Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa
File: AS150996.roa (raw, json)
Hash identifier: I96HUjWa26dyQ87A7BfHHP6nzJxL6TR3qns3N/sDyO4=
Subject key identifier: B9:F6:30:2E:B7:BB:A3:3D:52:10:63:92:7E:3F:F9:E6:C0:BB:8A:71
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 294521B6752C09FB9802A0BD1C70C0B203AE82D9
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa
Signing time: Wed 12 Feb 2025 07:00:00 +0000
ROA not before: Wed 12 Feb 2025 06:55:00 +0000
ROA not after: Wed 11 Feb 2026 07:00:00 +0000
asID: 150996
IP address blocks: 103.210.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:45:21:b6:75:2c:09:fb:98:02:a0:bd:1c:70:c0:b2:03:ae:82:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 12 06:55:00 2025 GMT
Not After : Feb 11 07:00:00 2026 GMT
Subject: CN=B9F6302EB7BBA33D521063927E3FF9E6C0BB8A71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:49:c4:3a:57:1c:6c:52:78:3b:0f:8a:20:9c:
ba:3a:2c:25:8b:05:fe:6b:45:0d:4c:56:b9:30:48:
58:44:a7:a2:96:d7:90:9e:f8:a9:d1:df:fe:e2:cb:
21:72:d9:af:ca:f7:ce:8a:60:d0:27:52:a3:59:20:
cc:95:1d:7b:e6:3a:86:8b:5d:c4:96:fb:a0:29:75:
44:8a:dd:1b:1a:c8:ee:20:a8:5c:7a:f2:05:47:6c:
61:43:a4:12:31:76:2f:5c:6e:48:64:ce:1c:d3:cc:
c7:a6:ac:b1:36:82:d8:a3:1b:df:c6:ba:13:73:f1:
69:98:3f:95:36:73:49:af:06:5c:fa:8f:69:ea:39:
5d:32:f5:30:ad:2c:a7:34:8f:b2:64:2f:41:e3:4a:
1d:89:57:6c:9f:c9:67:df:24:7d:73:5b:80:8b:45:
a3:a5:c1:9a:d5:30:02:fd:a2:10:89:9e:e0:56:05:
de:b3:03:3b:28:05:18:2d:05:be:dd:3a:ad:a3:df:
d1:0d:5b:8a:6f:2b:78:e2:5b:d2:02:ad:98:f5:48:
27:e2:8f:19:ca:d7:95:27:5b:53:b3:16:46:b3:b3:
ef:7f:c3:88:49:07:62:4f:f2:c9:04:72:e4:7f:6e:
84:09:a4:fe:bb:af:9a:02:c4:36:21:18:0b:16:8b:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F6:30:2E:B7:BB:A3:3D:52:10:63:92:7E:3F:F9:E6:C0:BB:8A:71
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.210.70.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:6b:e2:e9:5c:42:67:eb:fb:01:52:0b:89:cc:d0:d8:d5:0e:
ce:a4:b0:77:a3:57:c1:e7:10:3f:65:a3:bb:76:11:85:6c:33:
d4:1b:93:9a:e7:e3:85:54:6d:d7:f3:09:27:96:99:df:e9:ff:
a9:fb:48:da:aa:05:65:d9:bc:49:84:8a:96:37:aa:5a:9e:9a:
ed:4b:99:50:6a:09:79:0b:68:dd:c9:67:73:fd:6f:97:40:d6:
1c:62:65:41:0d:b2:c1:3f:9a:35:06:60:b8:f2:18:11:e3:ef:
0b:c8:18:90:a7:54:a8:e4:b7:86:eb:a4:93:bf:fc:45:5e:5a:
e7:f1:75:aa:9a:e3:1f:23:9a:a4:39:00:1e:d6:df:c8:83:57:
c5:27:48:ca:e8:56:99:da:3c:7b:0c:77:6d:b1:2e:32:3f:e6:
00:cc:47:22:c6:c8:6b:ff:da:82:f5:6f:a5:3e:27:3c:c9:52:
60:48:9d:3c:1c:0b:df:12:14:e5:94:dd:f7:c0:16:b9:4a:a1:
12:6c:55:82:d7:9b:e7:c7:a7:cb:13:0d:30:78:46:d6:ea:f3:
d1:c6:2a:f2:e7:85:6d:66:36:88:ec:02:34:42:91:08:7d:f9:
14:08:05:99:73:69:9a:f6:37:f6:88:00:46:ed:93:08:be:44:
af:38:d3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:38 2025 by rpki-client