Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa
File: AS132634.roa (raw, json)
Hash identifier: RQgEzChnNasdyAVE95kFtRFZYUz/EBZ/nHSLvcLMx1g=
Subject key identifier: FC:61:4F:F4:B4:30:48:9F:E0:C2:DB:FA:C0:8D:32:32:36:64:07:7B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3F6D08E6B67A71A8BB084A0542F5EAC97E02C916
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa
Signing time: Tue 10 Dec 2024 05:00:16 +0000
ROA not before: Tue 10 Dec 2024 04:55:16 +0000
ROA not after: Tue 09 Dec 2025 05:00:16 +0000
asID: 132634
IP address blocks: 103.170.104.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:6d:08:e6:b6:7a:71:a8:bb:08:4a:05:42:f5:ea:c9:7e:02:c9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:16 2024 GMT
Not After : Dec 9 05:00:16 2025 GMT
Subject: CN=FC614FF4B430489FE0C2DBFAC08D32323664077B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0b:39:4e:21:b1:45:77:37:27:cc:ea:09:3b:
d9:b2:b5:6a:57:ba:82:cd:b7:c5:1d:55:af:17:92:
ce:a3:e1:a0:2f:96:00:de:ef:74:8f:5e:7e:79:1c:
4a:68:81:0b:57:2e:a3:f2:14:05:b4:2a:54:5d:ae:
d5:d5:1d:e8:2e:70:8a:45:22:be:d3:dd:5b:bd:e0:
55:cc:a8:4a:c0:b1:b0:c7:ec:ea:12:15:c2:a9:e2:
be:74:b0:4a:a9:47:b9:7f:27:71:bf:d3:fe:ec:f9:
7a:f1:06:d4:9f:49:36:51:70:b4:cf:d7:d2:85:52:
98:40:ce:0f:e0:9b:7f:73:30:8c:94:ec:5a:ba:8f:
2a:bc:8b:b4:d9:b9:76:9d:9c:e9:a4:76:7a:79:a9:
cb:a4:7d:6e:00:4d:38:53:9f:ee:fd:c2:e5:a4:67:
ca:9a:8e:26:18:67:ff:b1:e2:ba:1e:a4:f2:bb:e9:
13:7b:c6:44:3f:30:f3:4b:64:b0:60:62:04:d3:49:
b7:3a:6a:39:5e:0e:72:a5:99:c1:11:39:3a:86:fc:
2b:f7:cb:27:2d:ae:bc:b7:1f:0d:d9:e1:4c:c2:f3:
76:7c:30:0b:d1:a1:ba:17:f1:51:2d:06:4c:40:56:
8b:ca:22:33:0f:6a:ee:21:d8:99:68:94:2c:ca:01:
e1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:61:4F:F4:B4:30:48:9F:E0:C2:DB:FA:C0:8D:32:32:36:64:07:7B
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.104.0/23
Signature Algorithm: sha256WithRSAEncryption
35:fb:a5:d0:43:c7:90:06:35:b8:cb:dd:45:0c:38:95:87:22:
4e:45:fa:bd:81:68:7a:a6:e2:50:1f:cc:13:3f:bc:d4:19:7e:
31:2a:35:cc:94:01:4a:0d:0e:2e:c4:05:18:6e:d2:e9:a5:40:
a1:18:81:3a:0b:e3:7e:95:74:41:f3:55:f9:06:9c:35:66:29:
25:88:4d:99:19:e5:af:79:fa:ff:26:9d:14:08:68:94:94:99:
bf:c1:a8:00:96:20:c9:55:29:a4:74:b6:c6:7d:e2:19:cb:d3:
63:16:f7:ab:83:12:bd:91:4b:6f:a7:89:8c:66:85:a3:c4:22:
38:2f:aa:f1:83:71:f6:8c:fb:82:50:62:2a:8f:4a:23:96:b5:
71:1b:9e:0e:ef:29:4f:6c:07:eb:d0:4c:7c:c9:78:98:e1:ad:
68:e7:86:24:7b:dc:f2:20:63:41:0b:ef:e5:fe:b0:4a:43:b0:
68:b2:72:7c:b3:b9:27:a2:ed:78:6a:43:e5:92:48:76:aa:40:
97:eb:23:2c:af:74:19:5c:39:1f:7a:ab:b9:b5:3a:be:a1:62:
64:8c:e1:7d:bc:04:e0:ea:1c:32:ca:69:be:ab:47:9d:e8:53:
43:d8:10:61:46:56:b9:a4:0b:1a:7b:9a:58:8a:15:7a:ee:02:
3c:f7:f5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:28 2025 by rpki-client