Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa
File: AS150990.roa (raw, json)
Hash identifier: HjXiWxHLgNSfPe5RoNSp2Wiy6ytyY/e9180IYOsl6cI=
Subject key identifier: 10:02:DE:69:D9:A1:AB:27:A7:AC:2B:58:D9:65:C1:69:6B:D7:4A:19
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0909A13BF05328C3A109AC99772084BF8F26F64D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa
Signing time: Wed 12 Feb 2025 05:00:00 +0000
ROA not before: Wed 12 Feb 2025 04:55:00 +0000
ROA not after: Wed 11 Feb 2026 05:00:00 +0000
asID: 150990
IP address blocks: 103.196.178.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:09:a1:3b:f0:53:28:c3:a1:09:ac:99:77:20:84:bf:8f:26:f6:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 12 04:55:00 2025 GMT
Not After : Feb 11 05:00:00 2026 GMT
Subject: CN=1002DE69D9A1AB27A7AC2B58D965C1696BD74A19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:c2:eb:17:81:55:f5:f5:24:51:6c:60:2e:
c9:72:2b:a1:10:02:49:6f:eb:f0:71:da:27:96:7b:
94:f5:01:9f:19:8e:8c:e9:3c:90:ac:41:18:ee:e4:
e9:23:6a:ca:ab:b7:72:e9:35:7c:13:6c:ae:a6:53:
9d:07:10:29:2f:f7:a4:b3:e5:f3:3c:81:a6:ec:f7:
b9:dd:b8:96:7d:a8:b5:99:69:41:b9:4a:46:a1:9b:
10:f4:14:ec:0a:4a:e1:69:58:dd:20:67:f5:8b:8c:
10:65:d0:b2:15:78:9d:5d:a6:b9:54:84:b3:04:a5:
a1:93:46:80:eb:bc:90:05:3d:7d:e3:35:be:ec:6a:
22:21:21:dd:37:25:3d:12:76:30:6b:3b:d4:d5:66:
4a:bd:ae:51:59:8d:a8:27:49:8f:06:84:1f:fd:4a:
b8:a9:af:ec:c3:0b:04:24:ed:9e:81:24:77:1a:66:
45:33:8f:cc:04:b6:10:90:6e:84:17:dc:d1:30:a7:
42:9b:d3:ea:35:e5:25:6f:c9:03:36:e1:79:cd:df:
eb:2a:19:8f:06:db:e0:17:4f:8d:c2:cb:00:e1:c5:
25:4a:4d:70:48:fe:66:59:4d:aa:24:0a:34:a4:56:
3b:51:0d:73:fd:2c:bd:f5:b6:35:6b:c3:0e:37:f7:
bc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:02:DE:69:D9:A1:AB:27:A7:AC:2B:58:D9:65:C1:69:6B:D7:4A:19
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.196.178.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:a0:87:95:8d:8b:7b:67:a3:bc:79:1b:1d:f5:6b:c9:68:1f:
0d:f3:f3:a1:f2:46:84:c6:66:c2:77:3e:a6:4e:61:06:91:3d:
d5:80:b4:57:88:37:85:6c:8c:02:d1:d7:99:9d:8a:43:62:7b:
0d:1a:6c:b0:10:06:8b:6d:ad:32:a9:98:89:d7:f8:e1:8c:94:
7b:aa:05:8f:76:b8:4a:cb:ea:90:dd:70:70:0e:c0:60:5b:01:
af:99:f9:95:7f:c9:07:05:f7:a2:f1:8e:65:92:e0:26:7b:11:
ca:0f:30:d9:ce:77:fe:ba:f8:6e:37:89:c3:33:94:66:52:5f:
25:dd:b7:a5:32:f8:d9:33:74:01:61:06:a9:b2:b1:4b:60:ff:
e4:9f:ce:28:e0:2a:ec:b0:42:62:25:46:77:a9:2b:4c:46:b4:
e9:69:56:a3:ca:07:d9:e9:57:7f:0f:3d:e3:0b:da:a7:34:e6:
35:7f:a4:de:0d:b9:8b:4f:99:fe:36:2b:d4:a7:53:1a:5c:94:
df:39:7e:8f:9c:db:07:60:b9:a5:8a:bb:dc:a7:a1:e7:7f:0e:
99:97:45:45:04:a9:8e:a1:e8:a6:35:77:94:cb:02:6c:67:ba:
d9:20:65:f5:e7:77:a5:58:b8:af:47:7a:cd:6f:29:a0:f7:d2:
0d:2a:d7:60
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUCQmhO/BTKMOhCayZdyCEv48m9k0wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxMjA0NTUwMFoX
DTI2MDIxMTA1MDAwMFowMzExMC8GA1UEAxMoMTAwMkRFNjlEOUExQUIyN0E3QUMy
QjU4RDk2NUMxNjk2QkQ3NEExOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKQ+wusXgVX19SRRbGAuyXIroRACSW/r8HHaJ5Z7lPUBnxmOjOk8kKxBGO7k
6SNqyqu3cuk1fBNsrqZTnQcQKS/3pLPl8zyBpuz3ud24ln2otZlpQblKRqGbEPQU
7ApK4WlY3SBn9YuMEGXQshV4nV2muVSEswSloZNGgOu8kAU9feM1vuxqIiEh3Tcl
PRJ2MGs71NVmSr2uUVmNqCdJjwaEH/1KuKmv7MMLBCTtnoEkdxpmRTOPzAS2EJBu
hBfc0TCnQpvT6jXlJW/JAzbhec3f6yoZjwbb4BdPjcLLAOHFJUpNcEj+ZllNqiQK
NKRWO1ENc/0svfW2NWvDDjf3vDcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQQAt5p
2aGrJ6esK1jZZcFpa9dKGTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5MC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWfEsjANBgkqhkiG9w0BAQsFAAOCAQEAO6CHlY2Le2ejvHkbHfVr
yWgfDfPzofJGhMZmwnc+pk5hBpE91YC0V4g3hWyMAtHXmZ2KQ2J7DRpssBAGi22t
MqmYidf44YyUe6oFj3a4SsvqkN1wcA7AYFsBr5n5lX/JBwX3ovGOZZLgJnsRyg8w
2c53/rr4bjeJwzOUZlJfJd23pTL42TN0AWEGqbKxS2D/5J/OKOAq7LBCYiVGd6kr
TEa06WlWo8oH2elXfw894wvapzTmNX+k3g25i0+Z/jYr1KdTGlyU3zl+j5zbB2C5
pYq73Keh538OmZdFRQSpjqHopjV3lMsCbGe62SBl9ed3pVi4r0d6zW8poPfSDSrX
YA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:35 2025 by rpki-client