Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa
File: AS147097.roa (raw, json)
Hash identifier: Ci6e8IvBD4NAXADoBu3EMru358wXp+HUCnECT5wZMRM=
Subject key identifier: 4E:46:4A:08:E6:25:03:DF:B7:C8:F5:C5:D4:FE:09:57:91:40:7F:44
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3FC548D16847CA9FBE8F42F3D1A39588E1C89811
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa
Signing time: Fri 13 Sep 2024 06:47:43 +0000
ROA not before: Fri 13 Sep 2024 06:42:43 +0000
ROA not after: Fri 12 Sep 2025 06:47:43 +0000
asID: 147097
IP address blocks: 2001:df2:4640::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:c5:48:d1:68:47:ca:9f:be:8f:42:f3:d1:a3:95:88:e1:c8:98:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 13 06:42:43 2024 GMT
Not After : Sep 12 06:47:43 2025 GMT
Subject: CN=4E464A08E62503DFB7C8F5C5D4FE095791407F44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a8:94:87:ea:0f:11:41:ba:de:23:a1:08:7b:
10:99:69:15:80:a0:e5:1c:ea:24:46:a0:3e:45:bb:
8b:01:0b:b5:9f:08:16:53:71:85:3c:87:47:7a:64:
23:b9:3c:2a:49:8f:ba:4d:6f:7d:ac:5d:9c:a1:a9:
82:30:9b:66:7e:09:bb:1c:ce:ec:17:a8:99:29:b2:
9d:8b:d9:5c:82:64:44:a8:02:d8:31:56:f0:23:09:
f3:0d:67:08:f4:9b:29:a8:ac:38:aa:42:8c:1f:90:
7b:62:23:e2:ee:1f:d2:53:1c:c0:cc:e4:59:c2:e7:
7c:96:d4:20:32:8b:19:ba:58:67:5f:e1:d5:a6:bc:
ce:77:01:2b:fd:21:bb:e5:06:94:83:3d:4b:16:1a:
85:bc:d5:1c:cb:89:5c:0a:96:61:4c:bf:19:ef:30:
7f:06:c4:6f:0d:b7:c0:aa:26:4e:60:d1:b4:41:e9:
6b:0c:b2:35:35:db:27:40:7d:4d:ce:89:b4:5e:c3:
d3:77:2b:fd:50:b4:89:30:54:12:3b:4c:8f:f0:ca:
3b:9f:27:81:1a:a1:1b:3a:ad:57:90:d5:c8:9d:38:
81:c1:80:1b:d3:67:c5:68:76:7e:4d:7a:24:d7:29:
fb:87:da:85:ba:f6:a3:ef:fe:ef:f1:39:d4:73:bd:
9e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:46:4A:08:E6:25:03:DF:B7:C8:F5:C5:D4:FE:09:57:91:40:7F:44
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147097.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:4640::/48
Signature Algorithm: sha256WithRSAEncryption
7b:1b:48:6e:71:7a:72:2a:2c:6c:29:4e:a8:a0:2a:4d:5d:04:
67:2e:23:7e:11:42:52:5c:67:3c:d0:ea:9f:28:0b:20:aa:fb:
42:2e:4b:05:4f:55:c8:2a:21:72:6c:29:f4:b9:5e:31:8c:1a:
f1:08:ea:0e:92:d5:a7:20:fb:89:9f:13:fd:75:26:ac:59:5f:
ca:cd:5e:3c:f4:ed:fb:c5:1f:dd:d9:04:ba:26:c7:8a:72:56:
18:f9:a2:67:9a:a1:9c:16:51:b0:92:45:66:65:ef:0d:50:75:
bf:78:b1:60:ac:20:b0:bc:5a:f0:5c:3a:28:7b:06:99:f5:a5:
51:76:3b:ff:fa:88:56:78:de:eb:ac:a6:61:4c:4d:91:3c:c7:
65:93:7c:88:e0:a4:e5:14:29:67:c3:8c:f2:c3:e6:83:36:cb:
ed:85:6b:9d:fa:83:a0:99:94:fc:19:b5:5c:34:41:d5:7c:84:
7b:75:d9:e7:cc:3d:11:0c:67:1c:65:c3:eb:8c:37:7f:c5:80:
6e:43:00:31:a3:29:f1:c7:99:70:3b:1b:af:1e:bf:f8:39:78:
2d:d5:fa:51:b2:99:96:c9:60:78:7d:2c:14:10:6c:5b:f9:ef:
91:c2:c9:c8:66:25:64:13:24:f0:be:92:b0:48:15:b1:55:30:
33:8b:4c:c5
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUP8VI0WhHyp++j0Lz0aOViOHImBEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzA2NDI0M1oX
DTI1MDkxMjA2NDc0M1owMzExMC8GA1UEAxMoNEU0NjRBMDhFNjI1MDNERkI3QzhG
NUM1RDRGRTA5NTc5MTQwN0Y0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMOolIfqDxFBut4joQh7EJlpFYCg5RzqJEagPkW7iwELtZ8IFlNxhTyHR3pk
I7k8KkmPuk1vfaxdnKGpgjCbZn4JuxzO7BeomSmynYvZXIJkRKgC2DFW8CMJ8w1n
CPSbKaisOKpCjB+Qe2Ij4u4f0lMcwMzkWcLnfJbUIDKLGbpYZ1/h1aa8zncBK/0h
u+UGlIM9SxYahbzVHMuJXAqWYUy/Ge8wfwbEbw23wKomTmDRtEHpawyyNTXbJ0B9
Tc6JtF7D03cr/VC0iTBUEjtMj/DKO58ngRqhGzqtV5DVyJ04gcGAG9NnxWh2fk16
JNcp+4fahbr2o+/+7/E51HO9nv0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRORkoI
5iUD37fI9cXU/glXkUB/RDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA5Ny5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACABDfJGQDANBgkqhkiG9w0BAQsFAAOCAQEAextIbnF6ciosbClO
qKAqTV0EZy4jfhFCUlxnPNDqnygLIKr7Qi5LBU9VyCohcmwp9LleMYwa8QjqDpLV
pyD7iZ8T/XUmrFlfys1ePPTt+8Uf3dkEuibHinJWGPmiZ5qhnBZRsJJFZmXvDVB1
v3ixYKwgsLxa8Fw6KHsGmfWlUXY7//qIVnje66ymYUxNkTzHZZN8iOCk5RQpZ8OM
8sPmgzbL7YVrnfqDoJmU/Bm1XDRB1XyEe3XZ58w9EQxnHGXD64w3f8WAbkMAMaMp
8ceZcDsbrx6/+Dl4LdX6UbKZlslgeH0sFBBsW/nvkcLJyGYlZBMk8L6SsEgVsVUw
M4tMxQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:36 2025 by rpki-client