Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa
File: AS131702.roa (raw, json)
Hash identifier: hmvHEX390CWgTM3FFC/0yV7TiplfGMdBSzwXwvmc3Fk=
Subject key identifier: DD:E4:72:73:22:9E:09:E2:FE:41:68:16:AD:9C:A5:C6:1D:3B:7F:60
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0EC9EADC6B560DA420F1F7931E908B6A8878F792
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa
Signing time: Thu 13 Feb 2025 08:00:00 +0000
ROA not before: Thu 13 Feb 2025 07:55:00 +0000
ROA not after: Thu 12 Feb 2026 08:00:00 +0000
asID: 131702
IP address blocks: 103.154.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:c9:ea:dc:6b:56:0d:a4:20:f1:f7:93:1e:90:8b:6a:88:78:f7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 13 07:55:00 2025 GMT
Not After : Feb 12 08:00:00 2026 GMT
Subject: CN=DDE47273229E09E2FE416816AD9CA5C61D3B7F60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4d:95:77:cc:71:f6:d2:19:73:7b:60:53:64:
c9:00:47:3c:0f:70:91:4b:46:d0:97:ef:bd:f6:83:
ef:06:4f:64:59:3b:a4:0c:64:fb:d3:51:20:a4:6c:
94:81:c7:ce:79:ec:82:75:49:b9:6e:a5:e3:63:a0:
2d:ce:e7:7c:ae:f3:4d:d9:ed:79:dd:4e:fc:ff:8b:
5f:44:35:62:0e:44:29:f8:ac:07:76:d3:3d:c7:44:
f9:00:6d:6d:ab:9f:a3:01:e0:45:c3:07:b0:a5:2c:
8c:58:ed:13:28:9b:ab:bb:9d:86:98:76:69:8e:b8:
85:dc:05:e9:09:1c:29:91:fb:63:91:ea:23:f0:19:
7c:38:6c:fc:c4:de:07:99:72:55:7b:9c:c5:6c:2d:
0f:1b:9b:ae:63:99:33:f2:6e:2f:80:04:0f:ea:d6:
a2:26:44:78:1d:07:9d:d4:af:f3:db:c4:5b:00:df:
86:f7:dc:ae:cb:b9:82:f2:65:b1:e7:ac:9d:0a:d0:
7b:46:f5:99:41:ca:3e:71:35:29:4b:32:85:ae:71:
45:92:86:78:98:5b:ee:29:71:d4:ef:a9:dd:3b:0b:
90:96:fd:95:54:93:69:45:89:cd:17:bc:4c:e2:f6:
e2:4b:06:53:5a:a2:f1:0d:04:01:51:0d:ab:b1:f7:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E4:72:73:22:9E:09:E2:FE:41:68:16:AD:9C:A5:C6:1D:3B:7F:60
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131702.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.154.227.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:67:29:cc:bd:bd:82:0a:85:88:c7:96:c3:20:b8:2f:ce:cc:
0a:ea:12:a9:14:68:19:bd:46:f6:a4:d8:ec:2b:a7:20:69:77:
ab:d0:e8:33:0e:02:3b:5d:e2:37:d1:b8:2b:78:8c:e8:bc:a6:
00:6f:8d:c6:05:38:12:48:0c:4b:f4:93:85:55:4f:e2:06:83:
77:4d:39:c0:b9:4f:7d:59:36:72:76:97:ed:a4:42:93:41:1e:
15:99:01:93:19:f0:a2:ff:6e:0b:7f:0c:f8:e6:e5:f7:62:f4:
4c:f9:f9:5e:79:69:d5:8f:e6:2c:85:5d:01:72:09:d4:7f:55:
c5:1f:bf:ec:c9:07:f0:f3:b6:39:fc:2f:1c:28:ae:1c:1f:e6:
c1:de:12:9b:95:38:17:d6:90:46:72:f0:2a:d9:ff:fa:c2:92:
05:c3:b9:3e:64:32:bb:01:e5:27:0e:3f:51:f7:de:f4:e1:19:
7a:d3:e8:7a:2f:1e:8c:08:a8:dc:c1:bc:84:3e:75:3e:6b:23:
f6:27:c3:e8:f4:fa:19:7b:69:b3:cc:3a:cc:ae:8c:f2:72:5a:
46:6f:54:1b:89:a3:3b:80:b2:ab:22:e8:95:0b:7e:f5:50:a3:
97:0f:95:ad:0b:d0:4f:fd:b5:c4:5a:3c:c1:2e:11:5f:52:78:
c9:27:50:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:42 2025 by rpki-client