Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa
File: AS150263.roa (raw, json)
Hash identifier: bQNtrS41n+sDhpC6UL9rOky2S4QI+MHobWoWNurN5nE=
Subject key identifier: B0:22:61:39:14:D5:05:77:F0:AC:B6:12:E9:28:6F:0A:9A:54:BA:FD
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2F83C395CC0A2571A0F94E2368CA874ADC221AFA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa
Signing time: Fri 13 Dec 2024 07:00:00 +0000
ROA not before: Fri 13 Dec 2024 06:55:00 +0000
ROA not after: Fri 12 Dec 2025 07:00:00 +0000
asID: 150263
IP address blocks: 2001:df1:d940::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:83:c3:95:cc:0a:25:71:a0:f9:4e:23:68:ca:87:4a:dc:22:1a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 13 06:55:00 2024 GMT
Not After : Dec 12 07:00:00 2025 GMT
Subject: CN=B022613914D50577F0ACB612E9286F0A9A54BAFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c8:34:2e:3d:d9:e3:40:2b:52:de:81:cd:0c:
f2:10:00:8c:e8:f7:b3:35:32:18:5a:0a:f6:b5:61:
4d:23:e7:85:f2:e8:9b:1b:1e:44:ba:f7:cb:ee:d3:
96:0a:51:62:19:e2:6c:a1:58:d5:8a:ce:77:83:bf:
c4:65:9f:83:c8:c6:85:47:3a:f9:93:e0:c1:77:e3:
f6:2d:ad:21:a5:1b:57:a6:d6:5c:65:d8:5f:60:17:
db:c2:20:b9:13:d3:cc:5a:7c:6f:eb:ad:df:59:b4:
84:a2:67:da:18:7b:89:08:6f:f9:05:90:2f:1a:61:
19:8b:2c:d4:d0:41:bc:92:38:1e:47:9f:6f:1b:ee:
2c:31:24:0b:18:34:bb:f5:8a:8c:b3:63:4f:fa:4a:
0f:bf:52:f6:c8:65:5b:62:54:cb:46:c3:95:f5:06:
d7:81:a6:32:10:1d:11:3d:90:f9:b7:5f:9e:fd:ec:
bc:ac:a3:f6:04:f1:ff:da:f1:72:bb:33:12:1f:ac:
57:86:53:be:a6:ca:67:ff:5a:2f:55:03:ce:42:da:
44:be:f2:ef:5a:d0:bf:ed:1e:f6:eb:7b:e5:6b:90:
1b:ea:48:d2:ae:1c:01:43:e9:05:fa:e9:a6:38:4b:
4c:75:d3:70:ce:0b:35:d7:db:3b:5a:d9:10:e6:62:
6b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:22:61:39:14:D5:05:77:F0:AC:B6:12:E9:28:6F:0A:9A:54:BA:FD
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:d940::/48
Signature Algorithm: sha256WithRSAEncryption
6a:d4:f8:56:db:00:6f:55:db:8c:d9:50:36:f0:0b:64:81:11:
79:8f:64:33:88:4c:6b:5e:cf:4c:c9:e1:e7:17:1f:57:4e:76:
a1:d3:05:19:8b:16:4b:9a:ae:04:7b:bc:38:0c:a2:5e:08:89:
3d:c5:c1:50:a3:44:51:76:5b:92:75:d3:71:a6:e9:41:88:f9:
9c:f6:cd:b7:da:2b:0e:aa:3c:08:ec:d9:2a:20:75:9f:56:5c:
3c:f1:d3:87:a7:a9:8a:7c:54:74:15:a0:7f:b2:ed:ba:dd:51:
73:f7:0c:67:65:2e:88:bd:a4:b8:02:e2:17:c6:ef:b1:2a:0f:
3b:12:4f:16:94:b7:f1:44:af:2d:bc:d9:3a:d6:4b:5b:15:e4:
21:1d:08:9d:de:1b:cc:03:2c:f4:04:9d:13:3f:4b:e7:4f:26:
6d:7b:92:fa:cf:1c:a2:0b:55:4f:55:ed:9e:d6:c6:68:12:61:
85:94:0e:c9:e9:3f:05:d7:39:d7:97:d2:65:07:4c:49:3a:24:
7d:66:73:bc:2e:13:e0:9a:80:ea:97:ee:00:0a:97:c8:32:34:
b8:11:df:00:a3:3f:62:95:31:db:19:92:c5:b7:85:be:76:c5:
88:43:02:51:e3:fa:2f:49:a0:23:db:e8:37:f0:2b:f3:79:b1:
cd:d8:ab:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:12 2025 by rpki-client