Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa
File: AS151526.roa (raw, json)
Hash identifier: K21C8zCl0sOOS1CVFXYDCBveabmm5OQD2EBHjO6RFoA=
Subject key identifier: 9B:D4:77:6B:61:86:7E:7D:05:6F:6D:4F:81:3F:83:39:03:C8:7F:14
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2725DFBAAD94F5F769DF040A67E95D3D5C62354E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa
Signing time: Thu 15 Aug 2024 08:00:02 +0000
ROA not before: Thu 15 Aug 2024 07:55:02 +0000
ROA not after: Thu 14 Aug 2025 08:00:02 +0000
asID: 151526
IP address blocks: 103.249.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:25:df:ba:ad:94:f5:f7:69:df:04:0a:67:e9:5d:3d:5c:62:35:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 15 07:55:02 2024 GMT
Not After : Aug 14 08:00:02 2025 GMT
Subject: CN=9BD4776B61867E7D056F6D4F813F833903C87F14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:2e:c7:1a:9a:de:3a:41:58:f6:45:98:ff:
4b:3c:47:c5:19:bd:8a:ce:ad:41:01:4f:28:9a:74:
0f:1f:33:9a:f4:fe:ad:4e:c2:d9:e5:75:03:ce:97:
a9:df:82:fb:b6:d7:4b:bf:fa:d0:1a:c9:8e:97:7e:
68:6d:32:a4:db:2a:cf:5e:20:07:3d:de:ca:d8:fb:
2b:8d:f9:73:1e:90:91:fb:9e:77:10:7c:59:d1:ee:
9a:33:54:e9:6f:f4:81:5c:67:9f:7b:38:6d:0a:11:
dd:30:56:3d:bd:6c:91:71:f7:ce:57:2f:9c:62:e8:
c1:71:a7:64:08:1a:18:e1:0a:bc:d9:84:8d:93:48:
2b:13:7f:d1:d8:2e:9d:b8:7b:63:f6:ef:c1:9d:f3:
18:5f:ce:60:57:38:42:e4:ca:f2:14:06:7d:7c:7a:
65:77:e8:2d:16:1c:a9:ca:97:5b:30:20:62:07:9b:
a6:a7:75:ef:25:68:b7:5d:b5:46:5a:5e:c9:49:53:
73:9f:58:84:42:6a:05:d1:9e:ae:ac:6f:c1:64:96:
14:76:67:52:c8:56:4b:3e:81:53:e2:b4:41:02:42:
b0:6c:ac:fe:ff:79:d2:07:4b:54:e2:2b:ac:67:2e:
03:ef:79:09:d2:e8:ad:ba:c9:c5:08:98:b1:b4:f5:
98:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D4:77:6B:61:86:7E:7D:05:6F:6D:4F:81:3F:83:39:03:C8:7F:14
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151526.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.249.226.0/24
Signature Algorithm: sha256WithRSAEncryption
60:1a:0c:19:8f:19:ff:45:71:36:4c:86:9a:bf:b8:07:74:07:
69:66:94:ca:fb:74:dd:a4:d8:1f:84:4b:e8:b1:31:33:65:ff:
e1:82:78:f3:af:8c:8d:f2:a1:da:ed:1f:0c:5a:1c:e4:14:45:
c6:29:b4:6c:78:67:ed:db:a7:b1:f1:40:35:5f:36:8d:1c:c4:
c2:ee:42:fb:0f:c7:c9:44:80:15:ef:42:2e:01:8b:1b:23:a7:
a7:84:76:ca:2b:18:65:8b:41:f7:7b:43:46:0b:c1:cf:09:f7:
e6:3e:48:b1:c6:56:07:c9:a0:8a:70:52:02:ae:29:88:ad:d8:
30:8c:db:97:41:81:a1:f1:6a:3e:4b:89:6e:f4:bb:3e:03:bb:
91:f8:33:f4:b8:18:8e:70:86:4a:7f:26:74:71:bf:b3:9d:1f:
82:cb:18:e5:2c:03:39:ad:ed:6a:0a:16:00:29:61:62:da:89:
0d:e7:83:e3:d7:ab:7d:97:98:d3:b0:ae:21:54:40:7b:25:61:
75:fe:dd:42:59:56:2e:24:a2:92:cc:f9:4c:be:56:f5:bb:28:
a2:36:09:a5:de:51:f8:04:d5:2f:54:bc:83:47:c6:97:da:ec:
da:e1:66:e5:4e:80:9f:2d:5b:90:92:75:df:63:d6:c0:d5:f5:
50:40:4a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:31 2025 by rpki-client