Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa
File: AS131784.roa (raw, json)
Hash identifier: epIdET4/KHzUqAbp9ltl+Wbaqhb9t3AKFUkXNhCG7Eg=
Subject key identifier: 7B:38:C8:45:01:00:17:B1:2A:11:B0:12:B0:85:29:30:C1:E2:88:1C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 10359663F7D0476CEECB0530DE255B066DC780DF
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa
Signing time: Tue 10 Dec 2024 05:00:20 +0000
ROA not before: Tue 10 Dec 2024 04:55:20 +0000
ROA not after: Tue 09 Dec 2025 05:00:20 +0000
asID: 131784
IP address blocks: 103.17.164.0/24 maxlen: 24
2001:df4:7100::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:35:96:63:f7:d0:47:6c:ee:cb:05:30:de:25:5b:06:6d:c7:80:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:20 2024 GMT
Not After : Dec 9 05:00:20 2025 GMT
Subject: CN=7B38C845010017B12A11B012B0852930C1E2881C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:97:d4:62:b2:e0:a0:a5:13:d1:aa:41:df:b3:
ab:ac:7a:7d:f8:bc:d6:31:e0:61:e8:92:f6:9f:f1:
bf:90:05:ca:f4:a9:b2:67:3b:9d:0f:97:31:32:d7:
76:5c:e3:41:be:f3:35:3e:21:3e:6e:b5:f4:e5:d4:
4d:4f:2e:54:57:7f:df:bc:08:a6:17:18:c3:9a:e3:
a7:43:21:05:36:d7:f0:cb:2b:16:ad:fd:10:90:35:
f1:98:fc:02:dc:42:bb:3a:01:63:81:19:06:cb:ae:
20:86:c1:1b:3a:64:ca:ec:e6:26:d1:6f:55:ef:08:
e3:ce:9d:16:4e:dc:15:39:1e:2e:ce:26:df:b2:ae:
85:1d:10:06:14:be:a0:0d:1e:d8:ab:6c:a4:59:43:
98:7e:07:22:70:ea:38:cf:ef:91:39:b5:f8:73:4a:
a1:0d:d9:97:0a:43:05:93:4c:80:50:56:2b:37:d2:
eb:d1:b5:bc:91:b4:f5:e8:af:63:2a:4d:42:e8:f8:
47:5c:4f:03:07:e8:55:25:d7:a2:91:9c:45:41:65:
e8:16:49:e8:27:69:b4:de:e1:70:a1:56:ae:67:bf:
f7:a7:88:92:3e:c5:42:04:50:27:27:eb:25:91:05:
b7:3b:74:72:5d:8e:ca:95:dd:ca:8b:aa:7f:e1:e6:
c3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:38:C8:45:01:00:17:B1:2A:11:B0:12:B0:85:29:30:C1:E2:88:1C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131784.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.164.0/24
IPv6:
2001:df4:7100::/48
Signature Algorithm: sha256WithRSAEncryption
1a:e5:23:3c:db:46:46:03:b4:a8:33:da:0e:2c:f4:18:11:86:
e1:ed:8b:8c:b8:5c:70:aa:b0:7f:c7:e8:6c:3d:b4:00:b5:32:
b4:ac:ab:bd:5a:df:19:91:ce:ce:fb:56:f6:31:c8:0a:ad:6b:
f1:fd:37:f3:a9:fa:f8:a0:d7:3e:f9:5b:10:3a:45:6b:bd:ff:
74:a2:e9:34:90:f9:34:a0:04:54:78:66:c6:58:bc:2f:72:ea:
b4:0a:d0:f5:6a:7d:f4:ca:91:8c:9f:0b:14:47:65:a4:53:0d:
42:e7:33:86:92:df:36:9d:72:45:ba:ee:75:7e:df:99:50:93:
6a:d1:7e:2b:0b:52:3d:6a:63:fd:e6:a7:41:02:9f:f3:86:63:
7d:1d:4b:c6:83:86:b3:72:62:1c:98:46:dc:6f:6e:ba:8f:38:
fa:99:cb:d3:05:b5:d0:3f:57:72:58:ec:21:13:60:3d:ed:b9:
b2:25:c4:12:46:fa:d6:c2:4a:c8:fb:4b:df:7f:cd:ff:78:35:
0c:35:59:ad:9f:a0:57:69:67:4d:a1:bf:aa:75:56:3d:55:46:
31:d6:85:31:19:b0:fc:77:1f:43:82:b5:2e:5b:ba:ec:17:04:
10:96:f5:9c:00:00:dd:e2:aa:6d:f4:13:54:5e:67:e4:68:7f:
67:6e:08:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:32:11 2025 by rpki-client