Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153514.roa
File: AS153514.roa (raw, json)
Hash identifier: YMXJOChhSAUc4CKvgl7yii6DF3AklkvyqepAiHw+PL4=
Subject key identifier: B7:1F:98:EE:CE:23:16:9D:CB:2F:A3:14:56:43:5D:23:6F:18:5B:16
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 424E7042A00BBBA3E5AF1AD0B055C8EC646DFA1C
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153514.roa
Signing time: Tue 11 Feb 2025 07:07:50 +0000
ROA not before: Tue 11 Feb 2025 07:02:50 +0000
ROA not after: Tue 10 Feb 2026 07:07:50 +0000
asID: 153514
IP address blocks: 160.250.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:4e:70:42:a0:0b:bb:a3:e5:af:1a:d0:b0:55:c8:ec:64:6d:fa:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 11 07:02:50 2025 GMT
Not After : Feb 10 07:07:50 2026 GMT
Subject: CN=B71F98EECE23169DCB2FA31456435D236F185B16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:40:f1:88:ee:92:4d:e5:e6:38:0e:82:ad:db:
b0:ff:a5:0b:2d:6c:43:c6:78:22:3c:ae:b5:6a:a7:
a5:4d:af:60:b6:a1:1e:53:63:2e:c5:e5:c1:c5:f7:
19:f8:d9:e2:97:90:01:1f:44:1e:bd:8f:63:76:6b:
83:5c:73:88:63:88:01:fa:16:5e:dc:07:7d:18:2c:
b4:05:8f:90:9b:bd:b9:aa:67:d6:18:a6:89:60:66:
13:62:b8:69:71:66:f5:4a:f8:c5:15:9e:96:31:0e:
37:08:3c:a2:70:fd:bb:ca:42:69:cc:fc:c5:1b:f7:
b6:57:88:5f:95:25:f8:ff:24:90:79:c1:4b:f5:d7:
21:f3:7c:8d:d8:de:89:d9:54:7a:8e:01:36:7a:cf:
9e:47:2b:c6:23:3e:b6:0a:c9:2c:c4:b0:1d:32:75:
08:3c:ee:0d:49:66:4a:1c:df:03:10:0c:a9:32:02:
5b:41:f4:72:29:a7:2b:ca:b3:b2:91:ac:b4:60:ff:
5d:b4:43:46:00:1d:ff:a7:f6:8b:5b:25:6e:e0:0f:
cf:c2:93:a7:a6:a5:03:5c:45:f2:98:5a:2b:44:7d:
5f:47:14:07:90:c7:6d:86:e5:b8:83:14:ff:66:e5:
74:c7:63:27:ce:5d:3b:2d:da:5b:fa:28:85:57:4b:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1F:98:EE:CE:23:16:9D:CB:2F:A3:14:56:43:5D:23:6F:18:5B:16
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153514.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.250.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f0:39:73:45:5a:b1:de:88:7b:9c:b8:0d:f9:34:86:42:41:
a7:aa:fe:fd:17:e8:56:73:b9:07:7f:3f:36:d7:77:dc:38:89:
ba:33:45:10:72:5e:11:77:63:1e:b3:b5:16:32:46:f5:4a:d6:
ac:43:85:0a:77:74:a9:26:47:a5:0e:de:46:10:a2:e7:e0:c0:
a6:03:ff:e9:0c:bf:09:17:3f:ef:b5:40:55:04:48:fd:05:c7:
78:eb:fa:58:f1:5b:ed:93:39:e5:0b:29:7b:e4:85:23:3d:1c:
15:1e:54:3d:6b:71:ac:06:57:f5:a4:74:9f:57:14:93:ce:57:
a3:a1:4b:d9:f4:55:a3:2c:26:ac:f5:d2:ba:d1:25:f5:73:a7:
56:b8:3c:93:79:2f:a7:ba:9d:8e:da:da:9d:20:a7:54:8c:b0:
d4:13:4b:69:6a:84:0b:4c:2b:a5:05:16:f6:4e:33:33:49:b8:
05:a4:1a:48:fb:e8:f0:42:a7:06:3a:26:4e:f1:c3:1a:65:2e:
a0:53:b0:26:58:63:45:e3:6e:ed:14:f0:ad:86:74:19:57:70:
2f:49:12:48:2c:6e:8f:c7:9c:c4:65:0a:2c:ac:77:45:7d:56:
27:f4:49:b8:e4:67:22:b2:a5:6b:e0:84:93:25:f3:a2:e9:e6:
94:f2:03:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:34:25 2025 by rpki-client