Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa
File: AS150213.roa (raw, json)
Hash identifier: TbJ+60HGyx+jcl6liIWQ76JC4VuVtHLK1p4T676zfhk=
Subject key identifier: F4:5A:F6:59:FC:04:3E:7D:E0:B6:EE:EF:A4:21:6C:35:FB:0D:49:A9
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 24B274D6C37034CFAF321BE50E51E4E44E51B726
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa
Signing time: Mon 30 Sep 2024 04:00:00 +0000
ROA not before: Mon 30 Sep 2024 03:55:00 +0000
ROA not after: Mon 29 Sep 2025 04:00:00 +0000
asID: 150213
IP address blocks: 103.246.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:b2:74:d6:c3:70:34:cf:af:32:1b:e5:0e:51:e4:e4:4e:51:b7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 30 03:55:00 2024 GMT
Not After : Sep 29 04:00:00 2025 GMT
Subject: CN=F45AF659FC043E7DE0B6EEEFA4216C35FB0D49A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:44:f9:0f:73:24:88:ab:51:05:72:21:67:9f:
89:28:59:ba:51:a7:07:23:2e:a6:81:7c:41:9e:f1:
c0:88:f7:60:10:cf:b9:eb:bb:b5:4b:20:72:59:d3:
44:9a:10:b7:f3:bc:aa:bf:31:a5:ed:84:50:3e:0c:
be:69:ff:b0:06:a5:89:58:4a:78:3a:49:22:e7:7b:
2e:fa:c8:71:7a:31:d3:77:f7:17:d8:34:8c:5e:5b:
0b:73:1a:93:38:90:01:d9:af:79:21:14:cf:9a:a9:
e8:f3:4c:5d:68:22:3a:21:08:d4:60:62:89:05:63:
01:b0:a9:6c:a9:7a:b9:6b:07:19:fe:e5:97:18:1e:
9e:22:5d:f0:ed:f9:2e:28:87:5b:9d:2d:f1:c9:75:
44:53:db:54:21:69:d0:57:bf:b9:b8:2e:6b:36:91:
a6:4b:2f:fb:aa:bb:9e:2a:85:1f:18:64:25:49:4a:
82:ae:ca:4a:ce:94:a6:7b:1f:5c:1e:b6:b2:65:47:
46:f3:cf:d9:a9:8f:bc:0d:a9:17:53:19:39:e2:db:
cd:59:57:25:39:2d:89:40:30:2a:e3:35:e9:98:84:
5a:77:b2:eb:a5:cc:46:5b:4d:03:68:0f:7c:05:78:
16:d0:e9:45:59:d3:71:9f:53:be:12:4b:0c:7c:29:
75:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5A:F6:59:FC:04:3E:7D:E0:B6:EE:EF:A4:21:6C:35:FB:0D:49:A9
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150213.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.246.78.0/23
Signature Algorithm: sha256WithRSAEncryption
53:f3:31:70:28:f6:b2:2c:db:5c:36:19:76:23:6e:c9:22:9c:
aa:de:df:5d:5e:cb:01:87:c1:81:9c:5d:74:7e:69:2c:e6:36:
b3:5a:2b:a3:39:09:f1:e7:0c:28:73:95:2e:37:55:ca:12:1a:
aa:76:31:3a:86:36:3e:6c:e3:69:47:50:74:94:38:63:3e:46:
30:3d:10:51:24:6c:12:41:4d:a0:1e:94:86:87:a7:94:bd:25:
04:eb:fe:d3:ae:0f:c8:df:b1:aa:53:7e:62:2d:a2:9a:75:c7:
43:24:06:e7:c2:96:6d:32:e3:6c:5e:e8:df:23:20:c7:fc:eb:
f4:e2:46:5d:49:f0:2f:dc:c6:fb:7e:3d:5d:39:09:e3:22:65:
31:a4:ad:f1:c7:c3:97:8d:e0:aa:4c:55:c8:30:5f:41:c8:46:
7f:0f:f6:10:b7:b1:2f:a0:32:15:cb:57:b3:bd:b9:93:54:55:
20:b6:f3:78:65:33:e4:92:60:71:a5:35:07:ef:3f:ae:17:5c:
86:f5:6a:b3:b3:2d:00:0c:c1:98:75:bc:ca:1d:73:5d:65:ae:
b1:15:93:9c:10:aa:99:31:cc:1f:3e:e7:5f:94:b5:3f:0e:8a:
12:97:6b:bf:92:6a:69:6e:9d:70:cf:cc:33:44:93:d2:c5:c1:
ed:1f:6f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:12 2025 by rpki-client