Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa
File: AS149374.roa (raw, json)
Hash identifier: shZNl15aQX0wyqjxuC/x822u/4DmeLTKLkV0YTJtAbU=
Subject key identifier: 4A:4A:91:ED:AF:BA:0F:ED:1D:31:00:00:3C:21:AB:E0:11:7A:28:49
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0ED736019ECE36F364909AB4F4748FD7D5006E30
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa
Signing time: Mon 24 Feb 2025 04:00:00 +0000
ROA not before: Mon 24 Feb 2025 03:55:00 +0000
ROA not after: Mon 23 Feb 2026 04:00:00 +0000
asID: 149374
IP address blocks: 2001:df3:8440::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:d7:36:01:9e:ce:36:f3:64:90:9a:b4:f4:74:8f:d7:d5:00:6e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 24 03:55:00 2025 GMT
Not After : Feb 23 04:00:00 2026 GMT
Subject: CN=4A4A91EDAFBA0FED1D3100003C21ABE0117A2849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d4:c6:ac:a8:f1:01:3d:ce:79:90:2a:21:a1:
12:73:85:4c:96:28:4b:2b:75:90:2b:87:96:b2:b7:
9b:0d:6d:98:e4:99:d3:71:34:f6:5d:ee:9e:81:83:
0c:bb:51:c4:a3:4a:a6:7e:8c:c3:4e:8d:26:e3:85:
fd:33:75:b2:e3:dd:21:76:d2:77:82:bb:d9:71:5b:
1d:92:52:45:50:e4:0d:ca:d2:1e:29:75:ad:ac:62:
d5:3e:f5:b4:8f:01:0e:00:6c:81:59:eb:97:e1:46:
f8:bf:5a:83:56:79:ec:12:91:cc:ee:04:06:d8:8a:
5f:72:c5:23:b3:42:e5:7b:cd:5b:77:3f:a7:2c:0d:
15:fd:c6:4c:a1:26:4d:f3:f4:f6:dd:ef:3d:2e:60:
56:3b:5a:0e:9d:d5:ed:7d:12:9f:7a:be:64:7b:06:
a3:52:bc:c6:9f:9c:cf:19:2d:3b:f0:4c:9f:e2:97:
e6:31:a6:56:ec:b1:aa:1d:d1:17:a0:2f:77:3d:e8:
74:3a:79:fc:0f:f1:72:3f:39:6b:ae:19:2d:b3:49:
0e:ea:8e:62:13:1b:f8:b1:e9:77:e8:79:c3:00:57:
f5:2b:ac:bc:57:cf:bf:83:8c:9d:8e:ae:54:46:76:
87:59:d9:d4:54:56:c1:85:ce:a5:12:41:04:b2:25:
ce:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4A:91:ED:AF:BA:0F:ED:1D:31:00:00:3C:21:AB:E0:11:7A:28:49
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:8440::/48
Signature Algorithm: sha256WithRSAEncryption
93:b0:68:48:58:ad:64:72:cc:12:7e:05:b4:27:54:3a:f9:bb:
15:36:09:c4:84:56:9e:e4:9d:b8:db:7d:94:fb:34:92:a3:70:
7c:d1:ad:f5:26:d6:ea:51:5b:a8:ca:d2:fe:bd:73:b7:02:4d:
a4:43:1f:f9:06:be:21:1f:f4:cd:48:39:a8:ce:2b:c4:3e:3d:
00:29:e1:55:28:b0:44:5a:07:60:3e:7c:ce:3d:cb:0a:b3:34:
33:ef:ae:2b:fb:95:a4:e5:ad:13:cc:40:d8:1d:2b:79:aa:cd:
0c:e6:a8:6a:16:29:57:eb:f9:2e:e4:96:89:da:e7:e0:12:4b:
5e:2b:ee:6e:3a:b0:2f:d1:0e:2b:44:b8:b0:77:81:83:ac:ad:
ec:37:86:ff:8e:83:a0:77:d2:4c:5d:31:08:b8:59:cb:4e:7c:
2b:99:27:b9:0d:73:a5:8f:f8:68:7a:0e:c4:f9:2d:bf:3c:4f:
9c:14:b9:5c:d1:e3:df:b0:ee:d7:80:b1:b5:9b:d7:23:c0:de:
dd:73:fd:5a:0a:17:c9:63:a7:19:33:93:d9:66:95:e0:da:4b:
e4:75:66:1d:fb:c2:c2:ad:54:ce:52:ff:1b:6e:37:63:91:7d:
9a:03:9b:5c:c9:08:c3:07:df:fd:84:eb:ef:30:5a:36:af:46:
6d:23:5d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:14 2025 by rpki-client