Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149912.roa
File: AS149912.roa (raw, json)
Hash identifier: WVOmbUHU+cXIV8GulgNjYnssMaTPksX6QitIOH+nvOg=
Subject key identifier: 8F:4D:E1:08:D2:46:B4:A9:72:E9:94:6B:69:B9:39:29:D2:23:6B:7E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 40D2BCBE154C65ACD57837328F02A867E17A2465
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149912.roa
Signing time: Thu 13 Feb 2025 05:00:00 +0000
ROA not before: Thu 13 Feb 2025 04:55:00 +0000
ROA not after: Thu 12 Feb 2026 05:00:00 +0000
asID: 149912
IP address blocks: 2001:df3:2740::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:d2:bc:be:15:4c:65:ac:d5:78:37:32:8f:02:a8:67:e1:7a:24:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 13 04:55:00 2025 GMT
Not After : Feb 12 05:00:00 2026 GMT
Subject: CN=8F4DE108D246B4A972E9946B69B93929D2236B7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8c:c2:44:4b:3a:4b:9a:85:d3:51:9b:3c:53:
59:61:dd:9c:46:7d:03:e2:1e:8d:cc:6a:70:37:42:
32:da:96:95:a2:b6:93:25:f4:e5:c1:8b:6b:96:7e:
e7:d6:46:04:73:ea:e3:de:19:f3:4c:b0:3f:c9:31:
1c:8e:dc:ac:23:53:2d:47:f0:df:da:d5:41:fe:54:
4f:ce:35:73:11:63:99:b5:b6:21:1c:2a:ae:fd:a9:
2d:cf:24:d8:1d:cb:fd:f8:0d:a8:cd:93:a1:8d:8a:
ae:64:17:7d:77:cf:59:d5:7f:33:9b:3a:0f:1d:2b:
06:68:1b:e0:b7:02:08:ed:4f:f4:8a:f1:c0:00:c4:
f8:ba:54:46:a2:a4:1a:5b:db:20:e7:bc:b9:6a:0e:
45:13:8c:46:21:9d:f4:22:e0:94:52:2a:4d:a5:5b:
37:65:7c:3c:f9:48:e5:ac:75:45:a4:6a:88:a3:2b:
9f:b9:37:e7:50:a3:58:10:41:93:c9:ed:25:6d:aa:
2e:43:fd:24:22:6e:64:5a:53:21:39:de:07:48:79:
16:a1:b0:84:07:40:a7:77:cd:9c:60:6b:27:64:fa:
90:26:4f:03:bc:2e:af:e0:c4:85:ce:0b:a1:c8:5f:
59:70:4d:3c:05:e8:fa:4b:44:58:0e:65:e0:42:06:
51:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4D:E1:08:D2:46:B4:A9:72:E9:94:6B:69:B9:39:29:D2:23:6B:7E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149912.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:2740::/48
Signature Algorithm: sha256WithRSAEncryption
68:57:8f:a9:5a:fa:76:a7:18:da:4b:cc:07:30:4a:ce:c9:96:
9a:f9:98:6c:48:6c:9b:a2:0b:ce:36:e0:cb:4d:e5:72:25:b5:
47:aa:af:54:ee:fe:c2:bf:52:d7:91:56:85:63:7c:28:3c:7d:
77:cf:04:80:c7:99:3a:c8:35:3c:cc:bd:ba:00:19:9c:a9:e5:
dc:a6:cb:80:78:47:7c:a1:42:d2:6d:eb:22:74:85:9d:59:fd:
ca:5f:0b:f9:0a:62:f2:d9:9d:d3:2f:4d:aa:af:06:81:2b:c2:
e0:f4:e6:09:15:fc:f0:40:1b:ac:45:a1:d5:6b:7f:76:03:e1:
0d:d0:4a:6c:ee:a2:c8:2d:8a:da:16:8a:a7:4d:d1:ff:ec:4c:
64:4c:bf:04:a6:29:d7:63:2c:f5:29:ef:63:3f:47:44:fc:6d:
3d:2d:1a:c8:53:9c:3c:3a:53:a1:d4:4a:2e:24:4a:84:6e:8b:
19:e9:14:10:ca:2e:ae:e0:23:60:1e:60:9a:15:46:e1:20:73:
98:18:5f:0f:aa:4d:80:cd:eb:f4:f2:f5:9a:98:7a:58:d9:52:
9a:e6:8a:ca:aa:ed:0d:35:32:a2:b8:ec:9b:0f:f9:82:20:9f:
7a:3e:4f:db:84:64:21:84:98:37:c2:b7:04:98:de:b5:b6:72:
47:d3:f7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:50 2025 by rpki-client