Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa
File: AS153717.roa (raw, json)
Hash identifier: dnwcxF+uDfGOq+YPRE0tOaI0JNEoJpJdl91lGr9lTts=
Subject key identifier: 07:95:DD:5E:D5:D5:83:36:60:CB:C9:50:04:AC:4B:75:85:FF:D3:0A
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6B2743785EA2FB536B6E7D4F27E99B13F0C9E275
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa
Signing time: Wed 26 Mar 2025 07:18:39 +0000
ROA not before: Wed 26 Mar 2025 07:13:39 +0000
ROA not after: Wed 25 Mar 2026 07:18:39 +0000
asID: 153717
IP address blocks: 163.223.142.0/23 maxlen: 24
2001:df5:4240::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:27:43:78:5e:a2:fb:53:6b:6e:7d:4f:27:e9:9b:13:f0:c9:e2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 26 07:13:39 2025 GMT
Not After : Mar 25 07:18:39 2026 GMT
Subject: CN=0795DD5ED5D5833660CBC95004AC4B7585FFD30A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3c:f7:db:64:15:51:31:ba:4c:06:be:4e:b3:
8f:17:45:50:49:1b:cb:3f:f5:31:10:82:89:ba:8b:
91:d9:02:59:08:be:fe:1b:a0:52:b6:3a:bc:90:9d:
41:7b:7c:8c:a3:7b:0e:75:89:52:36:ed:d5:eb:c6:
88:d5:25:c8:10:61:42:a1:f7:4f:bf:4f:b9:74:0b:
53:9a:cb:d7:56:fb:cf:72:bb:1f:54:04:de:6c:04:
ef:06:1b:b4:e4:4b:48:13:45:18:8d:74:47:50:e8:
54:8c:0e:28:a8:99:f9:2f:8a:c1:aa:5a:f8:7a:3c:
fc:db:b0:ac:9c:6d:f9:2c:b1:eb:0a:76:c0:8f:ae:
2f:7e:84:2c:9a:c9:ec:05:f4:eb:fc:fa:0f:af:43:
be:f5:b1:1d:0d:84:d1:c2:31:e5:af:20:d0:52:c1:
91:c1:66:65:36:a8:ee:b9:55:4a:37:b4:2b:32:fa:
fe:0c:7e:b8:4d:0a:d6:1f:14:c0:cc:b0:2d:09:de:
27:ba:86:28:e1:20:9e:61:45:28:67:17:4b:21:e7:
57:27:2a:25:1f:48:fe:44:9a:97:1a:ad:b4:cc:c9:
f6:1f:db:85:22:df:4f:07:c7:73:7f:40:55:ca:92:
60:5a:3e:b1:25:11:19:85:e4:35:d4:8d:7e:73:f5:
8f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:95:DD:5E:D5:D5:83:36:60:CB:C9:50:04:AC:4B:75:85:FF:D3:0A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.223.142.0/23
IPv6:
2001:df5:4240::/48
Signature Algorithm: sha256WithRSAEncryption
14:cb:86:39:c0:be:b9:06:10:06:19:7b:da:35:1a:91:49:47:
d1:4f:f8:b8:43:49:d8:d9:f9:a6:26:9a:f6:47:ee:a6:b2:53:
0c:bc:82:44:48:25:dc:8a:a0:d3:1b:02:c3:c4:29:80:55:db:
61:fb:13:ee:d1:f1:b4:86:fe:f6:71:3b:d2:63:47:52:20:f8:
01:2e:69:74:e7:0a:9d:a8:a1:70:e1:29:dd:f8:e1:b5:5f:1f:
62:a0:d4:a0:80:a2:b5:5e:8d:70:4f:5d:75:51:ab:7e:98:3c:
13:58:2c:d0:06:b1:88:cf:21:83:42:9a:c7:f6:7d:08:87:61:
89:48:ba:b1:9f:87:0c:10:bf:32:67:7f:09:47:2a:5c:0f:dc:
6b:33:d9:e3:da:89:45:9b:4d:5f:d8:e5:6a:3f:89:f6:6a:a3:
50:21:8e:ee:a7:8c:6b:de:36:f3:8d:46:62:df:9c:5c:d5:91:
06:f7:7b:9c:75:62:86:32:14:34:af:4e:7e:e9:01:ca:d0:51:
09:9d:fe:8b:e5:04:15:56:46:3b:03:6a:c8:c1:d9:34:72:80:
6d:43:c4:2a:2d:74:eb:a8:e0:5e:44:4b:db:6f:e4:1f:59:29:
0d:52:b2:2c:61:70:4e:8e:c6:ac:30:e3:42:fd:b7:7e:3f:32:
56:2b:99:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:29:49 2025 by rpki-client