Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa
File: AS151505.roa (raw, json)
Hash identifier: qBuFDdqP3g+63oiQkLayx1YHoDy7FlX5AcGKy2NFFRQ=
Subject key identifier: 27:96:8F:72:42:F6:FF:37:0F:CF:79:C8:26:B7:E3:FF:65:AB:20:77
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 063B3AB12C85596AAACD31F48DF81B9A5DCAFFC6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa
Signing time: Fri 03 Jan 2025 05:00:00 +0000
ROA not before: Fri 03 Jan 2025 04:55:00 +0000
ROA not after: Fri 02 Jan 2026 05:00:00 +0000
asID: 151505
IP address blocks: 103.222.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:3b:3a:b1:2c:85:59:6a:aa:cd:31:f4:8d:f8:1b:9a:5d:ca:ff:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 3 04:55:00 2025 GMT
Not After : Jan 2 05:00:00 2026 GMT
Subject: CN=27968F7242F6FF370FCF79C826B7E3FF65AB2077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:13:85:72:f0:27:23:22:34:6d:14:db:ed:ed:
54:fb:5d:c4:56:e1:98:7e:12:dd:99:36:ba:b3:f1:
8a:09:8d:0f:f7:e6:e2:26:04:64:f3:0d:ac:5c:da:
6f:d2:e9:1e:d9:18:1e:4b:f9:eb:7e:a2:af:b5:c8:
f4:62:c7:44:76:63:b2:63:4d:cc:25:75:44:0e:65:
ec:b6:1a:76:a3:af:5d:c6:01:32:38:42:ad:2f:ab:
6e:b8:65:2d:0f:39:ee:06:35:17:78:f4:82:b5:85:
28:f4:fe:c1:e2:19:de:c7:3a:89:30:f3:12:a2:c3:
23:96:17:3d:f8:1c:63:9f:83:bc:9b:9e:e1:72:5c:
8e:ba:c0:82:ec:a2:de:47:3c:4e:ca:29:3b:8c:11:
1a:a6:71:e8:1a:a8:48:e8:07:1a:b1:0e:96:63:3d:
00:b2:1d:53:83:0d:e1:2e:6e:b9:c2:d5:f4:31:0f:
ed:d3:ae:8b:cc:88:18:b3:8d:91:93:d4:2f:2b:51:
a4:50:35:5e:2c:53:94:c8:41:38:53:15:83:70:ac:
a2:f1:c1:91:16:45:63:f4:e5:e4:6a:d7:72:1b:1d:
f9:4c:af:50:ea:6b:36:b2:0c:e6:c4:1b:b7:b0:88:
85:f0:cf:52:3f:71:35:81:bd:f2:a8:6c:60:7c:d3:
70:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:96:8F:72:42:F6:FF:37:0F:CF:79:C8:26:B7:E3:FF:65:AB:20:77
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151505.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.222.255.0/24
Signature Algorithm: sha256WithRSAEncryption
68:23:8c:50:d9:8e:3f:d0:63:84:6f:e5:ab:a1:05:e5:86:ca:
f5:61:16:c4:f9:32:64:82:eb:68:4d:d3:90:f5:b5:fb:5d:24:
fd:47:d4:36:0f:78:dd:1c:49:8d:65:05:70:73:dd:05:37:d5:
63:f9:19:b3:d8:85:20:ef:15:fb:ef:04:57:22:93:82:ce:9b:
c4:c8:22:b8:5a:6d:f3:25:32:22:8a:b4:3f:5e:3b:88:b0:53:
14:85:1b:fd:79:b1:f2:e0:8f:70:98:e3:9b:93:c4:f0:66:b2:
06:0f:c2:eb:a3:f0:45:35:8b:89:43:ee:13:04:c5:96:89:c9:
7d:c3:6b:61:ad:82:df:28:ff:ef:54:28:86:19:84:8d:21:1e:
09:50:1e:0e:ce:ad:d6:57:5c:74:60:cc:71:53:11:be:6b:ef:
89:9b:0d:f4:30:72:61:44:21:45:3f:9b:ad:59:34:c4:de:99:
d1:3e:80:81:53:fa:35:f6:a3:83:7d:d2:aa:47:c7:e4:8c:3e:
0b:dd:29:3d:b6:7e:3e:d1:f8:29:20:0c:5c:74:bd:11:a7:15:
36:c2:d0:eb:eb:38:fb:ff:4b:47:2c:c9:89:d1:57:84:f0:71:
21:28:4b:e3:eb:ee:45:59:4d:c0:ad:02:27:88:01:9d:83:46:
87:f9:c3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:46 2025 by rpki-client