Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152393.roa
File: AS152393.roa (raw, json)
Hash identifier: YDxcieKGNb5lzbXPRytu3kGplhTobdw7iFcshXmbXE4=
Subject key identifier: E8:7E:4C:CF:6D:18:E3:78:50:BF:AE:6B:F7:72:51:33:41:F0:55:13
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2838C9CD1FA4F422219239BA8C7F3636F44B15BC
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152393.roa
Signing time: Thu 06 Feb 2025 10:44:51 +0000
ROA not before: Thu 06 Feb 2025 10:39:51 +0000
ROA not after: Thu 05 Feb 2026 10:44:51 +0000
asID: 152393
IP address blocks: 157.15.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:38:c9:cd:1f:a4:f4:22:21:92:39:ba:8c:7f:36:36:f4:4b:15:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 6 10:39:51 2025 GMT
Not After : Feb 5 10:44:51 2026 GMT
Subject: CN=E87E4CCF6D18E37850BFAE6BF772513341F05513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:89:7d:ef:8b:af:0c:db:a5:94:73:cf:8b:ce:
6b:0c:78:f1:45:76:39:9f:91:85:38:3b:0e:67:bb:
3b:e1:c1:72:e8:9b:94:db:4a:a6:65:39:bc:1c:42:
1f:ee:6e:8e:02:d4:fb:83:20:01:97:4a:30:3f:8f:
8e:06:84:3f:6c:d5:07:1b:2b:7b:ef:22:2f:59:81:
3c:00:95:fe:41:10:07:76:12:e5:dd:3b:a5:1e:8f:
d5:e7:a4:6b:e8:e9:9d:18:26:9d:c4:ba:38:87:b9:
90:7a:79:99:82:73:58:9d:cc:c5:59:51:4d:f3:df:
08:7f:6b:21:e1:50:61:91:03:09:ce:cf:6d:64:17:
dd:fd:b9:6a:90:0a:40:e2:2f:47:a8:78:8c:e9:81:
3b:2b:07:cb:0e:1e:ea:3a:ba:38:a4:35:31:37:c8:
a4:9f:dd:ba:8a:d3:4d:49:f1:01:7b:a9:ed:8e:2b:
68:f1:01:03:2f:3f:82:7e:97:b1:39:27:98:a6:98:
96:58:bc:dc:ad:9e:32:4b:f6:90:0a:86:a1:68:c7:
28:65:e4:fe:3a:ec:1c:0b:f1:5c:04:bc:02:1f:19:
43:52:7b:2d:d6:13:55:1e:88:20:50:1a:35:fb:c6:
de:3c:78:fa:8a:7e:7e:6a:4c:bb:55:2d:75:b5:ea:
06:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7E:4C:CF:6D:18:E3:78:50:BF:AE:6B:F7:72:51:33:41:F0:55:13
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152393.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.210.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:d6:fd:b2:4e:a3:c4:ef:7d:c8:76:3f:16:8a:99:67:87:b5:
54:16:01:26:71:99:09:3c:ae:23:6c:06:61:bb:20:c1:84:ca:
c4:20:6b:95:f4:3f:44:eb:97:bf:a1:00:01:f8:aa:3c:96:62:
c7:c2:40:38:0f:86:fd:51:e0:70:9f:57:f8:f7:fb:e2:b0:54:
d5:47:4a:83:d1:6a:3b:85:d1:4f:ee:56:4e:87:bf:97:fc:2b:
80:c3:13:23:2d:1e:00:47:4c:2c:d1:58:64:6a:f9:d8:80:77:
fd:9e:b5:f5:d9:2b:fb:3a:e3:24:12:69:c9:ee:1c:86:04:fa:
c4:5e:ef:df:a2:16:0d:ce:96:36:37:9b:d5:a4:bb:58:7d:d6:
68:92:f0:27:fe:6f:72:a8:e5:18:cd:8e:cb:10:3d:22:06:c6:
f6:a1:09:d5:84:b3:b3:03:82:64:b1:ca:3b:37:f5:84:17:c5:
ba:2b:88:d5:84:3b:50:10:7f:c2:7f:86:f8:58:19:3e:c6:4d:
0e:cd:a3:14:c7:fd:82:df:e7:f4:22:b3:4e:10:52:bd:25:7f:
fb:2b:8d:77:c7:13:c7:7b:93:68:1d:b1:4b:b5:4c:29:1a:56:
09:41:70:93:02:8b:c7:2e:2a:90:a4:77:75:7e:94:05:e7:28:
68:cf:de:85
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUKDjJzR+k9CIhkjm6jH82NvRLFbwwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1MVoX
DTI2MDIwNTEwNDQ1MVowMzExMC8GA1UEAxMoRTg3RTRDQ0Y2RDE4RTM3ODUwQkZB
RTZCRjc3MjUxMzM0MUYwNTUxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMeJfe+LrwzbpZRzz4vOawx48UV2OZ+RhTg7Dme7O+HBcuiblNtKpmU5vBxC
H+5ujgLU+4MgAZdKMD+PjgaEP2zVBxsre+8iL1mBPACV/kEQB3YS5d07pR6P1eek
a+jpnRgmncS6OIe5kHp5mYJzWJ3MxVlRTfPfCH9rIeFQYZEDCc7PbWQX3f25apAK
QOIvR6h4jOmBOysHyw4e6jq6OKQ1MTfIpJ/duorTTUnxAXup7Y4raPEBAy8/gn6X
sTknmKaYlli83K2eMkv2kAqGoWjHKGXk/jrsHAvxXAS8Ah8ZQ1J7LdYTVR6IIFAa
NfvG3jx4+op+fmpMu1UtdbXqBusCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTofkzP
bRjjeFC/rmv3clEzQfBVEzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM5My5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0P0jANBgkqhkiG9w0BAQsFAAOCAQEAftb9sk6jxO99yHY/FoqZ
Z4e1VBYBJnGZCTyuI2wGYbsgwYTKxCBrlfQ/ROuXv6EAAfiqPJZix8JAOA+G/VHg
cJ9X+Pf74rBU1UdKg9FqO4XRT+5WToe/l/wrgMMTIy0eAEdMLNFYZGr52IB3/Z61
9dkr+zrjJBJpye4chgT6xF7v36IWDc6WNjeb1aS7WH3WaJLwJ/5vcqjlGM2OyxA9
IgbG9qEJ1YSzswOCZLHKOzf1hBfFuiuI1YQ7UBB/wn+G+FgZPsZNDs2jFMf9gt/n
9CKzThBSvSV/+yuNd8cTx3uTaB2xS7VMKRpWCUFwkwKLxy4qkKR3dX6UBecoaM/e
hQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:34:31 2025 by rpki-client