60:48:20:48:
19:5a:ee:f7:e5:6c:19:48:05:f9:af:c4:2d:5e:73:dd:11:a5:
64:fa:c6:63:e6:47:43:31:ac:de:bf:a0:2c:ac:f7:e0:d2:4d:
19:f9:28:84:7e:00:a8:b0:dd:7b:92:2f:55:c5:3b:72:79:7c:
d8:00:86:43:9a:31:07:05:83:20:c4:94:8c:2b:25:d2:d3:6e:
41:c7:f7:d1:40:6a:a5:55:1a:25:d0:61:7c:d0:73:57:18:9a:
5e:0b:9c:76:a5:56:df:6d:e5:9e:62:16:4e:f0:67:28:c3:f9:
42:8d:a5:e8:43:f9:f6:0a:17:c7:e9:02:45:1b:17:29:f1:6a:
9a:f7:2c:c3:62:95:ff:a0:18:d9:5a:2e:a6:cf:56:f1:1a:fc:
1c:4f:1e:ca:8d:35:05:ae:32:28:4a:4e:41:06:27:bf:0f:42:
e7:89:e7:8b:ec:08:fd:b9:0f:87:a4:ea:2e:68:50:68:aa:14:
08:02:98:dd:11:b8:85:2c:39:07:f9:9a:de:11:c7:ad:d1:ff:
e3:c8:32:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:17 2025 by rpki-client