Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa
File: AS150222.roa (raw, json)
Hash identifier: i7M15OoCRzk3yBUaiNlZZ7D1XoDv3ZyOSGihoYsOHpE=
Subject key identifier: 95:46:78:43:3E:7E:3E:0C:D1:D9:E6:16:BB:16:74:5A:4D:8C:CE:8F
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6CE31C4CADF26D0A0945D5470257540E68471111
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa
Signing time: Thu 23 Apr 2026 08:00:00 +0000
ROA not before: Thu 23 Apr 2026 07:55:00 +0000
ROA not after: Thu 22 Apr 2027 08:00:00 +0000
asID: 150222
IP address blocks: 2001:df2:9240::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:e3:1c:4c:ad:f2:6d:0a:09:45:d5:47:02:57:54:0e:68:47:11:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 23 07:55:00 2026 GMT
Not After : Apr 22 08:00:00 2027 GMT
Subject: CN=954678433E7E3E0CD1D9E616BB16745A4D8CCE8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:dd:02:aa:3c:86:d0:e4:ef:94:95:e8:d0:
3e:e9:2f:88:5b:6e:64:1c:a1:4d:98:9d:29:9f:12:
9f:0b:fc:ac:80:50:4a:3a:32:a5:f7:a6:f5:6e:56:
3f:bb:ec:38:27:89:65:c6:9e:0c:d6:7f:12:50:b0:
06:13:f6:03:c5:ea:9b:19:7c:c5:4c:b4:69:fb:1c:
04:91:25:40:67:0d:08:b9:6b:4a:d5:cb:a3:f2:2f:
c2:5d:8a:1a:82:0f:1a:80:52:a5:97:da:4a:21:c3:
0b:b0:8c:59:ca:98:72:f9:34:86:cd:41:df:a4:f8:
0c:34:4a:0c:c2:8c:14:47:c9:91:e7:1f:d4:72:37:
f1:0b:26:10:26:6b:a7:fd:ac:87:4e:9a:dd:d7:c5:
c3:60:ed:dd:ff:d0:18:ca:be:5c:77:7a:de:ba:c7:
56:df:58:59:ec:3c:b2:ff:78:b7:5d:5d:55:ce:ab:
43:ef:fa:a1:3a:00:cf:20:9e:6d:4d:f4:b9:71:3b:
62:70:1f:0e:3f:c7:d0:81:39:9c:33:09:0d:a8:74:
9e:ba:65:e8:31:a4:9e:7b:c1:20:f8:f8:db:db:bf:
dc:27:c2:bf:c9:82:ba:44:8b:33:6a:e9:e7:ca:b7:
1d:cd:04:b9:73:33:39:28:1d:4e:7c:7e:cf:d0:ea:
83:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:46:78:43:3E:7E:3E:0C:D1:D9:E6:16:BB:16:74:5A:4D:8C:CE:8F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150222.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:9240::/48
Signature Algorithm: sha256WithRSAEncryption
29:e9:bb:f7:ba:de:78:13:e0:87:7f:27:b3:b3:b9:2d:76:46:
7f:e9:18:b2:f7:a3:da:75:3e:4d:d9:09:48:78:69:35:56:69:
89:fa:68:0f:c1:c5:bd:e2:8a:00:04:3f:6a:f8:52:67:81:7e:
45:7b:21:d1:cc:94:f7:8f:c0:e5:ba:86:a5:0e:42:99:01:db:
03:f5:ef:31:16:3a:80:1c:07:b5:a1:8f:17:25:35:79:58:bf:
06:1c:29:69:5f:7e:c0:b7:2e:d3:ff:3d:67:4a:93:3d:8d:97:
bf:a0:54:9d:5b:ac:07:63:ce:9f:f9:02:2d:05:a8:e9:29:97:
ac:e5:2b:49:5c:0f:f3:80:33:63:05:19:1e:dd:1a:64:02:b2:
93:7b:42:86:c6:68:d0:a5:79:5e:41:9a:8f:a0:dc:46:f8:01:
8b:61:d9:bf:0b:cc:04:be:4a:57:8b:cf:eb:6d:c3:30:f4:4b:
5c:bf:d3:18:ac:e0:03:dd:64:61:cd:71:68:de:35:0c:37:a5:
b3:11:d9:f5:c7:5d:ee:53:bf:97:cf:d3:38:72:70:25:04:fd:
03:1d:0d:bf:d6:38:48:f7:73:5f:3e:a6:96:37:9c:3e:10:b4:
ee:6a:e1:9a:88:42:1d:15:04:d4:4e:85:3a:5e:ca:d2:48:2f:
65:f9:d4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:06:58 2026 by rpki-client