Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa
File: AS152047.roa (raw, json)
Hash identifier: gXO9ynkIU9dDxUgqGgThxI7N/zHO20KC7dB+B2I1ONM=
Subject key identifier: E2:6A:15:C7:50:BF:11:53:2F:89:EE:48:EC:14:CB:45:14:C0:3C:DB
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3C2A0F747DEBC266EF2900D2609D0FC6CCFC12B2
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa
Signing time: Thu 19 Dec 2024 04:00:00 +0000
ROA not before: Thu 19 Dec 2024 03:55:00 +0000
ROA not after: Thu 18 Dec 2025 04:00:00 +0000
asID: 152047
IP address blocks: 210.79.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:2a:0f:74:7d:eb:c2:66:ef:29:00:d2:60:9d:0f:c6:cc:fc:12:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 19 03:55:00 2024 GMT
Not After : Dec 18 04:00:00 2025 GMT
Subject: CN=E26A15C750BF11532F89EE48EC14CB4514C03CDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:39:f3:0d:5d:15:f4:ce:34:60:49:ad:6a:78:
a2:ee:1f:f3:ec:6d:68:91:de:7a:86:8b:d7:8a:b5:
e7:23:a1:36:e1:45:df:7c:b5:9f:40:41:68:a7:ab:
0e:d3:e5:f2:c0:67:70:8f:a7:41:44:fe:af:80:18:
90:e3:c4:e9:8e:cc:7d:d0:88:30:6f:56:f4:b6:8c:
51:d6:18:64:9e:38:73:50:6a:3b:8f:c8:19:c8:72:
30:8d:37:33:cf:86:9a:d4:ce:53:93:04:fb:84:b6:
5f:3c:fa:3f:54:f9:00:61:f4:1e:9b:1e:c2:5b:2c:
c4:1d:56:9f:3b:db:51:a5:6a:c1:be:8f:58:66:1d:
0c:3e:f5:94:b5:e6:71:3a:75:b4:b9:08:12:a1:38:
b6:5d:bd:71:53:16:cd:9c:e2:f7:fc:a3:91:34:7a:
45:d3:c5:ca:d4:b8:a5:c4:6d:ae:6c:c2:f0:59:2e:
9a:b7:81:70:f7:b8:30:64:0f:03:22:14:28:e7:79:
6d:e8:26:cd:94:ad:7f:33:b5:c3:7f:f9:ac:92:83:
cf:c6:e9:77:5a:6a:a5:06:44:78:20:98:07:2d:c6:
24:ba:67:48:55:1b:fa:3a:0f:e1:9d:9f:ce:a0:54:
00:d7:a8:33:71:88:86:c9:cf:05:11:10:07:31:6a:
77:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6A:15:C7:50:BF:11:53:2F:89:EE:48:EC:14:CB:45:14:C0:3C:DB
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.79.144.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f5:a8:c4:cc:83:6c:2a:4a:1c:34:61:a9:c4:09:83:2b:2b:
a7:b7:44:13:a1:b9:28:bb:b1:b5:3c:d1:a1:59:fa:1b:92:1f:
05:43:f0:93:45:5f:2f:f7:8c:42:7f:59:9f:b7:9b:81:14:a3:
43:de:a4:e3:b8:6b:01:e8:94:f3:5f:ad:4e:3e:1b:2b:d8:d5:
09:71:fb:91:11:4d:6f:3e:f8:a2:74:95:2c:b6:9c:f2:f2:6b:
08:ef:ee:55:38:4e:eb:a6:d7:65:80:78:ee:90:30:fc:3b:5d:
6b:03:35:45:06:1b:bc:3e:b9:7a:1c:d1:c5:72:eb:6d:af:43:
83:9e:79:0d:bb:15:8f:e2:fe:db:55:3c:ea:a9:26:13:99:f0:
a0:49:5a:ce:6c:3d:dc:5e:62:47:18:da:b8:15:02:f2:91:53:
3f:e2:9e:9d:40:21:63:65:c0:ee:4e:69:30:b8:18:0b:bd:c4:
04:13:d8:24:54:bc:00:4a:24:af:6b:00:1f:34:a5:28:a9:42:
ff:03:c6:17:70:1f:87:af:5d:7e:f9:a6:00:20:e6:57:70:29:
2a:60:39:6e:78:e3:59:8c:05:a2:01:72:ec:92:f8:62:a6:60:
dc:fd:99:5c:f4:33:3a:cb:2f:24:dc:4e:d0:3f:d5:3f:d3:59:
25:6d:a3:bc
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUPCoPdH3rwmbvKQDSYJ0Pxsz8ErIwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxOTAzNTUwMFoX
DTI1MTIxODA0MDAwMFowMzExMC8GA1UEAxMoRTI2QTE1Qzc1MEJGMTE1MzJGODlF
RTQ4RUMxNENCNDUxNEMwM0NEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN858w1dFfTONGBJrWp4ou4f8+xtaJHeeoaL14q15yOhNuFF33y1n0BBaKer
DtPl8sBncI+nQUT+r4AYkOPE6Y7MfdCIMG9W9LaMUdYYZJ44c1BqO4/IGchyMI03
M8+GmtTOU5ME+4S2Xzz6P1T5AGH0HpsewlssxB1WnzvbUaVqwb6PWGYdDD71lLXm
cTp1tLkIEqE4tl29cVMWzZzi9/yjkTR6RdPFytS4pcRtrmzC8FkumreBcPe4MGQP
AyIUKOd5begmzZStfzO1w3/5rJKDz8bpd1pqpQZEeCCYBy3GJLpnSFUb+joP4Z2f
zqBUANeoM3GIhsnPBREQBzFqd6sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTiahXH
UL8RUy+J7kjsFMtFFMA82zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA0Ny5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEANJPkDANBgkqhkiG9w0BAQsFAAOCAQEACvWoxMyDbCpKHDRhqcQJ
gysrp7dEE6G5KLuxtTzRoVn6G5IfBUPwk0VfL/eMQn9Zn7ebgRSjQ96k47hrAeiU
81+tTj4bK9jVCXH7kRFNbz74onSVLLac8vJrCO/uVThO66bXZYB47pAw/DtdawM1
RQYbvD65ehzRxXLrba9Dg555DbsVj+L+21U86qkmE5nwoElazmw93F5iRxjauBUC
8pFTP+KenUAhY2XA7k5pMLgYC73EBBPYJFS8AEokr2sAHzSlKKlC/wPGF3Afh69d
fvmmACDmV3ApKmA5bnjjWYwFogFy7JL4YqZg3P2ZXPQzOssvJNxO0D/VP9NZJW2j
vA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:17 2025 by rpki-client