Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa
File: AS149675.roa (raw, json)
Hash identifier: /wdkM5nvB/o7/+8Tqrkg3ITG/64yTpB5xISScL02Qt4=
Subject key identifier: 44:F9:3D:5D:D5:A6:3B:2A:83:66:1A:06:7A:BE:F0:98:2D:E6:0B:AB
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5A9B990A4F8B990846BA5D1E4EA8BF03BC1DE5B1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa
Signing time: Mon 03 Feb 2025 04:01:44 +0000
ROA not before: Mon 03 Feb 2025 03:56:44 +0000
ROA not after: Mon 02 Feb 2026 04:01:44 +0000
asID: 149675
IP address blocks: 2001:df2:5c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:9b:99:0a:4f:8b:99:08:46:ba:5d:1e:4e:a8:bf:03:bc:1d:e5:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 3 03:56:44 2025 GMT
Not After : Feb 2 04:01:44 2026 GMT
Subject: CN=44F93D5DD5A63B2A83661A067ABEF0982DE60BAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ed:73:d6:5c:d7:34:f6:68:9e:f8:2b:ad:82:
42:e1:73:a7:b2:43:ad:44:4c:69:2a:12:52:f1:f6:
43:31:f5:25:7b:f1:51:05:5d:e0:97:ac:7e:75:5b:
a3:d7:8f:63:43:4b:77:bf:65:88:75:40:30:97:1d:
8e:19:59:87:d0:1c:f5:06:3d:05:d9:f6:0a:48:34:
8e:f0:6c:3b:78:34:cd:de:ec:fa:7b:09:59:84:3c:
dd:28:c4:a9:e2:65:45:19:03:e8:57:c3:d4:ba:c3:
d2:a2:12:58:3c:85:c2:59:0c:08:c0:27:82:da:c1:
0b:3c:5c:d7:cc:88:35:32:68:92:e2:3b:98:86:ea:
ba:72:31:57:0d:59:d5:fb:33:c9:30:e0:eb:92:f2:
53:15:17:1a:87:c3:31:28:fd:fd:c0:7f:e6:d1:ad:
d2:58:c5:58:b0:88:76:2d:a5:de:5b:b4:b7:8d:5e:
bd:cb:d7:43:27:f5:9e:20:b7:93:86:a2:3b:d3:0c:
b8:bc:6b:78:57:0a:a8:a9:5f:18:f7:f9:6d:a1:d5:
5f:2d:3d:ca:90:ac:b2:eb:35:76:89:d8:52:bb:e2:
d1:c9:08:0f:9a:e6:4c:d1:f9:83:93:d5:89:9d:6e:
38:fb:54:ec:28:10:2d:fb:c9:fe:a7:4c:0a:3f:bb:
3b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F9:3D:5D:D5:A6:3B:2A:83:66:1A:06:7A:BE:F0:98:2D:E6:0B:AB
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:5c0::/48
Signature Algorithm: sha256WithRSAEncryption
09:42:a2:69:c4:a7:88:cc:27:17:68:11:b3:88:ba:03:20:18:
88:f5:77:35:e3:45:61:6f:ff:90:44:f4:6e:a5:ba:3f:c1:8f:
f8:1f:5f:e6:16:a5:b6:28:d2:09:08:d0:77:34:ac:84:ad:ac:
dd:80:f4:09:c5:eb:25:aa:32:fe:93:c5:23:ef:8a:ac:34:3e:
5d:ed:f8:b3:e9:6f:ff:93:9e:4d:5a:3b:20:df:ec:71:42:95:
30:f1:99:10:54:bc:f9:4c:c0:1f:8e:64:01:b2:ec:c6:3f:53:
b9:11:6e:88:b1:ae:aa:69:d0:cb:7d:3d:05:c3:93:62:30:ce:
c0:d8:0b:c9:93:a5:bf:43:4b:72:f6:98:ac:7d:2d:3c:f1:39:
60:71:92:d3:88:35:5e:79:6f:96:0f:86:88:b3:7a:4a:a0:9b:
f6:ce:77:4b:54:2d:12:bd:4d:9e:c4:6c:0b:5f:65:af:e1:b3:
1d:3e:30:af:8f:52:81:32:d8:89:24:d5:1e:e9:94:b1:fb:96:
96:4b:00:b3:7c:5b:27:6c:0b:7f:77:e3:7a:b9:4d:a9:0b:4c:
9a:f5:24:1d:f2:b4:c9:f8:69:80:e1:5f:48:6a:ce:34:fc:d7:
68:dc:91:b0:30:40:21:27:5a:ec:14:ad:b4:4c:b8:2e:5a:0b:
bf:2a:8f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:20 2025 by rpki-client