Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153639.roa
File: AS153639.roa (raw, json)
Hash identifier: 2WsCsV8L/EVyUsMN4OaL7onrLv7UVXbU9db6hj2ijuc=
Subject key identifier: B0:91:6D:D3:BA:18:1C:E1:DB:57:1A:E6:47:FA:29:35:91:EE:EF:3B
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 06F4A2B6A93A5AB871085F99FF21FE9F980D3EEF
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153639.roa
Signing time: Mon 27 Apr 2026 05:00:00 +0000
ROA not before: Mon 27 Apr 2026 04:55:00 +0000
ROA not after: Mon 26 Apr 2027 05:00:00 +0000
asID: 153639
IP address blocks: 161.248.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:f4:a2:b6:a9:3a:5a:b8:71:08:5f:99:ff:21:fe:9f:98:0d:3e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Validity
Not Before: Apr 27 04:55:00 2026 GMT
Not After : Apr 26 05:00:00 2027 GMT
Subject: CN=B0916DD3BA181CE1DB571AE647FA293591EEEF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8b:6c:07:c3:c3:30:be:ee:df:3f:30:95:28:
d9:27:74:d6:9d:18:d6:12:a9:70:c2:ac:bc:16:b5:
90:0b:e1:b3:e5:72:9e:1d:ca:cd:58:aa:3f:e6:70:
2c:32:3d:3d:91:f8:b4:a4:4f:4d:32:d3:e8:29:37:
28:19:4d:4b:be:16:b5:03:19:54:38:34:0c:fb:ad:
92:ab:48:f9:79:5f:20:d4:f2:93:d2:d3:94:22:4e:
65:ce:6e:37:9a:2a:f9:ca:8d:eb:f3:7f:f9:f9:3e:
b3:d6:ed:fd:76:46:ee:60:54:63:94:3e:17:4d:eb:
23:c4:6f:76:e8:b2:9b:32:b3:65:be:d7:14:35:8d:
1c:24:e9:60:c6:06:16:bb:1a:61:f5:f6:cf:42:f7:
5e:c1:39:7d:02:c5:b5:f9:3d:98:a9:eb:62:c0:78:
40:7c:bc:8a:25:fb:05:44:2b:e2:c4:11:9b:fb:79:
50:8e:54:d6:79:1c:75:03:5c:a3:18:38:57:29:cd:
c9:78:fb:1b:42:23:64:c1:cc:ed:02:39:f2:7f:76:
af:54:66:7d:12:07:14:a5:d9:6c:2a:fa:68:1d:e8:
a6:99:d9:00:04:f1:fe:e1:ac:6b:0f:c8:85:22:76:
44:e8:3b:c7:b0:76:5d:ec:69:2e:b9:a6:0c:b6:83:
dc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:91:6D:D3:BA:18:1C:E1:DB:57:1A:E6:47:FA:29:35:91:EE:EF:3B
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.248.195.0/24
Signature Algorithm: sha256WithRSAEncryption
17:39:c7:d1:76:82:b4:e3:f3:8c:ea:98:60:e0:3b:f6:37:f9:
5d:8d:36:f9:0c:1d:90:72:8c:d6:ba:7d:50:0a:96:6f:0a:96:
38:e4:c7:4e:f7:5d:d7:35:0e:c2:f9:42:e7:57:38:3b:f4:c4:
0d:38:43:fb:19:0d:62:a0:4f:6a:f7:04:bf:b0:74:ea:81:0e:
98:57:fe:f9:87:9c:e3:3f:1b:53:fc:66:05:e5:0e:60:6e:1e:
aa:7e:10:bd:c7:2e:44:c7:e4:72:00:87:f8:8b:97:e6:b4:e0:
e4:99:c6:e9:65:f0:7c:6d:22:90:b1:05:6c:63:53:df:27:c9:
f4:fd:1c:4a:00:3e:a1:61:d4:d2:be:61:a9:9f:ef:14:fd:78:
9f:93:1a:0a:8c:21:02:51:d4:4d:1c:4a:e7:df:44:a7:5f:e9:
de:f4:37:17:f6:96:20:fd:45:ac:dc:60:e6:f8:04:f0:d1:c3:
1c:a4:8c:d7:b4:d9:da:c2:22:f6:da:b5:cb:4a:94:75:8d:0c:
6a:61:c9:f7:43:f8:55:be:fa:48:31:a7:53:fd:7d:ce:17:69:
ce:09:c3:f0:2e:63:54:92:5b:d1:d2:b9:d1:93:10:7c:41:cd:
23:12:ad:27:b2:63:03:7d:7e:06:db:7a:55:63:d3:be:eb:57:
96:b5:e0:84
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUBvSitqk6WrhxCF+Z/yH+n5gNPu8wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDQyNzA0NTUwMFoX
DTI3MDQyNjA1MDAwMFowMzExMC8GA1UEAxMoQjA5MTZERDNCQTE4MUNFMURCNTcx
QUU2NDdGQTI5MzU5MUVFRUYzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL6LbAfDwzC+7t8/MJUo2Sd01p0Y1hKpcMKsvBa1kAvhs+Vynh3KzViqP+Zw
LDI9PZH4tKRPTTLT6Ck3KBlNS74WtQMZVDg0DPutkqtI+XlfINTyk9LTlCJOZc5u
N5oq+cqN6/N/+fk+s9bt/XZG7mBUY5Q+F03rI8RvduiymzKzZb7XFDWNHCTpYMYG
FrsaYfX2z0L3XsE5fQLFtfk9mKnrYsB4QHy8iiX7BUQr4sQRm/t5UI5U1nkcdQNc
oxg4VynNyXj7G0IjZMHM7QI58n92r1RmfRIHFKXZbCr6aB3oppnZAATx/uGsaw/I
hSJ2ROg7x7B2XexpLrmmDLaD3J0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSwkW3T
uhgc4dtXGuZH+ik1ke7vOzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG
1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy
NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey
NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT
b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzYzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAKH4wzANBgkqhkiG9w0BAQsFAAOCAQEAFznH0XaCtOPzjOqYYOA7
9jf5XY02+QwdkHKM1rp9UAqWbwqWOOTHTvdd1zUOwvlC51c4O/TEDThD+xkNYqBP
avcEv7B06oEOmFf++Yec4z8bU/xmBeUOYG4eqn4QvccuRMfkcgCH+IuX5rTg5JnG
6WXwfG0ikLEFbGNT3yfJ9P0cSgA+oWHU0r5hqZ/vFP14n5MaCowhAlHUTRxK599E
p1/p3vQ3F/aWIP1FrNxg5vgE8NHDHKSM17TZ2sIi9tq1y0qUdY0MamHJ90P4Vb76
SDGnU/19zhdpzgnD8C5jVJJb0dK50ZMQfEHNIxKtJ7JjA31+Btt6VWPTvutXlrXg
hA==
-----END CERTIFICATE-----
Generated at Wed Jun 24 02:57:38 2026 by rpki-client