Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150235.roa
File: AS150235.roa (raw, json)
Hash identifier: gwpHzqp8Qviv3lMDLSSZJnNvGd/ltTyZCGTXEM8UiTQ=
Subject key identifier: 57:02:B5:BF:D8:B3:3B:1B:A9:DD:53:6C:80:84:8C:74:1F:B0:54:74
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 1C7B92A2957B91F3F4EF2CCBCC750A59D6E276AA
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150235.roa
Signing time: Sun 09 Feb 2025 08:19:45 +0000
ROA not before: Sun 09 Feb 2025 08:14:45 +0000
ROA not after: Sun 08 Feb 2026 08:19:45 +0000
asID: 150235
IP address blocks: 161.248.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:7b:92:a2:95:7b:91:f3:f4:ef:2c:cb:cc:75:0a:59:d6:e2:76:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 9 08:14:45 2025 GMT
Not After : Feb 8 08:19:45 2026 GMT
Subject: CN=5702B5BFD8B33B1BA9DD536C80848C741FB05474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:7c:da:f1:eb:0b:72:5e:e4:f9:ee:bc:30:
d7:f1:20:6b:a5:59:b6:7c:4f:d6:c2:a9:4d:be:b2:
32:88:53:44:d5:6f:2d:b1:a3:03:37:2f:32:a9:f3:
56:7f:e5:1d:ef:11:f0:2f:71:88:f5:4d:27:d3:9e:
93:aa:32:84:44:69:54:bb:08:4f:8f:4d:26:ed:de:
f0:97:b2:69:1a:1c:a6:bf:a2:a1:a1:63:5e:95:60:
7d:27:39:b2:12:0c:e5:fb:32:fa:29:69:f3:f9:38:
10:9e:5a:48:6e:32:d8:a8:20:cd:5c:40:76:09:de:
8a:50:52:46:86:95:5f:be:43:ef:bd:24:59:f1:9f:
79:52:5a:26:39:d1:f2:1f:84:87:8e:e3:a4:45:0f:
24:00:90:14:aa:a0:42:cb:fc:aa:5f:16:8a:4a:07:
1d:b6:db:1b:5d:f3:68:bb:c8:87:76:22:69:e9:62:
ad:08:51:da:65:a5:9a:4a:3c:df:85:72:f0:b3:e1:
4f:82:d1:bd:30:4f:d6:a2:73:46:6c:dc:94:f5:ec:
60:9a:91:2b:ce:60:13:e5:a6:fb:17:fa:80:e5:e8:
81:30:bf:d2:81:53:83:3b:aa:cd:01:9a:21:64:8a:
44:37:3c:1b:f9:29:02:f3:56:37:84:99:b1:78:69:
7b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:02:B5:BF:D8:B3:3B:1B:A9:DD:53:6C:80:84:8C:74:1F:B0:54:74
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.248.222.0/24
Signature Algorithm: sha256WithRSAEncryption
19:48:d8:93:d1:44:b4:3b:a0:f3:6a:00:ec:c0:d5:b0:66:20:
ae:75:5e:ab:8e:a4:0e:38:81:e7:0d:70:85:69:51:1f:9e:54:
0f:2b:6a:a0:f3:09:cb:48:d8:74:34:d7:14:95:49:89:58:eb:
a1:39:c3:4b:31:cb:7e:ac:8d:18:31:e4:d3:10:c2:71:2c:85:
8d:39:68:dc:cc:39:ec:78:a0:f4:13:3c:2f:ee:f0:c4:a4:03:
5d:c3:25:08:97:26:b8:52:06:4f:bc:3c:40:b1:01:f5:bd:d5:
30:10:08:8b:8a:92:6c:b6:b2:c8:4f:d8:e7:08:c7:10:07:fe:
f3:ce:4b:94:49:92:44:f7:55:ec:44:18:0b:97:65:c5:34:59:
6a:a8:d9:16:1c:b4:3d:80:59:2f:be:4f:58:15:f8:fb:9c:c9:
70:d7:93:7d:98:4f:2b:1d:0a:2d:66:08:15:2a:4e:b6:aa:8c:
a3:86:23:9c:28:d6:f5:e8:21:3d:97:5c:aa:c4:81:bd:7a:1e:
74:08:4b:c7:22:94:9b:e9:11:fa:dd:1c:bd:ad:75:77:13:7f:
07:42:f7:00:f1:6d:31:54:f9:08:d3:6f:4e:3b:d1:33:bf:13:
97:b5:a9:54:4e:49:6e:d8:ef:bd:35:7b:77:14:e8:5d:07:25:
9c:f5:6b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:33:50 2025 by rpki-client