Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153825.roa
File: AS153825.roa (raw, json)
Hash identifier: Am7R4p8nmMdy6i8xtw5HoIh3IibNvGR4l+JDZqXo8vo=
Subject key identifier: 04:62:B6:35:59:A8:31:EC:52:EC:64:49:B9:6D:88:98:0A:26:E9:22
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 341D80430040B9BAEA5D9E79A28443838477061B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153825.roa
Signing time: Mon 20 Apr 2026 03:00:00 +0000
ROA not before: Mon 20 Apr 2026 02:55:00 +0000
ROA not after: Mon 19 Apr 2027 03:00:00 +0000
asID: 153825
IP address blocks: 163.223.185.0/24 maxlen: 24
2001:df5:4940::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:1d:80:43:00:40:b9:ba:ea:5d:9e:79:a2:84:43:83:84:77:06:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 20 02:55:00 2026 GMT
Not After : Apr 19 03:00:00 2027 GMT
Subject: CN=0462B63559A831EC52EC6449B96D88980A26E922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0c:ea:9d:d4:17:9c:3f:34:ee:c2:b0:3c:7a:
0a:f0:2d:a1:42:6d:75:a6:7f:fb:f3:ff:f6:0e:02:
9d:90:f6:52:1f:6b:29:0a:52:81:9a:bb:76:f7:3d:
92:d3:67:c5:42:f4:e5:19:b2:5a:6d:ca:f8:86:69:
e9:b0:3b:cd:39:da:f7:bf:fa:85:e4:0c:e4:11:28:
e2:42:d0:e0:37:35:69:2e:e6:61:75:8b:b1:0e:f7:
c7:b4:15:73:81:b9:69:2c:f2:ee:83:1f:83:fa:5c:
ca:45:b7:f9:5a:97:f8:14:1d:44:3d:f4:b1:32:c5:
41:8e:75:0f:e4:3a:2a:25:99:fa:1f:b7:9e:de:05:
0e:c8:73:1c:a9:ba:66:1b:df:cb:d3:7d:0c:f4:85:
fa:af:e6:ea:e4:c7:43:d8:80:04:eb:ea:8a:55:7b:
46:57:03:07:57:84:b9:99:40:3d:24:f4:03:dd:55:
8b:9b:d6:b4:6a:f1:2d:79:0a:70:7e:2d:6f:85:1a:
82:a8:06:5a:8a:56:df:d0:48:7d:6b:f2:77:cf:35:
dd:7a:0f:f6:ce:d9:f3:a9:87:43:a1:a3:ad:8e:65:
d0:60:4f:b3:0b:74:04:73:fa:ab:ff:3e:0e:f3:04:
f4:45:5c:00:84:b4:75:65:97:8d:e0:9d:17:3b:70:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:62:B6:35:59:A8:31:EC:52:EC:64:49:B9:6D:88:98:0A:26:E9:22
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153825.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.223.185.0/24
IPv6:
2001:df5:4940::/48
Signature Algorithm: sha256WithRSAEncryption
07:ad:c2:52:a5:10:8a:ca:03:d2:18:dd:7c:50:31:93:c1:fc:
93:1f:ac:04:df:01:3a:f0:db:ba:03:41:48:e9:94:4d:ea:de:
3e:26:45:bc:c3:5f:da:31:a9:08:22:60:43:88:c9:29:d2:82:
8f:6a:da:e5:a9:3a:be:cd:c1:1a:17:f4:19:7c:12:ad:e3:7e:
94:9c:50:7b:12:87:97:5d:1f:e3:e2:7e:45:11:ee:a5:e5:30:
0a:3a:4e:ef:ff:b9:d5:a3:e1:84:34:15:ac:0b:c8:1e:c4:23:
a7:06:09:b7:bd:d1:56:07:e4:43:a4:99:06:ef:4b:99:97:90:
3b:87:f0:5d:dd:c8:15:b6:4e:0c:84:ae:33:a3:a2:9e:52:b5:
b8:52:77:c8:fd:57:c8:97:b2:28:d8:83:da:0b:b4:17:d6:ee:
aa:74:db:82:15:09:67:5a:df:25:97:54:c8:2f:7b:ba:3b:01:
f8:a7:ad:de:ab:e8:88:fb:9e:b4:77:7f:03:19:f6:ff:05:0d:
14:58:15:95:8f:8d:8b:a8:3f:dd:9a:df:68:09:8d:97:2c:15:
3e:46:f1:04:09:26:ee:78:16:b4:75:2d:96:80:6c:33:b0:72:
a6:53:74:77:0d:03:4d:1a:19:c7:8e:c9:a0:81:86:34:c8:3e:
ec:2b:cc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 03:06:42 2026 by rpki-client