Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa
File: AS152036.roa (raw, json)
Hash identifier: NmRxZnRHFqkg8IOFX6OhNJqg83ld7TU4gBwDXt/jkB4=
Subject key identifier: 52:2A:1E:D8:8E:B6:27:4D:53:9D:8B:FF:80:DE:2E:8D:78:D7:DE:D2
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 09751CF7868AB1601B3C7DF73382E9E4D148D08B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa
Signing time: Tue 17 Dec 2024 09:00:00 +0000
ROA not before: Tue 17 Dec 2024 08:55:00 +0000
ROA not after: Tue 16 Dec 2025 09:00:00 +0000
asID: 152036
IP address blocks: 2001:df3:5d40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:75:1c:f7:86:8a:b1:60:1b:3c:7d:f7:33:82:e9:e4:d1:48:d0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 17 08:55:00 2024 GMT
Not After : Dec 16 09:00:00 2025 GMT
Subject: CN=522A1ED88EB6274D539D8BFF80DE2E8D78D7DED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:80:98:d4:50:74:39:60:1c:87:14:68:1c:
54:83:86:25:d1:60:a4:96:88:3c:eb:bd:c1:68:b8:
d3:3b:f6:67:cc:50:11:fd:5c:b7:8e:a4:14:32:54:
29:7e:d3:11:7f:8e:dc:64:d9:cb:4b:60:05:7e:9e:
c1:a9:de:51:a6:12:9c:1f:8d:f0:ae:1c:5e:0f:38:
8b:64:e2:54:95:42:f5:b5:33:81:91:52:08:05:b7:
65:30:21:ec:38:12:6c:f5:85:32:96:1c:a1:54:85:
e9:24:40:14:14:d7:63:df:8b:99:a1:32:fa:55:87:
78:10:b1:7a:d5:ec:aa:60:d9:72:37:34:37:58:00:
04:d7:92:de:f3:1e:15:01:90:27:d4:ce:91:54:9e:
fe:9f:23:87:a4:68:18:82:92:18:35:3c:d3:63:1e:
07:28:66:03:23:a9:cf:0a:05:b5:ba:b9:3e:ee:7c:
09:db:3e:a2:56:8d:b1:8f:9c:46:89:87:bf:e0:8f:
ee:63:dc:b6:02:31:2c:2c:aa:eb:61:61:c7:6d:a2:
55:c1:d3:00:64:a4:98:94:44:fb:21:20:a1:b9:af:
f2:34:16:1c:1c:40:e0:e0:06:02:e6:c3:24:7e:9c:
7a:33:1c:a9:71:5f:08:a7:0f:53:61:b2:f4:a3:49:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2A:1E:D8:8E:B6:27:4D:53:9D:8B:FF:80:DE:2E:8D:78:D7:DE:D2
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:5d40::/48
Signature Algorithm: sha256WithRSAEncryption
32:f5:b8:73:6a:96:28:5f:e6:69:b1:ec:cd:24:e2:ce:62:7f:
19:e5:97:48:ac:e0:02:a9:fa:dc:8e:c9:96:82:fc:5d:ac:8d:
d4:6c:c7:7b:63:11:2f:ac:6f:1d:53:4b:e4:56:51:ff:c2:c4:
2a:9b:e6:a6:e8:dc:bf:ec:fe:5e:34:cc:f9:aa:25:30:dd:b1:
09:42:cd:a0:e1:98:2b:76:01:59:7d:1e:30:aa:19:e7:00:d9:
e0:6e:8b:bb:89:10:0f:46:fe:f1:03:f5:0e:e8:a4:36:c9:c4:
cb:cb:20:33:00:f2:f1:35:db:4b:8f:bb:63:11:da:b8:7c:b2:
25:c0:53:d9:17:05:1e:ea:57:0f:93:4b:75:9f:f4:af:a1:a0:
d7:8a:44:bf:38:01:c8:8f:2c:54:33:c8:6a:84:eb:f3:6e:a2:
db:f2:1c:5e:c4:ae:93:7b:25:67:79:77:e9:c6:b3:4b:86:b6:
80:d6:97:47:bb:fc:3d:50:0c:15:c2:34:5f:4f:d3:4f:d3:41:
22:8b:aa:0f:ab:ed:d5:06:c0:9e:93:d7:55:4c:98:90:d5:03:
2e:fd:06:56:16:8c:c1:23:e6:60:30:63:9b:44:13:b8:07:bf:
d2:ca:a2:da:3e:87:78:83:a4:50:51:0a:0c:f5:3e:10:ca:63:
0d:ad:8a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:58 2025 by rpki-client