Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa
File: AS147124.roa (raw, json)
Hash identifier: 9RYP1GeqepxszK3yQBylEcNCsQ243rEa4zexLOs9P4w=
Subject key identifier: E8:25:69:CA:30:5D:20:30:F4:E2:58:1D:4C:1B:1A:85:04:5E:01:8D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 669D6FEE79C37E16C0A4A3BF3224C3C3DA41C090
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa
Signing time: Mon 01 Jul 2024 08:00:00 +0000
ROA not before: Mon 01 Jul 2024 07:55:00 +0000
ROA not after: Mon 30 Jun 2025 08:00:00 +0000
asID: 147124
IP address blocks: 2001:df1:1040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:9d:6f:ee:79:c3:7e:16:c0:a4:a3:bf:32:24:c3:c3:da:41:c0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 1 07:55:00 2024 GMT
Not After : Jun 30 08:00:00 2025 GMT
Subject: CN=E82569CA305D2030F4E2581D4C1B1A85045E018D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4d:fc:ad:89:38:60:44:c6:d1:63:1b:d7:cf:
2f:8b:ae:2c:10:93:c3:c9:56:25:3f:81:93:db:df:
b9:83:8b:c6:d8:a5:17:b6:54:d4:58:b4:a3:fb:a7:
c4:9b:15:00:45:25:b3:e6:cb:2a:72:41:68:62:d1:
98:8d:dd:cd:f7:02:56:16:12:97:50:ae:3d:bf:cb:
f0:ba:2d:ed:1d:1e:70:66:6a:45:b7:6a:34:a6:47:
f4:59:2c:78:f1:e8:1a:c5:02:af:ae:2c:20:44:08:
6c:ba:42:9d:d8:7a:3b:7e:2b:4f:59:83:a7:d6:45:
ab:44:5d:ba:21:fe:61:78:d6:1f:c2:77:c9:db:f8:
cd:44:d0:73:7d:a7:18:ff:3f:d0:9d:e7:b9:25:5d:
80:bb:84:81:81:b8:14:c3:ca:4f:9e:c9:eb:cf:e1:
41:b2:65:0a:a7:d4:8c:d5:c6:aa:56:ae:ce:c2:94:
14:a8:e6:c2:6f:02:42:06:c6:37:51:77:68:c5:a6:
85:10:7d:45:28:64:2a:06:6b:38:13:24:ca:c6:0f:
4a:84:95:96:fd:19:38:05:85:40:be:78:b4:fa:d9:
c4:2d:3e:cc:df:60:3a:74:26:68:ef:71:ac:80:42:
46:75:29:7e:f7:07:96:f7:ba:2f:ff:27:b3:fe:b0:
4c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:25:69:CA:30:5D:20:30:F4:E2:58:1D:4C:1B:1A:85:04:5E:01:8D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147124.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:1040::/48
Signature Algorithm: sha256WithRSAEncryption
85:46:e8:32:69:aa:91:d1:12:9a:fd:a7:f6:81:cf:83:cc:e0:
c8:7a:0f:7b:43:95:a9:21:27:f9:1d:4f:01:7e:ec:64:c7:db:
3e:70:25:6c:f1:ed:31:c7:8e:89:ef:f0:94:58:d5:d2:69:31:
81:bb:50:64:89:f3:1e:06:eb:4c:e9:a8:88:26:e9:d2:cd:43:
35:78:3e:f9:b3:2e:dc:7c:11:e9:f9:e2:f6:85:1f:6d:26:46:
ab:e6:50:94:10:90:13:7b:79:4f:11:a5:90:86:21:78:c4:ca:
4a:0a:cc:68:e3:c4:d7:a1:13:64:72:78:cc:ad:75:a8:64:28:
14:b7:9b:3a:9c:72:0c:39:01:eb:31:f1:e0:83:76:64:d2:f4:
47:20:0d:bf:d2:bd:a2:be:65:fe:dc:7c:c0:cd:17:8d:50:2d:
26:85:68:5a:5c:22:b4:d7:74:76:10:40:17:a3:c3:78:61:32:
c0:5d:85:45:66:e0:cd:40:66:f4:a0:1b:5a:53:a0:94:2e:46:
ad:18:72:1e:ba:ac:8a:c2:f2:69:6e:58:6c:02:b4:f9:9a:a3:
e3:38:b6:b9:5e:8e:5b:0c:ab:55:f6:f6:3d:10:7f:74:1c:aa:
90:0e:50:2c:52:61:f5:1c:97:d2:b6:4b:fd:2c:0e:5b:fa:19:
82:f5:06:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:52 2025 by rpki-client