Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa
File: AS152364.roa (raw, json)
Hash identifier: W+Z9rGD9coh7U1pegHyY9+EaIZnTKjhVxXkVolsonz4=
Subject key identifier: 4F:D9:E5:30:40:F1:FF:1A:D8:69:A1:DA:61:AC:50:DD:90:32:32:60
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2D6A6C5D4EE2BCCADD7654D772EB466ADD25BDBA
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa
Signing time: Thu 06 Feb 2025 10:44:53 +0000
ROA not before: Thu 06 Feb 2025 10:39:53 +0000
ROA not after: Thu 05 Feb 2026 10:44:53 +0000
asID: 152364
IP address blocks: 157.15.96.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:6a:6c:5d:4e:e2:bc:ca:dd:76:54:d7:72:eb:46:6a:dd:25:bd:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 6 10:39:53 2025 GMT
Not After : Feb 5 10:44:53 2026 GMT
Subject: CN=4FD9E53040F1FF1AD869A1DA61AC50DD90323260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:17:3c:8f:b2:55:a0:10:b7:e2:27:b5:dd:
55:28:af:84:29:3d:6e:58:9d:0a:90:25:17:2a:34:
24:13:64:7b:be:1b:b7:a7:6c:a0:23:2d:7e:33:d1:
e8:6b:e9:d2:fc:b2:15:63:f1:10:2d:69:50:9d:49:
10:7a:89:6e:58:46:5b:bb:66:68:68:1a:51:41:ae:
77:b0:cb:ee:e8:30:0c:4e:02:9b:9b:93:aa:e7:0d:
f3:3c:dc:18:48:fb:9b:29:15:be:8d:e2:af:a2:6d:
39:74:c4:ad:54:10:32:44:b3:4c:6a:19:51:96:dc:
6c:90:3d:4d:4c:73:f2:17:0b:74:38:9d:41:af:a5:
1e:9a:0d:e7:76:42:a9:27:ca:0d:64:2e:f5:8b:dc:
8a:73:a6:11:78:83:64:42:1f:87:ae:88:3f:1f:75:
c2:9a:00:e2:f6:fe:eb:28:53:b2:6e:77:61:85:46:
d1:93:2f:42:61:55:77:86:c8:08:31:d1:8f:e2:22:
e2:5d:96:31:03:b7:98:69:e7:8a:fd:f6:2b:73:9e:
ac:b6:f6:ac:fc:13:df:13:b0:84:32:88:c0:96:be:
ef:31:5d:ba:26:a6:c4:0c:25:81:ab:31:33:c5:c3:
dc:ca:c6:d7:49:8d:6d:15:51:a8:2f:86:e0:80:a4:
22:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D9:E5:30:40:F1:FF:1A:D8:69:A1:DA:61:AC:50:DD:90:32:32:60
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152364.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.96.0/23
Signature Algorithm: sha256WithRSAEncryption
30:33:36:24:25:e6:01:45:ce:b9:0e:bd:d9:93:2f:a9:d0:01:
6e:97:03:db:ce:11:b0:1f:6d:3b:8e:9b:d9:df:cd:d7:d0:dc:
e8:59:d5:d2:6b:4e:2a:7d:cc:c2:39:26:24:b9:0c:18:61:a0:
bf:ee:32:45:0b:b7:bf:f1:3f:b7:b8:dd:a6:d2:93:41:92:62:
07:b1:1a:2f:e5:18:a5:98:c1:3d:f6:d5:65:b1:aa:3c:20:57:
bc:1d:69:08:cb:4f:de:44:2a:4e:16:bf:a4:25:1e:50:db:45:
cb:4b:c9:e1:2d:f0:f3:56:50:4a:8f:de:5e:cd:b9:5b:74:bb:
e5:59:c2:69:54:be:5e:ce:ca:5d:ae:5e:d3:5e:80:c8:c4:8f:
f2:f0:d4:4c:c8:c4:d2:3d:7a:47:d4:92:db:a3:03:9f:20:8f:
38:07:27:92:94:bf:2c:f3:3b:c5:ef:e5:20:ec:d2:0d:81:e8:
a2:98:bf:27:03:0e:32:aa:c9:d5:1b:27:4f:bd:5a:da:36:df:
e0:34:9e:0f:ef:22:7f:8f:e9:e7:9a:8a:b0:16:23:75:8e:ea:
c8:ed:3a:00:62:b5:bc:74:0a:bb:00:1b:a8:17:20:5e:ad:e2:
4f:e9:f7:17:a8:ef:9b:cc:63:ca:f9:d6:09:da:4f:75:e1:79:
86:ac:29:d2
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIULWpsXU7ivMrddlTXcutGat0lvbowDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1M1oX
DTI2MDIwNTEwNDQ1M1owMzExMC8GA1UEAxMoNEZEOUU1MzA0MEYxRkYxQUQ4NjlB
MURBNjFBQzUwREQ5MDMyMzI2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAK3EFzyPslWgELfiJ7XdVSivhCk9blidCpAlFyo0JBNke74bt6dsoCMtfjPR
6Gvp0vyyFWPxEC1pUJ1JEHqJblhGW7tmaGgaUUGud7DL7ugwDE4Cm5uTqucN8zzc
GEj7mykVvo3ir6JtOXTErVQQMkSzTGoZUZbcbJA9TUxz8hcLdDidQa+lHpoN53ZC
qSfKDWQu9YvcinOmEXiDZEIfh66IPx91wpoA4vb+6yhTsm53YYVG0ZMvQmFVd4bI
CDHRj+Ii4l2WMQO3mGnniv32K3OerLb2rPwT3xOwhDKIwJa+7zFduiamxAwlgasx
M8XD3MrG10mNbRVRqC+G4ICkImUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRP2eUw
QPH/GthpodphrFDdkDIyYDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM2NC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0PYDANBgkqhkiG9w0BAQsFAAOCAQEAMDM2JCXmAUXOuQ692ZMv
qdABbpcD284RsB9tO46b2d/N19Dc6FnV0mtOKn3MwjkmJLkMGGGgv+4yRQu3v/E/
t7jdptKTQZJiB7EaL+UYpZjBPfbVZbGqPCBXvB1pCMtP3kQqTha/pCUeUNtFy0vJ
4S3w81ZQSo/eXs25W3S75VnCaVS+Xs7KXa5e016AyMSP8vDUTMjE0j16R9SS26MD
nyCPOAcnkpS/LPM7xe/lIOzSDYHoopi/JwMOMqrJ1RsnT71a2jbf4DSeD+8if4/p
55qKsBYjdY7qyO06AGK1vHQKuwAbqBcgXq3iT+n3F6jvm8xjyvnWCdpPdeF5hqwp
0g==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:29:40 2025 by rpki-client