Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa
File: AS153565.roa (raw, json)
Hash identifier: n6RjEpSyIhxyvh+mqspkfFA5T9YRth1/VmmcWEiSTGE=
Subject key identifier: A3:AB:06:E7:1F:57:03:8E:93:9A:FE:D7:63:BA:28:30:8C:F0:F7:AB
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0D03136B43BDE815A48649367A1C6BBA72392B61
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa
Signing time: Fri 14 Mar 2025 05:47:44 +0000
ROA not before: Fri 14 Mar 2025 05:42:44 +0000
ROA not after: Fri 13 Mar 2026 05:47:44 +0000
asID: 153565
IP address blocks: 2001:df4:f2c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:03:13:6b:43:bd:e8:15:a4:86:49:36:7a:1c:6b:ba:72:39:2b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 14 05:42:44 2025 GMT
Not After : Mar 13 05:47:44 2026 GMT
Subject: CN=A3AB06E71F57038E939AFED763BA28308CF0F7AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:ab:e3:eb:80:64:48:f2:63:93:b7:59:e6:
71:b1:17:65:d0:a8:74:d8:2f:10:70:6b:be:d4:bc:
c7:81:8f:2e:1c:c6:1a:99:64:e0:54:6c:25:52:80:
17:2b:5a:ec:ea:ec:12:a3:bd:40:a2:9d:4a:db:00:
d7:b6:76:04:d6:d3:3b:99:e8:f4:80:cb:fd:2a:b7:
37:60:15:e8:88:16:e9:44:14:a7:03:fc:c2:47:4e:
7f:eb:99:76:e6:d5:fa:1f:d0:7d:ca:c8:4d:23:d5:
52:02:01:1e:93:73:2b:8d:52:f8:fa:0f:99:f5:d3:
b9:f7:78:5b:42:89:3e:80:e5:8d:7f:6d:07:b8:91:
83:4e:51:2b:65:51:2a:ca:42:bc:44:af:c0:a8:90:
7b:c1:46:a5:87:4f:02:97:24:47:50:51:6f:94:f0:
f2:d2:10:c5:99:6c:93:85:fa:23:c4:a5:94:81:e8:
24:f6:be:e9:6d:6d:c4:99:df:e1:83:7d:16:01:45:
92:26:a0:d9:30:27:59:cb:eb:c2:d8:c6:4d:64:f9:
a2:2c:79:fc:d1:6b:c2:42:a6:5d:a0:a7:99:3b:41:
b5:93:db:9c:c6:08:9b:3d:83:d9:16:cf:e1:c5:35:
a3:78:fd:a2:c6:61:f5:8a:d3:cf:72:2c:95:23:b7:
92:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:AB:06:E7:1F:57:03:8E:93:9A:FE:D7:63:BA:28:30:8C:F0:F7:AB
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153565.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:f2c0::/48
Signature Algorithm: sha256WithRSAEncryption
87:2c:e6:eb:9d:a5:36:2b:5a:8c:16:10:5a:1b:88:02:41:d3:
dc:26:09:30:26:c0:0a:be:db:32:ef:a8:b4:ea:39:7f:59:a4:
24:10:dd:e3:74:bd:93:b6:a1:b6:66:78:94:cd:c3:5e:fb:8f:
e1:06:75:c9:30:90:00:e2:61:a9:7a:d0:38:de:f9:2a:6e:d5:
74:ab:c4:4c:41:71:3c:e1:a5:fb:b3:e6:5d:8c:fd:23:e9:9c:
63:35:9d:a2:71:7a:e6:ae:0f:4a:ab:ba:47:c3:57:e7:00:a5:
51:50:49:6e:86:53:e4:d0:c0:d2:e8:14:5b:71:7e:56:c1:c1:
2d:1c:06:53:66:2e:3e:72:29:67:a0:4f:ba:77:03:2f:9e:f4:
4b:a0:7b:06:16:15:95:01:0e:1d:9e:ff:d4:b2:ee:68:16:ae:
75:e7:8c:9d:bc:5c:4c:19:ae:c5:e9:09:7d:ba:26:18:f2:c9:
9b:3d:f6:fb:97:65:cf:f4:e5:c3:98:d6:12:da:5f:21:25:75:
1f:f6:81:33:74:c3:ab:aa:0f:0b:54:3b:69:81:34:c7:6e:a6:
00:45:e8:eb:92:e5:ac:5b:1e:62:2c:a4:c6:56:6f:56:a0:51:
b3:a8:3a:90:3d:ab:ad:51:8f:32:c1:0f:24:87:1c:5b:ea:0d:
76:26:83:14
-----BEGIN CERTIFICATE-----
MIIE4DCCA8igAwIBAgIUDQMTa0O96BWkhkk2ehxrunI5K2EwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxNDA1NDI0NFoX
DTI2MDMxMzA1NDc0NFowMzExMC8GA1UEAxMoQTNBQjA2RTcxRjU3MDM4RTkzOUFG
RUQ3NjNCQTI4MzA4Q0YwRjdBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKbSq+PrgGRI8mOTt1nmcbEXZdCodNgvEHBrvtS8x4GPLhzGGplk4FRsJVKA
Fyta7OrsEqO9QKKdStsA17Z2BNbTO5no9IDL/Sq3N2AV6IgW6UQUpwP8wkdOf+uZ
dubV+h/QfcrITSPVUgIBHpNzK41S+PoPmfXTufd4W0KJPoDljX9tB7iRg05RK2VR
KspCvESvwKiQe8FGpYdPApckR1BRb5Tw8tIQxZlsk4X6I8SllIHoJPa+6W1txJnf
4YN9FgFFkiag2TAnWcvrwtjGTWT5oix5/NFrwkKmXaCnmTtBtZPbnMYImz2D2RbP
4cU1o3j9osZh9YrTz3IslSO3kg0CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSjqwbn
H1cDjpOa/tdjuigwjPD3qzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU2NS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw
DwQCAAIwCQMHACABDfTywDANBgkqhkiG9w0BAQsFAAOCAQEAhyzm652lNitajBYQ
WhuIAkHT3CYJMCbACr7bMu+otOo5f1mkJBDd43S9k7ahtmZ4lM3DXvuP4QZ1yTCQ
AOJhqXrQON75Km7VdKvETEFxPOGl+7PmXYz9I+mcYzWdonF65q4PSqu6R8NX5wCl
UVBJboZT5NDA0ugUW3F+VsHBLRwGU2YuPnIpZ6BPuncDL570S6B7BhYVlQEOHZ7/
1LLuaBaudeeMnbxcTBmuxekJfbomGPLJmz32+5dlz/Tlw5jWEtpfISV1H/aBM3TD
q6oPC1Q7aYE0x26mAEXo65LlrFseYiykxlZvVqBRs6g6kD2rrVGPMsEPJIccW+oN
diaDFA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:59 2025 by rpki-client