Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa
File: AS150968.roa (raw, json)
Hash identifier: W8Tbogh8QakMQiJnoDUB6eQkpYibrnaAAR27Azf7pmM=
Subject key identifier: B4:AB:05:F9:1D:08:0A:ED:06:EB:F2:A4:FC:34:84:35:95:E2:41:1A
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1E98A97568C232BC0355BD321E11B5658B5B2367
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa
Signing time: Mon 12 Aug 2024 04:00:00 +0000
ROA not before: Mon 12 Aug 2024 03:55:00 +0000
ROA not after: Mon 11 Aug 2025 04:00:00 +0000
asID: 150968
IP address blocks: 103.178.14.0/23 maxlen: 24
2001:df2:e340::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:98:a9:75:68:c2:32:bc:03:55:bd:32:1e:11:b5:65:8b:5b:23:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 12 03:55:00 2024 GMT
Not After : Aug 11 04:00:00 2025 GMT
Subject: CN=B4AB05F91D080AED06EBF2A4FC34843595E2411A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ac:4d:d1:6f:bf:6f:1d:97:35:f8:00:f7:f1:
36:a5:5f:56:b7:5e:5c:e0:9d:e7:9f:13:28:36:89:
7a:ad:e7:b3:c8:79:e5:4b:f6:ba:fd:b9:75:2b:b4:
97:a1:79:21:23:9a:58:b5:5b:17:80:38:2d:a1:6e:
1d:00:7d:e5:3e:e5:b1:74:82:7c:10:f7:0b:18:e4:
0b:de:34:77:5f:6b:65:55:c1:ac:2d:be:bf:3d:70:
cd:a0:57:24:60:ac:b9:3c:ae:66:d2:10:eb:55:48:
54:ea:3f:17:85:17:b2:e8:e4:c6:c2:33:28:74:23:
02:ad:d8:47:df:70:2e:ab:d6:72:34:cd:86:ee:93:
63:0c:39:90:a6:47:7d:85:f4:ce:66:b0:a7:6e:34:
0e:99:ec:41:a3:ff:c6:2a:ce:67:77:c7:bf:9d:b8:
f6:f2:c3:6c:1e:e0:36:99:0f:96:80:30:b9:f2:d6:
4e:9e:11:12:6b:db:ea:00:10:ea:7d:42:8f:59:a0:
66:14:cc:07:12:4f:04:fd:93:d0:f4:b1:af:e3:a9:
46:58:c9:ac:97:7e:ca:67:5f:86:1d:c5:f5:67:04:
ab:d6:b6:9c:6d:dc:21:92:04:52:4b:9c:c1:b9:05:
77:34:40:7c:77:bd:8f:43:31:d1:bb:ec:64:c9:49:
9d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AB:05:F9:1D:08:0A:ED:06:EB:F2:A4:FC:34:84:35:95:E2:41:1A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150968.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.178.14.0/23
IPv6:
2001:df2:e340::/48
Signature Algorithm: sha256WithRSAEncryption
15:39:76:4b:9a:46:d3:02:f6:5b:95:1d:48:7f:c2:8d:c1:51:
d8:57:5b:53:79:2b:03:06:92:c8:70:b3:f6:af:22:2d:11:34:
2f:b9:f4:6e:89:bb:30:c3:5e:a8:c4:23:35:1e:7d:94:a8:51:
ee:3c:b3:10:29:dd:8d:03:4a:b0:47:1a:c4:d1:4e:88:8a:d2:
ee:c1:03:da:cb:a0:c5:10:1f:18:68:91:f8:be:f5:72:fc:9b:
b6:43:45:86:b6:f2:9f:08:fb:38:a6:17:13:73:ca:e3:49:a9:
c5:28:d4:57:fd:e9:75:e6:2d:7c:ff:6c:ef:0d:1f:1f:43:87:
af:db:f3:68:f8:03:93:26:6e:53:81:b0:c6:54:50:ce:6f:bc:
f4:c8:15:85:f4:d4:0c:db:57:65:7c:31:39:e2:61:6f:d4:25:
76:52:27:94:b6:f4:41:01:bb:d6:62:fa:b9:64:ee:fc:28:c5:
4f:11:8b:ea:67:a7:e5:0a:b2:97:64:4e:d9:53:e2:82:43:c0:
00:fc:60:42:7f:c2:00:76:3d:f9:a9:85:92:f3:73:0f:7e:f9:
a3:49:63:2b:8b:8f:23:7d:c1:24:23:cc:6c:60:e0:d1:f7:cc:
7b:0e:b4:4a:e5:e1:88:21:b5:f8:cd:6f:50:14:67:03:ac:a6:
22:9f:e7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:38:25 2025 by rpki-client