Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa
File: AS150233.roa (raw, json)
Hash identifier: 0hbmXd1Z+F87j6Oa/c3JUftMTU4AVjwOg2JBXz839ic=
Subject key identifier: 0E:78:4D:46:0C:BA:F3:71:61:E4:C2:53:18:44:52:CB:7E:A8:D4:82
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5FECCD2B05C355E233893CAB105EF8B2B569A2CD
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa
Signing time: Mon 30 Sep 2024 03:00:00 +0000
ROA not before: Mon 30 Sep 2024 02:55:00 +0000
ROA not after: Mon 29 Sep 2025 03:00:00 +0000
asID: 150233
IP address blocks: 103.71.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:ec:cd:2b:05:c3:55:e2:33:89:3c:ab:10:5e:f8:b2:b5:69:a2:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 30 02:55:00 2024 GMT
Not After : Sep 29 03:00:00 2025 GMT
Subject: CN=0E784D460CBAF37161E4C253184452CB7EA8D482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:eb:5a:c2:f7:2a:26:1e:5d:b7:b4:96:68:e7:
4d:a3:e3:7a:50:31:31:8a:17:5a:43:bb:15:a1:42:
fe:37:cb:9f:ed:0f:ee:be:a8:4f:64:40:8a:e8:6f:
82:9d:12:87:4e:a2:91:0e:72:c4:2a:4e:60:14:09:
80:24:06:df:60:5c:20:b2:cb:9d:62:11:9b:98:7b:
6a:ce:09:83:d5:75:88:43:83:ab:0a:24:af:0d:e6:
aa:ae:d7:25:1f:c6:00:94:8a:ff:d9:06:5d:03:9c:
21:45:e0:df:d3:4e:72:6e:09:74:be:2f:63:b7:13:
30:cf:37:3b:a5:36:81:fd:00:4f:1f:ae:56:97:fb:
33:c5:78:2b:97:21:b0:41:dc:a2:5c:70:d7:26:f8:
7f:19:3a:dd:d0:ab:4e:2c:7e:7b:5f:98:17:6c:4f:
90:b5:ef:bc:5a:72:40:61:93:cc:ae:0d:64:b4:67:
a8:35:8b:b8:fd:11:7d:5b:1f:3d:16:b5:75:bf:7f:
9e:9d:cf:51:8f:70:b6:0d:02:e6:65:dc:67:c1:31:
71:9d:c2:2f:66:02:8e:0b:5e:1d:50:95:b6:a8:c8:
d6:78:d4:fb:c4:2d:21:49:96:89:e0:74:0f:23:92:
f5:43:24:fa:1a:bf:08:98:41:e9:09:8c:14:b4:71:
c9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:78:4D:46:0C:BA:F3:71:61:E4:C2:53:18:44:52:CB:7E:A8:D4:82
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.71.25.0/24
Signature Algorithm: sha256WithRSAEncryption
68:14:4c:e6:d1:d6:9c:22:7c:ad:1e:30:9f:c4:a0:20:4f:2d:
b4:fb:4e:fb:c7:ec:37:1c:9f:4c:57:58:d8:88:13:db:2f:13:
7b:6d:77:2c:34:dd:0e:9b:d2:aa:04:97:a0:38:b8:c2:f9:d9:
61:dd:09:d7:7f:3b:7c:9f:2b:d6:57:64:80:24:87:06:5d:30:
19:6c:ed:1e:8f:23:80:5d:79:18:5a:21:59:be:bf:df:ac:7c:
1f:48:ed:a4:44:d1:b0:60:8b:37:47:a4:b5:da:9e:55:35:98:
44:e1:2b:3d:dc:64:ae:74:ac:67:23:d4:58:8c:98:d0:d8:83:
a1:20:f0:b9:89:0a:e0:5c:e4:fc:8d:03:9f:7b:77:23:b7:c0:
d0:2e:0f:1d:ef:df:5a:33:06:2f:33:d9:a7:5e:b3:7c:b7:69:
8c:b7:6d:ad:16:a7:f7:cd:a7:ec:ee:cf:fc:87:a7:ab:01:99:
11:a0:57:b7:e3:41:d6:c5:22:c9:4e:db:4e:69:c0:73:13:97:
97:d7:ef:91:f5:48:db:7f:d3:17:7a:8e:f1:45:66:ea:77:da:
56:13:33:20:9b:e8:e6:5b:a2:d4:c7:82:44:4c:3c:af:0c:8e:
0d:8a:ed:b9:f1:10:28:4d:78:bc:d9:02:05:21:4a:e0:46:0f:
94:a8:11:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:42 2025 by rpki-client