Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa
File: AS151999.roa (raw, json)
Hash identifier: yGY/D1EkXl4ASCstzfgWik+spPIexVP6owApuNIyVjQ=
Subject key identifier: B0:29:75:F4:04:BD:0D:1C:7B:64:C7:90:81:80:54:8D:6A:69:7B:2A
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 551728BF804062EE4BC0CF3C49BB12FCA12C7BFE
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa
Signing time: Thu 17 Oct 2024 05:00:00 +0000
ROA not before: Thu 17 Oct 2024 04:55:00 +0000
ROA not after: Thu 16 Oct 2025 05:00:00 +0000
asID: 151999
IP address blocks: 43.250.182.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:17:28:bf:80:40:62:ee:4b:c0:cf:3c:49:bb:12:fc:a1:2c:7b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 17 04:55:00 2024 GMT
Not After : Oct 16 05:00:00 2025 GMT
Subject: CN=B02975F404BD0D1C7B64C7908180548D6A697B2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a7:ae:1c:4d:2e:dc:c5:db:84:1a:c5:75:db:
15:3d:f2:01:57:6f:4d:2d:b0:ca:33:db:ba:2d:d7:
36:3c:5c:ec:08:b6:ab:6a:99:0c:41:70:01:f8:3a:
d9:67:33:4e:3f:81:d9:3d:a3:7a:8d:93:e4:85:c7:
74:a0:72:2a:b0:d0:54:c9:b7:23:95:da:e6:d8:60:
12:2b:3d:53:22:fa:ed:88:83:20:8d:4e:f5:7d:34:
19:6c:5e:27:93:8f:c7:3b:90:a8:74:32:cf:c4:f9:
c1:e9:e7:02:f5:a0:97:27:53:43:1b:13:65:9b:46:
f9:24:7e:9d:33:58:20:9f:2f:df:fe:56:d7:4b:8c:
b5:af:c8:d7:48:1a:a9:da:2b:92:6e:0c:b9:50:08:
1e:80:d4:5b:1b:7f:d2:c6:94:3a:98:ab:32:5c:62:
b9:6f:10:ec:a6:70:ae:3e:57:77:5a:f0:37:13:9d:
a9:66:55:ec:8e:e2:31:21:2d:cf:fd:e0:0a:01:77:
26:4f:bc:9b:28:22:62:de:5e:a9:ee:a9:02:5d:e9:
a2:1f:a2:1c:01:cb:cd:77:0f:25:65:e5:36:0b:3f:
8b:71:fd:13:de:50:5e:93:e6:0d:3e:89:66:a6:da:
7c:d1:0a:63:34:c2:f2:56:e9:16:ec:99:3d:70:29:
00:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:29:75:F4:04:BD:0D:1C:7B:64:C7:90:81:80:54:8D:6A:69:7B:2A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151999.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.250.182.0/23
Signature Algorithm: sha256WithRSAEncryption
13:29:21:02:ab:a6:c9:5f:39:45:ac:39:33:5e:dd:37:fd:8f:
91:44:04:1e:6c:cd:8e:83:2d:35:89:62:3e:6d:be:59:8d:a2:
72:72:32:9f:a8:a2:df:a0:7d:63:89:7a:8f:7e:d2:97:c4:ef:
6b:fb:85:6f:61:21:80:e0:f9:67:4a:9e:55:16:31:4c:8e:70:
d5:45:90:64:5d:6a:ac:a1:32:9c:72:02:f1:f0:bb:80:c0:48:
ba:26:cd:7f:07:b2:f1:3a:6b:7a:89:e1:e2:6b:8a:ec:0c:78:
79:55:52:d2:89:cc:26:f1:3c:5c:c6:f0:a3:c0:63:09:b6:db:
84:49:64:07:c7:74:e1:8f:6a:86:91:90:b7:32:a9:af:93:7b:
7e:ac:6f:8f:89:2e:54:6d:36:3b:bf:75:80:f2:5b:36:2f:da:
50:c9:a8:7b:dd:3e:b6:70:4b:58:e9:df:69:90:98:9d:6c:60:
91:8a:8e:59:1b:10:8f:91:9f:c6:ec:b1:db:ba:1d:7e:e2:2a:
5c:e0:8d:b5:81:9b:86:eb:6f:f6:d4:57:a7:52:11:a0:cd:f1:
3f:8c:1e:e8:70:8e:49:9d:59:de:5e:21:b1:45:89:89:27:03:
0f:ba:dd:02:99:2d:ac:ea:8a:64:89:77:37:dc:37:f5:c9:f4:
bb:59:74:9d
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUVRcov4BAYu5LwM88SbsS/KEse/4wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNzA0NTUwMFoX
DTI1MTAxNjA1MDAwMFowMzExMC8GA1UEAxMoQjAyOTc1RjQwNEJEMEQxQzdCNjRD
NzkwODE4MDU0OEQ2QTY5N0IyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN2nrhxNLtzF24QaxXXbFT3yAVdvTS2wyjPbui3XNjxc7Ai2q2qZDEFwAfg6
2WczTj+B2T2jeo2T5IXHdKByKrDQVMm3I5Xa5thgEis9UyL67YiDII1O9X00GWxe
J5OPxzuQqHQyz8T5wennAvWglydTQxsTZZtG+SR+nTNYIJ8v3/5W10uMta/I10ga
qdorkm4MuVAIHoDUWxt/0saUOpirMlxiuW8Q7KZwrj5Xd1rwNxOdqWZV7I7iMSEt
z/3gCgF3Jk+8mygiYt5eqe6pAl3poh+iHAHLzXcPJWXlNgs/i3H9E95QXpPmDT6J
ZqbafNEKYzTC8lbpFuyZPXApADsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSwKXX0
BL0NHHtkx5CBgFSNaml7KjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTk5OS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEASv6tjANBgkqhkiG9w0BAQsFAAOCAQEAEykhAqumyV85Raw5M17d
N/2PkUQEHmzNjoMtNYliPm2+WY2icnIyn6ii36B9Y4l6j37Sl8Tva/uFb2EhgOD5
Z0qeVRYxTI5w1UWQZF1qrKEynHIC8fC7gMBIuibNfwey8Tpreonh4muK7Ax4eVVS
0onMJvE8XMbwo8BjCbbbhElkB8d04Y9qhpGQtzKpr5N7fqxvj4kuVG02O791gPJb
Ni/aUMmoe90+tnBLWOnfaZCYnWxgkYqOWRsQj5Gfxuyx27odfuIqXOCNtYGbhutv
9tRXp1IRoM3xP4we6HCOSZ1Z3l4hsUWJiScDD7rdApktrOqKZIl3N9w39cn0u1l0
nQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:44 2025 by rpki-client