Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa
File: AS149315.roa (raw, json)
Hash identifier: AFiJO7wrWtbpBJmHYFHY303jcU5Ept3RE+SPKloYBBw=
Subject key identifier: 74:DC:13:64:15:52:DF:CA:A4:1C:ED:20:63:BA:B0:46:B6:BD:3F:CF
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 644089AAB6B8F8D167CA95C424C14519807A7BE3
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa
Signing time: Tue 18 Feb 2025 07:00:00 +0000
ROA not before: Tue 18 Feb 2025 06:55:00 +0000
ROA not after: Tue 17 Feb 2026 07:00:00 +0000
asID: 149315
IP address blocks: 2407:7c0:200::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:40:89:aa:b6:b8:f8:d1:67:ca:95:c4:24:c1:45:19:80:7a:7b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 18 06:55:00 2025 GMT
Not After : Feb 17 07:00:00 2026 GMT
Subject: CN=74DC13641552DFCAA41CED2063BAB046B6BD3FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:e0:5f:51:99:64:99:8a:ae:ce:48:d0:2c:
39:2f:0a:aa:81:1a:c9:00:f5:22:2d:3f:ce:79:45:
6a:48:f4:3c:a2:d6:5d:18:28:64:42:35:83:93:65:
80:34:0e:2d:8b:02:0d:18:67:b7:7b:3b:ea:20:86:
de:ba:b7:b8:8a:2e:67:ae:d2:17:e3:a9:83:0f:9d:
79:7f:2d:df:13:b8:47:49:e1:a4:a2:c7:1c:d9:48:
67:a5:2b:99:1d:83:aa:65:29:18:f9:a2:e2:c0:ef:
65:e1:9b:ad:90:6e:41:22:08:bd:9a:cc:07:91:5f:
dc:e9:cb:52:86:ab:1d:62:c9:62:f2:f0:68:da:eb:
5d:e7:2c:98:e4:e3:38:26:10:5d:d6:99:21:eb:01:
b4:b3:d7:a6:f4:68:66:4c:02:98:67:d4:98:dd:23:
b9:d9:66:cc:eb:1a:09:d5:4b:ce:65:00:da:d6:59:
cf:8d:96:36:61:b9:dd:af:38:0e:5a:b6:f5:49:20:
7c:be:cf:9d:8f:55:0d:d5:78:53:e8:03:55:79:86:
42:d0:41:d4:46:6a:0d:cc:28:73:35:5f:d1:6a:17:
2b:62:d0:09:09:24:e9:6f:65:24:d8:cc:4c:bd:21:
19:57:b3:5f:1a:96:7e:2a:55:eb:4e:70:36:51:cf:
db:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DC:13:64:15:52:DF:CA:A4:1C:ED:20:63:BA:B0:46:B6:BD:3F:CF
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:7c0:200::/40
Signature Algorithm: sha256WithRSAEncryption
48:16:ca:6c:54:67:bb:37:1f:bc:03:0a:1e:f8:ff:21:ac:1e:
25:76:37:49:e0:4b:d1:17:e3:63:27:18:48:8f:f6:4f:db:12:
ad:08:d7:d2:62:22:3f:c6:17:94:b0:3b:d6:8b:9f:d2:0e:25:
bd:42:ea:e0:53:e5:89:c7:43:71:eb:c4:69:f8:8f:ac:0c:d0:
f2:cb:db:02:76:4b:fa:76:8a:0f:bb:55:92:1c:d7:f7:af:aa:
c9:41:79:2c:f9:b1:f8:84:90:3c:b7:42:88:2f:fa:1b:90:95:
14:78:66:08:de:f0:37:e6:72:f1:89:a6:dc:87:fc:43:ad:50:
51:f5:3f:e7:45:f3:4d:0d:32:67:22:a3:a1:1a:6d:98:db:e0:
b9:86:d8:1b:d6:62:35:b4:de:65:21:99:19:e6:cd:7b:b9:41:
1d:03:76:36:97:53:65:9a:5b:7f:9b:80:61:5f:bb:7b:94:42:
bf:3b:57:2d:51:52:4a:b2:62:47:b9:34:5a:93:a1:66:fb:02:
3b:35:5b:1c:66:f0:46:74:bb:2b:71:84:9a:2b:b7:a9:1f:fe:
6d:33:81:b6:ae:f9:ca:c6:2d:53:2f:19:98:60:3d:8f:08:b8:
d5:ac:18:52:16:f8:de:47:f9:00:cd:7b:1b:d5:ae:dc:78:ea:
6b:e4:0a:9a
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgIUZECJqra4+NFnypXEJMFFGYB6e+MwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxODA2NTUwMFoX
DTI2MDIxNzA3MDAwMFowMzExMC8GA1UEAxMoNzREQzEzNjQxNTUyREZDQUE0MUNF
RDIwNjNCQUIwNDZCNkJEM0ZDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMEc4F9RmWSZiq7OSNAsOS8KqoEayQD1Ii0/znlFakj0PKLWXRgoZEI1g5Nl
gDQOLYsCDRhnt3s76iCG3rq3uIouZ67SF+Opgw+deX8t3xO4R0nhpKLHHNlIZ6Ur
mR2DqmUpGPmi4sDvZeGbrZBuQSIIvZrMB5Ff3OnLUoarHWLJYvLwaNrrXecsmOTj
OCYQXdaZIesBtLPXpvRoZkwCmGfUmN0judlmzOsaCdVLzmUA2tZZz42WNmG53a84
Dlq29UkgfL7PnY9VDdV4U+gDVXmGQtBB1EZqDcwoczVf0WoXK2LQCQkk6W9lJNjM
TL0hGVezXxqWfipV605wNlHP2+ECAwEAAaOCAdIwggHOMB0GA1UdDgQWBBR03BNk
FVLfyqQc7SBjurBGtr0/zzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMxNS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGACQHB8ACMA0GCSqGSIb3DQEBCwUAA4IBAQBIFspsVGe7Nx+8Awoe
+P8hrB4ldjdJ4EvRF+NjJxhIj/ZP2xKtCNfSYiI/xheUsDvWi5/SDiW9QurgU+WJ
x0Nx68Rp+I+sDNDyy9sCdkv6dooPu1WSHNf3r6rJQXks+bH4hJA8t0KIL/obkJUU
eGYI3vA35nLxiabch/xDrVBR9T/nRfNNDTJnIqOhGm2Y2+C5htgb1mI1tN5lIZkZ
5s17uUEdA3Y2l1Nlmlt/m4BhX7t7lEK/O1ctUVJKsmJHuTRak6Fm+wI7NVscZvBG
dLsrcYSaK7epH/5tM4G2rvnKxi1TLxmYYD2PCLjVrBhSFvjeR/kAzXsb1a7ceOpr
5Aqa
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:04 2025 by rpki-client