Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa
File: AS151555.roa (raw, json)
Hash identifier: g1UNfWtIrcm0qgiJZ3HQG/0TgWOpaMK2E5sAS+9CJ88=
Subject key identifier: 1D:2C:CD:53:30:5A:AB:25:EA:7F:B8:BE:07:5B:A9:99:D9:82:DD:2E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 33C09FD676245B5900D9A2BF33DFC4D7030F12AC
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa
Signing time: Thu 05 Dec 2024 05:00:01 +0000
ROA not before: Thu 05 Dec 2024 04:55:01 +0000
ROA not after: Thu 04 Dec 2025 05:00:01 +0000
asID: 151555
IP address blocks: 103.250.130.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:c0:9f:d6:76:24:5b:59:00:d9:a2:bf:33:df:c4:d7:03:0f:12:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 5 04:55:01 2024 GMT
Not After : Dec 4 05:00:01 2025 GMT
Subject: CN=1D2CCD53305AAB25EA7FB8BE075BA999D982DD2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:30:f5:ae:97:30:2e:b5:87:41:85:2c:ac:3c:
34:c2:d1:6a:94:78:dc:ea:03:bf:c5:e1:b4:45:44:
f9:89:02:44:91:95:f1:fa:27:88:fc:0e:28:b7:da:
5e:56:7e:76:99:ca:43:4d:68:36:44:59:92:8e:cd:
dc:e7:14:07:19:ff:28:51:2c:e6:14:f4:9c:f0:81:
07:2a:52:b3:16:43:5d:a7:dc:c7:36:ee:e0:55:78:
4b:52:73:d1:13:fc:0b:a7:55:d7:cd:9d:44:f0:b7:
3d:ef:d8:f3:ec:0a:ec:80:74:da:fe:45:14:e9:dc:
32:bf:e1:df:8f:f5:ba:aa:22:7f:10:c8:53:8e:a2:
50:b2:bb:6d:57:9c:cb:2e:a1:2e:e7:ad:47:89:3c:
5a:66:70:93:27:79:63:a0:fa:5c:18:8b:3e:ea:46:
d5:08:84:6f:6f:33:ae:85:04:68:d9:1c:71:d3:7e:
14:b5:ed:6f:af:7a:85:0a:70:d4:14:a5:4c:21:e0:
3b:14:aa:98:cb:fe:eb:8a:22:c9:55:1c:09:dc:90:
14:13:8d:b5:ec:63:6e:49:b7:5b:81:09:6f:e1:8c:
47:01:57:bd:ed:b6:65:8c:aa:69:73:ba:de:19:ca:
1f:7c:a9:69:b1:63:42:c4:fe:97:a6:34:4c:24:01:
0b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2C:CD:53:30:5A:AB:25:EA:7F:B8:BE:07:5B:A9:99:D9:82:DD:2E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151555.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.250.130.0/23
Signature Algorithm: sha256WithRSAEncryption
60:ce:23:fc:ac:86:f4:54:94:4e:70:9c:ab:da:b2:e0:88:03:
35:0e:b6:1e:b3:7e:f0:21:b1:60:66:5b:ba:bf:4d:93:b4:9f:
97:3b:94:7c:7f:f9:59:b0:8a:74:44:dc:9e:78:5e:4d:02:dd:
fa:ad:fe:60:0c:e3:4a:46:0a:45:5f:e0:48:d6:3f:2c:1c:dd:
5c:98:a3:c5:a9:1a:0f:27:21:55:dc:6f:6e:ba:d2:cd:42:d1:
bb:8f:40:9e:4a:eb:8a:bf:fe:62:bf:51:31:58:15:67:a3:a4:
e7:3b:ad:03:4b:ad:ee:a3:fb:a9:ff:6b:5d:bc:35:63:f2:47:
23:72:c6:38:72:4c:3a:4c:fd:b8:e0:1d:57:03:fc:15:26:bb:
2a:a1:c9:4d:dc:6f:4f:ea:b0:ef:47:b2:0f:73:b9:0c:7b:3b:
a0:55:6f:45:c1:02:74:12:b1:05:9c:93:b1:1f:ed:50:be:b8:
0e:9b:e7:a2:3f:cf:45:67:80:9f:92:ed:ee:6f:c9:e9:c1:f3:
87:37:55:c9:96:47:0b:d2:39:ca:50:ab:2d:c9:98:fa:cf:cc:
70:02:88:ea:00:5d:e5:58:6d:33:31:55:11:71:0f:69:79:02:
73:a2:a9:4f:87:de:45:a4:66:44:60:45:68:da:9c:fd:79:0b:
3e:52:50:0b
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUM8Cf1nYkW1kA2aK/M9/E1wMPEqwwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTA0NTUwMVoX
DTI1MTIwNDA1MDAwMVowMzExMC8GA1UEAxMoMUQyQ0NENTMzMDVBQUIyNUVBN0ZC
OEJFMDc1QkE5OTlEOTgyREQyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMcw9a6XMC61h0GFLKw8NMLRapR43OoDv8XhtEVE+YkCRJGV8foniPwOKLfa
XlZ+dpnKQ01oNkRZko7N3OcUBxn/KFEs5hT0nPCBBypSsxZDXafcxzbu4FV4S1Jz
0RP8C6dV182dRPC3Pe/Y8+wK7IB02v5FFOncMr/h34/1uqoifxDIU46iULK7bVec
yy6hLuetR4k8WmZwkyd5Y6D6XBiLPupG1QiEb28zroUEaNkccdN+FLXtb696hQpw
1BSlTCHgOxSqmMv+64oiyVUcCdyQFBONtexjbkm3W4EJb+GMRwFXve22ZYyqaXO6
3hnKH3ypabFjQsT+l6Y0TCQBC2UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQdLM1T
MFqrJep/uL4HW6mZ2YLdLjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1NS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWf6gjANBgkqhkiG9w0BAQsFAAOCAQEAYM4j/KyG9FSUTnCcq9qy
4IgDNQ62HrN+8CGxYGZbur9Nk7SflzuUfH/5WbCKdETcnnheTQLd+q3+YAzjSkYK
RV/gSNY/LBzdXJijxakaDychVdxvbrrSzULRu49Ankrrir/+Yr9RMVgVZ6Ok5zut
A0ut7qP7qf9rXbw1Y/JHI3LGOHJMOkz9uOAdVwP8FSa7KqHJTdxvT+qw70eyD3O5
DHs7oFVvRcECdBKxBZyTsR/tUL64Dpvnoj/PRWeAn5Lt7m/J6cHzhzdVyZZHC9I5
ylCrLcmY+s/McAKI6gBd5VhtMzFVEXEPaXkCc6KpT4feRaRmRGBFaNqc/XkLPlJQ
Cw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:46 2025 by rpki-client