Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa
File: AS152070.roa (raw, json)
Hash identifier: lXea/VTiaQb7QgsgszxMRLFttcAHC14nsT/7Ah5iNsg=
Subject key identifier: FA:DC:24:2C:F5:C8:1C:D7:4C:BB:E9:C7:3E:F3:8D:28:62:41:25:70
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7EB9C3C34F85176B340CD2B7086C5751AA16E584
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa
Signing time: Thu 05 Dec 2024 04:00:00 +0000
ROA not before: Thu 05 Dec 2024 03:55:00 +0000
ROA not after: Thu 04 Dec 2025 04:00:00 +0000
asID: 152070
IP address blocks: 36.50.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:b9:c3:c3:4f:85:17:6b:34:0c:d2:b7:08:6c:57:51:aa:16:e5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 5 03:55:00 2024 GMT
Not After : Dec 4 04:00:00 2025 GMT
Subject: CN=FADC242CF5C81CD74CBBE9C73EF38D2862412570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0d:0c:e1:e9:a0:e1:a1:d8:b3:01:30:c6:f6:
c0:5c:7a:73:7b:83:70:c8:1c:31:30:68:92:4b:5b:
62:be:5c:3c:f1:12:54:2d:17:49:c1:58:63:e4:a9:
bd:35:ed:2f:05:84:3c:7b:1e:22:06:04:5a:ec:69:
fd:c3:b9:28:a0:fa:97:ec:0f:f7:da:0d:a9:3f:33:
1b:6e:e9:cc:c9:e1:32:a9:66:d9:0b:a3:f6:3d:12:
ec:f6:c1:d8:b2:16:de:0d:e7:e1:13:cb:bd:72:ee:
bb:20:8b:e2:38:88:93:fb:1f:c0:7f:03:cf:1c:a0:
da:45:a4:77:3f:cc:84:c6:6a:f2:8c:46:09:47:e9:
fb:6e:e7:99:59:99:78:33:82:71:80:6c:7b:04:7b:
35:b1:ba:77:b4:bd:65:2d:1e:2e:c2:88:23:1c:22:
fe:1a:2f:5b:06:95:aa:87:1e:d4:0a:52:57:7d:70:
3b:e8:0f:61:55:33:2f:09:f0:f9:f2:25:34:43:c4:
5d:84:fd:fa:95:d5:ce:75:f2:7a:68:3e:c9:93:6e:
cc:27:a3:f3:a4:0b:10:61:5b:ea:f1:59:34:a0:88:
88:15:9d:20:d0:6e:b9:4b:62:37:48:c7:ea:59:1e:
6f:86:78:23:b4:ae:83:b3:62:6d:1e:de:24:2e:ad:
eb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:DC:24:2C:F5:C8:1C:D7:4C:BB:E9:C7:3E:F3:8D:28:62:41:25:70
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.50.219.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:08:b3:cf:4c:3a:c4:0c:d1:be:df:b6:a6:1f:40:a3:d4:47:
14:d2:55:6b:c3:46:1d:0b:d4:c3:2d:bc:c7:82:f3:27:f4:3f:
ad:43:9e:dc:ac:09:04:3b:1c:9a:a5:f2:f3:4f:7c:20:21:de:
92:8f:91:78:fe:68:79:33:92:e8:4a:5b:61:75:4a:74:64:a5:
0d:f0:16:74:7d:df:27:82:a8:d9:4d:ed:df:9f:a4:0d:05:0a:
69:2e:1a:31:f8:86:09:d2:69:04:b4:7e:e5:29:f6:89:e3:f6:
d5:fb:f1:60:f6:0f:c5:50:2f:1d:b7:29:b0:63:aa:a7:01:cc:
8e:87:95:66:ba:8e:10:29:f3:85:0b:dc:29:84:d7:28:b1:9f:
3a:a7:c9:a1:0c:2b:4c:07:42:2a:e9:83:66:c6:d7:3f:17:0d:
41:f5:7e:32:cb:1f:96:e3:fd:19:12:5f:51:e8:8f:1d:e5:39:
a1:93:cc:08:85:c7:89:92:8b:6f:29:48:d5:3a:af:67:10:fd:
39:85:6b:da:2a:52:c6:bb:65:c0:11:8c:ab:d4:f6:c7:db:9f:
98:94:0c:2d:7a:c2:e8:25:8d:a0:db:71:56:5e:7a:6f:64:35:
dc:91:f1:7a:20:3b:22:8e:8d:92:7d:f8:d9:2b:9a:22:8d:de:
b2:c4:05:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:57 2025 by rpki-client