Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa
File: AS150259.roa (raw, json)
Hash identifier: kOlxrAyT8xdxO0CfJRlydjIkOf4qogY4tYw2k4Da5m0=
Subject key identifier: 8E:F0:06:D1:B8:10:34:ED:96:CF:7F:C2:27:06:B4:30:FC:4A:E7:1C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2EFA154F3392862AB7D799EEF02375B0BA494A8C
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa
Signing time: Wed 11 Dec 2024 08:00:00 +0000
ROA not before: Wed 11 Dec 2024 07:55:00 +0000
ROA not after: Wed 10 Dec 2025 08:00:00 +0000
asID: 150259
IP address blocks: 103.127.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:fa:15:4f:33:92:86:2a:b7:d7:99:ee:f0:23:75:b0:ba:49:4a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 11 07:55:00 2024 GMT
Not After : Dec 10 08:00:00 2025 GMT
Subject: CN=8EF006D1B81034ED96CF7FC22706B430FC4AE71C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c2:02:b0:a6:58:fb:1e:99:2f:2f:2d:fc:3b:
b1:41:6f:8b:7f:8c:19:8a:80:3b:79:40:42:e2:60:
5d:11:32:ec:ca:c1:fe:b2:5b:fe:57:46:c0:a5:2e:
37:5a:f6:53:5d:62:51:40:8f:a1:ff:78:0a:17:42:
22:93:d2:48:15:7e:45:93:c1:d7:f9:5d:fa:9c:e9:
c1:d9:0a:67:62:9a:e7:ec:e8:28:83:a3:5d:d5:4f:
1e:be:da:45:43:00:68:81:51:a7:8f:8c:5b:f3:82:
a2:13:f4:37:d0:3c:47:66:a8:fd:40:28:6b:86:15:
17:da:2f:94:3a:8b:e3:9a:58:a2:5e:55:76:c7:88:
a1:74:99:ab:da:6e:01:b0:4c:5e:94:61:f2:98:97:
3b:da:4d:f5:55:11:bd:e1:1c:24:01:53:b1:70:e4:
4c:61:1f:22:00:76:ab:02:99:e9:db:f7:c7:cc:95:
f1:2d:9b:70:53:7a:72:4f:fa:ec:ad:76:20:53:9e:
34:ee:5e:7a:9b:62:c4:2f:80:f9:23:92:48:49:96:
76:bb:0c:2e:12:3b:e7:d4:09:44:9b:db:b9:2b:68:
ef:38:6a:db:f8:81:b7:93:89:88:ed:02:2a:36:5d:
45:16:71:00:1b:87:82:70:dd:f1:b2:7d:37:73:62:
af:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F0:06:D1:B8:10:34:ED:96:CF:7F:C2:27:06:B4:30:FC:4A:E7:1C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.127.220.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d3:da:f1:0e:a2:7e:60:29:39:da:b7:dc:19:4b:d4:b5:69:
dc:d6:a9:83:0e:77:53:b3:dd:a7:4b:02:c7:a0:3b:1d:9d:28:
01:dc:d6:91:db:a7:b6:cd:74:f6:7c:ec:c3:95:b9:ee:d4:20:
e0:00:c7:4f:03:95:09:f0:38:65:48:3f:3e:60:29:8d:4a:52:
ca:20:3d:aa:f8:6a:bb:88:ba:1b:28:a2:46:6e:6b:93:64:7b:
ea:e4:d6:18:1e:9e:11:26:a5:05:06:45:8b:b1:cd:ce:02:ef:
c5:10:15:d1:cc:eb:49:12:0e:c0:da:8b:69:0d:19:c9:b7:91:
66:d0:c8:8d:b1:7d:e8:41:34:a9:f6:7d:32:47:74:cd:8a:1c:
92:ab:86:f0:99:22:5c:a8:e1:2f:87:9d:98:c5:e8:76:a4:13:
f8:30:d1:b5:c9:48:94:53:d0:aa:aa:ec:73:ed:5e:c8:37:f6:
1a:70:0c:77:d2:34:bd:19:66:a7:7f:2d:fc:4c:fe:cb:ab:df:
87:b9:cd:1d:ac:84:bb:85:57:81:cf:e5:a8:82:48:ae:35:8e:
6d:df:a2:1c:db:4f:bf:a2:45:92:23:f8:45:23:2a:41:f2:68:
9e:90:cf:63:cb:16:cc:7f:d4:f4:89:c0:6a:56:a7:d7:31:32:
43:ab:35:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:04 2025 by rpki-client