Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa
File: AS152053.roa (raw, json)
Hash identifier: /yh8hSM0KqPMYcI76JY96OQgyleQigsk1ug3n+0r2T8=
Subject key identifier: 22:4E:48:F0:36:9C:04:7E:56:80:5F:37:58:31:6A:9F:DA:42:B9:AC
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2E2858345FAE29E518B8FB7C60D6264359AFD3F9
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa
Signing time: Tue 18 Mar 2025 04:00:00 +0000
ROA not before: Tue 18 Mar 2025 03:55:00 +0000
ROA not after: Tue 17 Mar 2026 04:00:00 +0000
asID: 152053
IP address blocks: 210.87.112.0/23 maxlen: 24
2001:df3:8f40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:28:58:34:5f:ae:29:e5:18:b8:fb:7c:60:d6:26:43:59:af:d3:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 18 03:55:00 2025 GMT
Not After : Mar 17 04:00:00 2026 GMT
Subject: CN=224E48F0369C047E56805F3758316A9FDA42B9AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7b:2f:61:ae:bd:cb:9f:54:01:f3:3f:45:34:
7b:31:9c:db:61:d9:dd:a5:87:86:15:83:a5:ce:b0:
21:b9:08:f8:d7:b9:49:bf:a1:d6:16:69:7d:b3:0c:
00:64:06:04:7c:c1:f4:cb:ec:02:6e:28:d6:06:f0:
53:29:74:27:05:45:04:c7:9d:de:3a:2c:19:b9:58:
c7:d6:14:59:11:2e:d5:ce:d9:17:d7:e9:7b:3f:50:
cc:98:18:33:9f:66:bf:02:8f:f4:53:54:c7:e6:06:
dc:2f:69:14:a3:61:84:82:ca:86:b5:3d:9e:c3:13:
38:98:98:fb:c6:3e:7a:b5:0d:bf:99:07:d8:cd:68:
83:76:37:d2:2b:ad:6b:f0:c9:26:db:05:21:e3:47:
4e:71:0e:88:6a:b2:61:da:dc:1f:67:bd:c1:7d:e3:
f3:ff:81:d2:51:07:2a:c8:f2:ba:fb:83:c0:69:2b:
c2:e9:ec:0e:5c:d5:97:a3:a8:92:4a:eb:02:53:6a:
f3:fe:d2:e0:7e:ea:28:5e:b6:8b:c5:3c:5d:ef:08:
10:ed:c8:e7:a3:e6:61:b7:49:77:8b:7f:e0:26:c4:
36:b5:c2:7d:e6:50:f2:c4:fa:21:2c:7f:59:1e:ae:
7f:e4:45:27:4f:f6:e2:a7:58:c2:4c:86:83:e4:ff:
dc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4E:48:F0:36:9C:04:7E:56:80:5F:37:58:31:6A:9F:DA:42:B9:AC
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152053.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.87.112.0/23
IPv6:
2001:df3:8f40::/48
Signature Algorithm: sha256WithRSAEncryption
4c:53:c6:89:50:c6:4b:f5:ce:91:0c:c8:ee:4b:83:1c:7c:08:
43:1f:56:d6:03:55:f4:5c:c4:2d:4d:b6:4c:b8:9a:7c:3f:fa:
77:34:23:39:1d:16:87:96:75:67:b5:ce:f0:45:80:06:89:ce:
3f:66:3f:68:c5:43:8d:6b:22:e8:33:3e:c4:2e:80:e8:68:84:
e9:b2:4b:ae:2b:13:1e:fa:50:b1:bc:0c:64:53:9c:42:c2:aa:
36:b4:36:85:ac:0f:e6:f7:5c:f0:ad:d4:6d:b9:27:71:d3:57:
a3:3f:3d:ad:02:19:4e:aa:27:7d:44:a1:a0:5d:e3:bc:a3:5d:
b1:b1:c4:bd:af:3d:55:30:eb:5c:f0:bc:c1:14:35:fc:8d:61:
ee:e9:5b:04:8b:cd:45:05:84:fc:a3:47:bd:1c:e7:71:0f:da:
ab:99:83:17:a5:d3:9d:be:06:6d:27:2f:b8:40:9b:58:8c:91:
d6:c0:9e:f4:f3:97:27:aa:49:e2:42:76:59:ff:b9:25:fa:65:
61:22:08:f7:d5:56:43:83:2c:84:b3:ae:ec:00:2c:65:2c:5a:
e2:9c:61:10:20:ea:25:69:43:37:5e:c8:0b:45:9e:0f:a6:c9:
7a:64:32:53:80:0b:e2:0b:5d:6a:1f:67:b3:78:2e:1e:f0:b2:
6a:73:70:4f
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIULihYNF+uKeUYuPt8YNYmQ1mv0/kwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxODAzNTUwMFoX
DTI2MDMxNzA0MDAwMFowMzExMC8GA1UEAxMoMjI0RTQ4RjAzNjlDMDQ3RTU2ODA1
RjM3NTgzMTZBOUZEQTQyQjlBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMh7L2GuvcufVAHzP0U0ezGc22HZ3aWHhhWDpc6wIbkI+Ne5Sb+h1hZpfbMM
AGQGBHzB9MvsAm4o1gbwUyl0JwVFBMed3josGblYx9YUWREu1c7ZF9fpez9QzJgY
M59mvwKP9FNUx+YG3C9pFKNhhILKhrU9nsMTOJiY+8Y+erUNv5kH2M1og3Y30iut
a/DJJtsFIeNHTnEOiGqyYdrcH2e9wX3j8/+B0lEHKsjyuvuDwGkrwunsDlzVl6Oo
kkrrAlNq8/7S4H7qKF62i8U8Xe8IEO3I56PmYbdJd4t/4CbENrXCfeZQ8sT6ISx/
WR6uf+RFJ0/24qdYwkyGg+T/3PkCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQiTkjw
NpwEflaAXzdYMWqf2kK5rDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1My5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w
DAQCAAEwBgMEAdJXcDAPBAIAAjAJAwcAIAEN849AMA0GCSqGSIb3DQEBCwUAA4IB
AQBMU8aJUMZL9c6RDMjuS4McfAhDH1bWA1X0XMQtTbZMuJp8P/p3NCM5HRaHlnVn
tc7wRYAGic4/Zj9oxUONayLoMz7ELoDoaITpskuuKxMe+lCxvAxkU5xCwqo2tDaF
rA/m91zwrdRtuSdx01ejPz2tAhlOqid9RKGgXeO8o12xscS9rz1VMOtc8LzBFDX8
jWHu6VsEi81FBYT8o0e9HOdxD9qrmYMXpdOdvgZtJy+4QJtYjJHWwJ7085cnqkni
QnZZ/7kl+mVhIgj31VZDgyyEs67sACxlLFrinGEQIOolaUM3XsgLRZ4Ppsl6ZDJT
gAviC11qH2ezeC4e8LJqc3BP
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:38 2025 by rpki-client