Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa
File: AS150552.roa (raw, json)
Hash identifier: X2Mb+v7Nmv2sgI69ccjx9iAnUN4t4v6h5imp4F9DDfM=
Subject key identifier: 47:69:E2:ED:82:92:12:05:5D:50:C8:E3:9C:70:52:10:7A:55:90:5E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3D0DCAF267D639F764DAA74D80B0DE4A79E8FA0C
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa
Signing time: Mon 29 Jul 2024 04:00:00 +0000
ROA not before: Mon 29 Jul 2024 03:55:00 +0000
ROA not after: Mon 28 Jul 2025 04:00:00 +0000
asID: 150552
IP address blocks: 2001:df2:84c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:0d:ca:f2:67:d6:39:f7:64:da:a7:4d:80:b0:de:4a:79:e8:fa:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 29 03:55:00 2024 GMT
Not After : Jul 28 04:00:00 2025 GMT
Subject: CN=4769E2ED829212055D50C8E39C7052107A55905E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:67:99:90:1d:37:bd:a5:f6:6f:10:a2:68:90:
22:58:b1:53:7f:ea:1b:61:c9:2e:d6:43:e4:a3:61:
e7:b4:5d:3c:c2:fe:dd:73:3d:08:95:2e:ea:be:1e:
40:ea:9e:f7:63:d4:91:9c:7a:2d:1b:e6:08:99:49:
cd:17:46:1d:a4:39:55:40:09:c3:bf:42:e2:3d:b7:
36:a0:62:27:29:6e:e1:58:a9:00:21:b4:52:82:b3:
ae:01:94:db:a4:73:87:a1:9e:b3:65:82:8d:c8:08:
e0:c1:3a:7e:c5:69:15:6b:ee:a5:5b:3d:01:f7:db:
98:24:84:e5:8c:76:4a:a6:8b:20:58:e7:fc:ad:ad:
5a:33:17:13:20:4b:b6:c4:52:f9:b5:bf:d9:f4:b5:
7e:45:3d:d8:d7:4d:0d:18:12:30:76:49:a6:34:36:
56:55:39:e5:dc:6e:3b:45:1b:1c:b8:1e:51:5d:4f:
ac:32:93:2e:3c:83:d3:ce:18:e2:fd:0d:a2:96:c2:
00:e9:88:54:b1:b8:61:63:39:3c:e3:aa:d4:75:34:
06:4f:c8:4c:44:89:d0:03:51:68:4d:79:0c:fd:29:
c0:15:c3:ac:51:fa:08:a1:dd:74:fe:0a:28:30:e6:
b0:b1:c2:ae:4e:d8:ec:40:b3:6f:1b:01:d1:6a:3f:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:E2:ED:82:92:12:05:5D:50:C8:E3:9C:70:52:10:7A:55:90:5E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150552.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:84c0::/48
Signature Algorithm: sha256WithRSAEncryption
93:c8:01:f2:7d:2d:dc:1f:34:f8:09:a9:2b:72:fb:86:2b:30:
f2:fd:72:ca:c3:cf:a8:44:a7:0e:d0:3c:8c:f2:58:ad:7f:82:
d8:fa:25:a3:08:e0:23:60:44:fa:4b:d5:a3:b8:b9:c7:ac:ab:
82:2a:d1:44:3e:20:c6:7e:5d:d8:52:a9:bf:ae:74:d7:da:33:
ac:b1:54:1d:b6:94:8d:bc:c2:c9:34:01:00:51:94:5e:8b:a7:
7b:ce:a5:3f:b1:61:70:6a:63:bb:1c:8d:c7:85:0d:c4:f0:20:
45:25:42:48:2e:a6:16:b5:fb:bf:c5:cb:29:85:64:a6:3a:28:
21:78:e4:ad:f8:62:ce:d4:97:6c:c3:e5:78:0a:cd:9f:20:ba:
78:cc:d1:ce:10:46:4e:23:0e:c9:8b:01:be:52:cc:00:d3:60:
cf:c8:63:7d:ce:29:71:7a:cd:0a:a6:b6:f1:67:18:d1:71:dc:
51:4a:91:20:6b:47:a6:90:6c:f1:5f:23:74:43:16:91:80:4b:
f7:cc:3c:16:6d:7e:06:45:b2:a2:88:c8:80:c9:1f:01:ba:f6:
f1:03:17:cc:d3:07:e8:83:1d:7e:28:23:be:ae:53:7d:6d:a1:
76:c8:00:ae:df:43:b9:9c:d1:fa:9c:60:bb:47:09:dc:ad:30:
f7:8c:8d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:02 2025 by rpki-client