Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa
File: AS150553.roa (raw, json)
Hash identifier: v9FKRb7IxxJckaa6qv21AiJli6b/mGlll2hRyKyBxvU=
Subject key identifier: 9D:9E:B5:A2:D6:6D:11:43:5F:5E:DB:0E:DA:65:E0:3B:A2:FD:A6:6F
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5FBD38737E3CF12504AC86C9CCA85861287F316D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa
Signing time: Thu 26 Dec 2024 03:00:00 +0000
ROA not before: Thu 26 Dec 2024 02:55:00 +0000
ROA not after: Thu 25 Dec 2025 03:00:00 +0000
asID: 150553
IP address blocks: 103.81.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:bd:38:73:7e:3c:f1:25:04:ac:86:c9:cc:a8:58:61:28:7f:31:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 26 02:55:00 2024 GMT
Not After : Dec 25 03:00:00 2025 GMT
Subject: CN=9D9EB5A2D66D11435F5EDB0EDA65E03BA2FDA66F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:98:1d:6a:32:37:43:ae:d5:f6:21:8c:04:24:
dd:fd:1a:c9:88:3e:2f:41:52:89:c5:38:ac:d4:e2:
30:7e:60:e5:d9:da:d7:2f:b1:ba:22:c0:d7:b6:fe:
d9:b3:01:10:66:47:7b:76:d9:e7:6d:54:39:97:0b:
74:40:46:a2:a2:bd:25:2b:d2:75:48:a5:15:a3:16:
89:9b:28:82:ab:d8:4f:58:f2:6f:69:65:fc:b6:08:
b5:53:81:f1:67:be:41:7d:87:df:2b:07:39:a3:30:
db:cf:cc:11:97:f3:70:c6:85:43:cd:e5:f6:b8:b4:
9a:69:d6:31:a1:62:89:fc:fe:07:17:0a:b7:c8:4f:
f0:61:3f:0a:0b:03:e2:0a:2d:04:06:ce:26:ee:ae:
2e:ac:8e:be:b7:7e:c7:5d:5b:28:df:9d:17:5d:af:
81:b5:6a:6f:22:75:fa:cd:8c:3d:75:e3:d2:8e:44:
be:bd:bf:37:fa:29:30:50:44:53:90:e5:1b:4c:4d:
9f:b8:3d:9c:f7:de:67:f8:dd:c0:33:2a:79:b2:17:
ab:05:ea:17:52:2e:90:dc:55:60:9e:02:e5:b0:84:
7d:91:c6:1f:81:cb:85:4a:6c:5a:5b:cb:b7:3d:e9:
85:f6:63:29:18:e5:0f:2d:31:eb:9e:11:7d:ba:cb:
ff:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9E:B5:A2:D6:6D:11:43:5F:5E:DB:0E:DA:65:E0:3B:A2:FD:A6:6F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.81.254.0/23
Signature Algorithm: sha256WithRSAEncryption
11:67:81:22:7c:ef:b0:8d:68:f1:5d:91:e6:81:44:a3:f8:1b:
35:6c:42:f9:a8:8c:85:19:44:f1:fc:27:5d:dd:ad:d7:be:f0:
2e:eb:de:62:44:75:11:c3:8f:d8:5b:fc:f7:59:fb:dc:d1:ca:
83:7d:cb:88:ab:3d:32:d6:b8:01:49:ca:93:91:95:7c:22:ec:
b1:61:fb:42:bf:54:1b:ac:6c:53:84:06:e3:1c:53:80:78:a0:
f3:60:c4:bb:59:b3:3a:60:e2:98:a4:c4:76:7c:07:93:1b:64:
55:f0:cd:a7:01:a3:2d:d6:af:a5:41:d6:b9:72:18:7f:b9:af:
a7:e0:c6:6a:4d:6d:f8:02:8c:0d:8f:4e:87:b0:75:6b:7c:e9:
3a:aa:bd:34:08:a9:25:9e:27:19:c9:d3:66:53:36:b3:1b:f5:
b4:bd:5e:d8:e4:cf:4c:a6:b4:00:fa:8a:c6:00:78:7e:f5:cf:
e0:6d:36:44:e4:a9:5a:1a:eb:5c:ce:d8:fa:c2:b0:e2:08:cc:
1e:50:c4:73:d1:ed:7c:d2:e7:b3:50:68:3f:aa:89:9e:0a:a6:
ff:f0:7a:dc:15:53:bd:fe:70:9d:89:54:ce:1c:6e:ae:96:86:
5e:50:15:de:d1:a9:00:9f:f4:c8:47:0c:c4:c4:67:63:76:02:
b3:40:a0:39
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUX704c3488SUErIbJzKhYYSh/MW0wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyNjAyNTUwMFoX
DTI1MTIyNTAzMDAwMFowMzExMC8GA1UEAxMoOUQ5RUI1QTJENjZEMTE0MzVGNUVE
QjBFREE2NUUwM0JBMkZEQTY2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMCYHWoyN0Ou1fYhjAQk3f0ayYg+L0FSicU4rNTiMH5g5dna1y+xuiLA17b+
2bMBEGZHe3bZ521UOZcLdEBGoqK9JSvSdUilFaMWiZsogqvYT1jyb2ll/LYItVOB
8We+QX2H3ysHOaMw28/MEZfzcMaFQ83l9ri0mmnWMaFiifz+BxcKt8hP8GE/CgsD
4gotBAbOJu6uLqyOvrd+x11bKN+dF12vgbVqbyJ1+s2MPXXj0o5Evr2/N/opMFBE
U5DlG0xNn7g9nPfeZ/jdwDMqebIXqwXqF1IukNxVYJ4C5bCEfZHGH4HLhUpsWlvL
tz3phfZjKRjlDy0x654RfbrL/xUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdnrWi
1m0RQ19e2w7aZeA7ov2mbzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU1My5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWdR/jANBgkqhkiG9w0BAQsFAAOCAQEAEWeBInzvsI1o8V2R5oFE
o/gbNWxC+aiMhRlE8fwnXd2t177wLuveYkR1EcOP2Fv891n73NHKg33LiKs9Mta4
AUnKk5GVfCLssWH7Qr9UG6xsU4QG4xxTgHig82DEu1mzOmDimKTEdnwHkxtkVfDN
pwGjLdavpUHWuXIYf7mvp+DGak1t+AKMDY9Oh7B1a3zpOqq9NAipJZ4nGcnTZlM2
sxv1tL1e2OTPTKa0APqKxgB4fvXP4G02ROSpWhrrXM7Y+sKw4gjMHlDEc9HtfNLn
s1BoP6qJngqm//B63BVTvf5wnYlUzhxurpaGXlAV3tGpAJ/0yEcMxMRnY3YCs0Cg
OQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:22 2025 by rpki-client