Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa
File: AS38750.roa (raw, json)
Hash identifier: 54PYKTgcK7b9P/CSeI+x0FAKHL8psyRdD2ctEZTRaBg=
Subject key identifier: 67:18:E9:16:67:C0:52:D3:80:37:44:09:36:0E:1D:74:17:B4:95:84
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5E5D4BC94BD08B0ACADD9853E11B17F32F00DAE3
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa
Signing time: Wed 02 Oct 2024 04:00:00 +0000
ROA not before: Wed 02 Oct 2024 03:55:00 +0000
ROA not after: Wed 01 Oct 2025 04:00:00 +0000
asID: 38750
IP address blocks: 121.50.32.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:5d:4b:c9:4b:d0:8b:0a:ca:dd:98:53:e1:1b:17:f3:2f:00:da:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 2 03:55:00 2024 GMT
Not After : Oct 1 04:00:00 2025 GMT
Subject: CN=6718E91667C052D380374409360E1D7417B49584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:72:73:e6:91:e4:86:de:40:a6:e2:b1:50:
bc:ef:29:8c:8b:88:8b:c0:c5:bb:38:72:04:0c:f9:
75:e4:89:2b:9d:ed:c0:d3:e0:77:e7:65:c1:21:5e:
08:2c:55:36:aa:9b:62:10:ff:97:cd:9c:63:35:51:
56:66:b3:f9:5c:1f:cc:84:4a:e8:30:f0:79:b5:01:
df:e2:e8:18:40:56:72:20:d9:6a:16:5d:3b:c0:1b:
25:e3:05:be:8c:43:8b:8b:8f:b5:1c:dd:3b:d2:0b:
b3:9e:20:0d:96:e3:92:7a:19:5a:1e:32:24:4d:eb:
f7:e6:7d:4d:be:88:2c:48:a8:7c:fd:75:56:59:8f:
a2:56:a0:63:01:8c:45:29:1a:c6:0c:99:0d:db:a3:
74:97:53:86:77:e2:37:82:64:45:bc:80:07:1e:18:
27:aa:db:4c:d4:83:70:f8:06:f5:c8:af:c8:99:c7:
cf:af:00:e4:01:f6:62:b6:dd:e5:ef:11:e3:4a:5e:
27:58:f3:25:ff:31:35:b1:f0:a5:e3:e7:fa:30:de:
c6:ad:c1:d6:db:3f:c3:d5:6c:6f:8c:fd:a1:7a:6e:
2c:9b:96:62:c8:d8:22:96:57:96:1f:81:a4:98:b4:
d9:3f:5c:c0:e9:70:3d:0d:3d:65:cf:ac:2b:58:82:
c3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:18:E9:16:67:C0:52:D3:80:37:44:09:36:0E:1D:74:17:B4:95:84
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38750.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.50.32.0/21
Signature Algorithm: sha256WithRSAEncryption
42:65:37:67:87:6a:6c:4b:5b:b2:60:99:41:af:84:07:54:18:
67:ad:a5:87:0b:80:0f:15:88:ea:e5:c8:2a:28:41:e1:c6:57:
42:01:cd:24:99:9b:bc:78:ad:bf:ad:12:35:75:b2:44:e8:f0:
df:da:52:61:88:09:c6:df:c0:c2:2f:22:37:d0:15:b5:f4:8b:
bc:ba:4b:e6:9d:22:df:19:9d:40:20:ae:18:4d:d0:85:d2:95:
2b:04:8d:2b:c5:ea:49:52:03:3a:0e:e1:0b:42:ad:c5:28:78:
a9:9a:3b:fe:63:9c:3a:79:85:da:ea:7e:e1:e0:5e:6f:27:b3:
7c:76:9e:f7:0e:4f:5f:dc:18:d3:28:2b:f9:93:97:60:f9:40:
93:1c:3c:08:5c:bc:2b:2c:6a:c2:50:53:67:68:86:6e:42:bb:
a5:3b:45:dc:7a:96:c0:91:4c:91:f7:98:bf:70:9e:8c:7e:52:
c1:a9:2d:a5:df:1c:e1:df:da:0b:d3:f7:f5:24:cd:99:03:06:
d0:6f:0c:03:a9:cf:68:f6:3e:47:9d:f1:4e:db:61:1d:59:a9:
5c:ab:d9:80:0f:f8:b5:aa:b7:0f:3b:c4:de:b5:6f:51:26:41:
d1:78:c8:9f:2d:27:12:bc:1d:a3:44:60:1d:21:9e:5e:3d:88:
0f:2a:2b:9b
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUXl1LyUvQiwrK3ZhT4RsX8y8A2uMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMjAzNTUwMFoX
DTI1MTAwMTA0MDAwMFowMzExMC8GA1UEAxMoNjcxOEU5MTY2N0MwNTJEMzgwMzc0
NDA5MzYwRTFENzQxN0I0OTU4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJ1ncnPmkeSG3kCm4rFQvO8pjIuIi8DFuzhyBAz5deSJK53twNPgd+dlwSFe
CCxVNqqbYhD/l82cYzVRVmaz+VwfzIRK6DDwebUB3+LoGEBWciDZahZdO8AbJeMF
voxDi4uPtRzdO9ILs54gDZbjknoZWh4yJE3r9+Z9Tb6ILEiofP11VlmPolagYwGM
RSkaxgyZDdujdJdThnfiN4JkRbyABx4YJ6rbTNSDcPgG9civyJnHz68A5AH2Yrbd
5e8R40peJ1jzJf8xNbHwpePn+jDexq3B1ts/w9Vsb4z9oXpuLJuWYsjYIpZXlh+B
pJi02T9cwOlwPQ09Zc+sK1iCw3cCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRnGOkW
Z8BS04A3RAk2Dh10F7SVhDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzUwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQDeTIgMA0GCSqGSIb3DQEBCwUAA4IBAQBCZTdnh2psS1uyYJlBr4QH
VBhnraWHC4APFYjq5cgqKEHhxldCAc0kmZu8eK2/rRI1dbJE6PDf2lJhiAnG38DC
LyI30BW19Iu8ukvmnSLfGZ1AIK4YTdCF0pUrBI0rxepJUgM6DuELQq3FKHipmjv+
Y5w6eYXa6n7h4F5vJ7N8dp73Dk9f3BjTKCv5k5dg+UCTHDwIXLwrLGrCUFNnaIZu
QrulO0XcepbAkUyR95i/cJ6MflLBqS2l3xzh39oL0/f1JM2ZAwbQbwwDqc9o9j5H
nfFO22EdWalcq9mAD/i1qrcPO8TetW9RJkHReMifLScSvB2jRGAdIZ5ePYgPKiub
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:23 2025 by rpki-client