Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa
File: AS131715.roa (raw, json)
Hash identifier: MUrsEyF7cZNg53hU5APQO7BoLin/Z0FGwXdTy+yvrMk=
Subject key identifier: 06:BB:D5:BF:C2:65:DE:69:11:43:28:5A:6A:19:FF:92:45:9D:F4:06
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 14AC0BF27A9B90B84F1EB8E67F1489EAAE483BDF
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa
Signing time: Tue 08 Oct 2024 01:00:00 +0000
ROA not before: Tue 08 Oct 2024 00:55:00 +0000
ROA not after: Tue 07 Oct 2025 01:00:00 +0000
asID: 131715
IP address blocks: 103.8.228.0/24 maxlen: 24
103.209.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:ac:0b:f2:7a:9b:90:b8:4f:1e:b8:e6:7f:14:89:ea:ae:48:3b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 8 00:55:00 2024 GMT
Not After : Oct 7 01:00:00 2025 GMT
Subject: CN=06BBD5BFC265DE691143285A6A19FF92459DF406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:21:9c:a2:c5:17:66:68:bc:10:1b:1f:1e:c1:
df:45:00:67:49:fb:b1:ea:0d:9f:7b:0f:6f:ee:9c:
37:cd:fc:2f:f0:cc:83:d2:b4:cf:ff:ed:a6:c7:31:
d7:ad:24:52:12:30:66:d6:42:81:bb:5d:fc:ff:dd:
d0:ac:88:f8:dc:04:26:e8:f5:f1:89:36:31:9a:52:
88:51:c8:1a:12:0e:8e:d6:32:d0:81:1f:a5:17:59:
9a:19:1f:3d:82:8d:0f:31:b0:91:20:7e:c6:3f:da:
85:d1:92:55:e0:a0:eb:b9:12:1e:3d:f7:89:93:97:
a4:34:23:65:9d:c1:c2:c9:5e:fc:f9:68:06:5d:e2:
90:c2:aa:20:51:86:f9:12:3f:cd:2a:19:e8:75:14:
e6:49:7c:c9:20:e8:4b:8a:90:45:d8:bd:d5:27:48:
fe:86:f1:2f:05:bf:fd:3c:cd:a4:26:c4:fb:f4:e8:
c3:e6:27:81:ab:d7:82:ad:87:8e:22:5d:c5:04:01:
fe:8a:97:ff:0e:0b:30:15:a1:3c:7f:1d:4c:e4:58:
dc:a2:67:ff:37:b3:d2:9d:c7:7f:a8:55:37:1a:00:
8e:7d:4b:e0:e7:08:36:15:9e:d3:ce:a5:be:b7:14:
14:70:bc:e5:f3:63:77:da:59:2d:fa:0b:69:34:48:
7b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BB:D5:BF:C2:65:DE:69:11:43:28:5A:6A:19:FF:92:45:9D:F4:06
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.8.228.0/24
103.209.130.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a4:f9:bb:ab:e4:f1:69:d0:48:c6:47:40:80:61:b9:70:b4:
db:95:25:12:af:f7:0a:7e:39:a7:d7:1c:c9:23:04:5f:e8:fa:
4a:f5:85:7c:7a:5c:10:b0:83:db:7b:2d:dd:75:e9:97:ba:a6:
b9:8b:f5:07:a9:3b:60:a7:cb:ef:8f:0e:b0:ee:82:41:63:be:
8a:14:1b:33:22:e3:ab:4b:e3:31:87:4d:28:5d:94:1e:4e:76:
66:8e:fd:da:bf:2a:5c:4c:28:4f:28:08:b1:c7:3d:e6:0f:1e:
67:a5:35:7e:f0:49:ca:db:20:c7:80:19:a3:02:33:f5:3a:64:
d8:a3:56:22:ff:8a:1d:cf:01:27:7d:86:da:5e:2a:32:f0:d7:
b0:fe:82:b5:7b:a7:2c:3c:77:b2:98:33:cc:c5:29:0c:68:9d:
06:55:90:77:a4:16:38:33:e2:b3:f7:a7:54:af:fe:50:55:1d:
92:b7:9d:bd:95:17:21:18:ce:8c:86:34:ab:1b:21:e0:80:ae:
b0:fb:4e:37:0c:3c:fa:78:95:d9:0b:b6:98:aa:c3:2a:cf:62:
9d:5b:77:1a:72:0d:86:b7:c2:c5:c2:10:3c:f3:08:91:fa:7d:
cd:23:94:fe:2d:86:b3:f2:68:98:b1:23:ce:95:60:dd:6e:70:
09:71:1b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:22:28 2025 by rpki-client