Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa
File: AS147107.roa (raw, json)
Hash identifier: FRbfT2HvPjbVA6P2eM58Ig1ELxnx7g9nC6dPvFT3AMA=
Subject key identifier: A9:CD:2F:16:D5:DA:55:12:4D:0B:D4:57:88:E7:51:14:0C:97:7E:8F
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 205B63FCA85A7ED172C6A00856F06B92C37A17B5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa
Signing time: Fri 24 Jan 2025 07:00:00 +0000
ROA not before: Fri 24 Jan 2025 06:55:00 +0000
ROA not after: Fri 23 Jan 2026 07:00:00 +0000
asID: 147107
IP address blocks: 2400:e420::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:5b:63:fc:a8:5a:7e:d1:72:c6:a0:08:56:f0:6b:92:c3:7a:17:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 24 06:55:00 2025 GMT
Not After : Jan 23 07:00:00 2026 GMT
Subject: CN=A9CD2F16D5DA55124D0BD45788E751140C977E8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8f:80:51:aa:78:01:69:b3:1a:c4:15:5d:75:
3a:ff:9a:f6:41:24:03:74:84:28:e3:4b:f1:da:07:
5a:11:5e:92:22:22:30:af:5a:12:2a:4f:b0:5c:4c:
b5:a7:81:9c:a6:dc:9b:ec:bc:18:3b:c2:f3:40:3a:
5f:03:de:16:94:d1:ed:13:f3:d6:36:0b:ec:9e:2e:
0a:1a:23:b6:dd:cd:c6:0a:b5:9b:94:0a:96:f2:51:
9d:74:a2:94:c1:83:76:32:1c:2e:1b:ac:86:a3:4b:
ac:96:04:c1:01:3e:98:60:0e:2b:8b:61:ff:ae:85:
44:68:57:0e:cb:19:49:bf:e5:a4:d2:c9:12:1f:3b:
b1:0a:a7:4e:50:9e:fd:d2:40:d5:df:9a:03:3b:9a:
f2:8d:37:8e:c0:6f:0e:c0:56:4c:e1:89:97:d8:11:
65:c5:38:b5:f6:84:d8:5e:2d:e6:47:b6:7c:f2:98:
9a:18:37:d9:49:af:d8:be:a6:28:5b:b7:a1:29:ca:
bb:94:e5:e2:72:8b:25:9a:ac:a2:8d:5f:99:d3:ae:
99:9c:a3:2c:de:52:f0:2b:74:08:35:be:81:8d:f1:
fc:b3:38:84:58:21:0a:93:e9:f8:70:2f:52:23:b1:
dd:28:e0:78:1a:b8:fb:2d:47:ae:ba:20:42:cb:60:
a0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:CD:2F:16:D5:DA:55:12:4D:0B:D4:57:88:E7:51:14:0C:97:7E:8F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:e420::/32
Signature Algorithm: sha256WithRSAEncryption
0c:eb:7b:e7:ae:a5:47:25:30:90:c5:db:16:97:ff:b6:b1:f4:
af:20:1a:bb:4f:60:d2:6b:95:95:fa:5d:ea:e6:6f:d4:30:c9:
a7:f7:17:af:38:f2:b7:b1:5b:30:ed:c3:72:e6:9a:99:01:60:
04:47:5c:e1:56:c2:13:70:eb:c6:f7:14:d0:79:68:d3:5b:76:
77:76:db:e1:20:cb:fb:36:b8:6e:51:ce:02:94:7c:8d:1b:8a:
19:c9:8d:23:11:85:05:e8:b6:75:9e:16:73:99:2b:44:50:37:
d1:12:47:bd:54:a6:0c:26:45:91:85:2f:70:fd:04:ae:ff:5f:
96:d7:d6:ef:d1:ec:16:ed:be:09:08:2e:e5:9a:5c:41:bf:5b:
2a:87:ea:3f:d4:7e:4f:bd:6b:8f:28:6b:cc:d0:23:de:91:63:
c6:95:6b:d7:49:9a:d1:fb:14:3a:19:b0:c5:8c:59:17:79:81:
4e:09:91:94:94:81:03:6d:77:01:17:7f:7a:a5:c2:b3:00:aa:
39:57:fe:55:5f:a0:fd:72:38:be:96:57:d6:1c:8e:18:27:97:
67:3f:4c:db:fe:5c:d6:db:47:e6:7c:76:4f:b7:bf:43:23:59:
18:f3:d6:72:75:99:6f:82:07:bb:f5:49:f6:49:4f:11:ea:c9:
f4:f8:54:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:06 2025 by rpki-client