Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153690.roa
File: AS153690.roa (raw, json)
Hash identifier: BU8xaJ1olm1k9FoIx29g+X5b/MwNWLbd6wFZlwE0O7c=
Subject key identifier: 64:56:71:97:F9:8F:5E:45:4F:4C:B9:79:A1:33:D4:C3:0E:A7:25:41
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 78FC909881EA506D02CA52F3F7625F04F5E0476E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153690.roa
Signing time: Tue 21 Apr 2026 07:00:00 +0000
ROA not before: Tue 21 Apr 2026 06:55:00 +0000
ROA not after: Tue 20 Apr 2027 07:00:00 +0000
asID: 153690
IP address blocks: 163.223.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:fc:90:98:81:ea:50:6d:02:ca:52:f3:f7:62:5f:04:f5:e0:47:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 21 06:55:00 2026 GMT
Not After : Apr 20 07:00:00 2027 GMT
Subject: CN=64567197F98F5E454F4CB979A133D4C30EA72541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:6c:e3:2d:50:20:14:ca:b4:df:b2:1c:53:
b8:6e:bf:aa:1d:c1:2e:9e:5e:28:48:35:ef:bb:20:
a1:4f:bb:d8:69:c6:c3:ec:04:5c:f5:f8:02:4b:5e:
39:82:76:e6:02:1d:3d:0a:a3:48:ba:3a:31:37:cb:
2f:c3:f0:45:0f:39:60:dc:a8:0a:ef:43:cc:37:24:
32:24:c1:93:a1:99:4f:58:72:c9:01:90:ea:a4:89:
f3:91:58:72:06:d2:65:72:a1:bc:f7:3c:20:7a:cd:
85:95:62:3d:89:4d:c7:96:e9:7f:d9:3b:c8:b4:d2:
73:a5:34:9c:63:1a:18:a8:aa:99:3b:14:52:e0:cb:
16:6f:27:16:b0:83:64:2e:85:e3:de:56:ef:c3:fe:
64:ef:89:68:66:2d:40:b1:c1:90:21:70:59:6b:e9:
c6:b3:b6:59:a2:98:2f:0b:81:08:df:30:e8:02:af:
67:f6:68:17:a0:7d:51:43:85:17:78:0c:7e:5b:79:
3f:23:02:09:bb:8b:8d:29:88:e7:0c:73:4b:39:61:
5b:23:00:1e:01:46:5a:b4:77:de:fd:df:8c:46:11:
12:ff:cd:65:3d:ba:e6:50:d6:a0:a7:e8:a0:30:ea:
36:c4:6b:18:a0:5c:d9:01:44:aa:f5:5f:d0:ba:9a:
9d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:56:71:97:F9:8F:5E:45:4F:4C:B9:79:A1:33:D4:C3:0E:A7:25:41
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153690.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.223.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b7:37:35:ee:97:16:ba:aa:dd:10:21:73:03:13:7f:e4:9a:
04:ac:11:11:3d:fe:1a:2b:89:7f:f7:83:ac:fc:79:0a:9d:c5:
e8:e9:bf:fe:99:69:0f:49:b4:aa:a1:07:19:00:25:f0:63:8d:
76:87:ca:95:e7:34:79:27:32:e6:92:44:3b:ca:4e:f2:0b:d2:
6c:fa:57:58:8d:44:b7:16:cb:c1:ba:86:20:53:a6:55:b2:47:
00:27:d4:4f:53:81:da:ca:dc:06:10:af:25:75:9a:73:30:e1:
2b:9e:a9:b4:90:d1:41:b7:fc:fe:d9:8a:26:27:1c:26:14:cf:
34:f1:07:5d:31:4d:0b:50:0b:3c:a7:70:c3:54:95:5a:91:15:
86:7c:83:99:83:7c:e2:57:59:01:7a:51:ac:7e:3f:5c:fa:88:
40:28:5b:70:7a:ba:a2:a1:07:49:b9:c3:d5:81:58:6e:f9:4f:
ac:86:3a:56:91:8b:56:47:f7:1a:d3:3e:e4:e0:18:fb:0e:c6:
4f:5d:d8:53:49:f7:30:d1:d0:8a:7b:ee:f9:af:a6:0c:c8:67:
3c:9f:cf:6b:ab:58:45:16:05:11:58:4b:29:5a:5d:fd:df:57:
d0:b4:71:0f:6c:23:55:90:d6:f6:08:d4:40:34:35:48:dc:3b:
17:df:81:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:28:33 2026 by rpki-client