Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa
File: AS133337.roa (raw, json)
Hash identifier: JAq3dz4vm+Samhihh1A2jQwd2f3wOwdrS0ooyToFGUI=
Subject key identifier: B8:41:95:F2:E9:E6:02:F4:0F:67:FB:C6:56:0E:F4:73:2D:56:09:8C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5A9CA6E0D9BF92BE76A04F7109E0242F19B3D4F1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa
Signing time: Tue 10 Dec 2024 05:00:05 +0000
ROA not before: Tue 10 Dec 2024 04:55:05 +0000
ROA not after: Tue 09 Dec 2025 05:00:05 +0000
asID: 133337
IP address blocks: 103.174.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:9c:a6:e0:d9:bf:92:be:76:a0:4f:71:09:e0:24:2f:19:b3:d4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:05 2024 GMT
Not After : Dec 9 05:00:05 2025 GMT
Subject: CN=B84195F2E9E602F40F67FBC6560EF4732D56098C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6b:89:eb:14:de:f7:54:51:ad:0a:48:59:59:
0f:fa:10:4b:1f:c4:f2:77:e8:52:33:fe:0f:ed:25:
45:16:be:da:bd:d9:0b:6e:ed:fa:d8:19:b5:cf:fe:
df:94:fd:63:2a:b9:3d:ce:2e:13:54:9a:cc:f6:d8:
5b:13:78:c5:66:eb:4a:bb:78:62:1b:1d:26:cf:bc:
e6:e0:9e:22:e5:12:49:c8:06:c3:40:23:fe:03:c5:
3a:c1:23:4b:f7:8d:05:a5:27:d6:cb:0f:0c:44:a8:
93:ae:59:df:4b:69:62:f0:1c:05:56:b6:ec:3a:76:
46:b0:9c:1c:b4:a7:9d:8f:20:1c:d6:f0:30:46:76:
2b:89:78:6e:ea:64:d5:b1:55:a5:df:5d:14:37:c7:
93:1a:bc:4c:88:fe:05:ca:a9:e7:65:88:b3:5b:70:
f9:fb:85:98:a3:73:69:cf:1c:0d:9c:9c:6b:cb:d9:
d6:2b:71:50:fb:f1:cc:01:83:0a:71:26:65:67:fe:
aa:42:95:5e:40:ba:a0:1c:2d:e7:a2:1f:c1:47:20:
9b:f8:af:f1:41:2a:ad:9a:76:a8:69:5a:f0:f6:29:
a9:d6:2d:a3:69:6a:e5:8c:c8:42:88:21:a2:e9:17:
e2:41:11:96:72:a6:0e:97:29:3a:f0:2a:af:c5:19:
34:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:95:F2:E9:E6:02:F4:0F:67:FB:C6:56:0E:F4:73:2D:56:09:8C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.67.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b8:9c:1e:f6:62:0d:b1:05:3b:fd:d5:99:9e:e9:cf:12:7a:
72:5a:2e:11:9f:eb:ac:45:3b:e8:ee:e3:e0:fc:20:07:52:42:
9c:36:ac:63:8b:19:08:b4:0d:32:c6:c6:12:3e:2c:d4:b1:93:
04:3b:3e:6e:36:a9:72:2d:04:c6:df:af:8a:4f:c5:63:f0:93:
89:1c:47:72:ae:be:a9:68:e8:a3:dc:eb:3c:7b:18:20:08:45:
6f:35:1d:30:cf:b9:a3:15:c0:7b:bb:03:52:61:25:44:3c:17:
df:9e:c7:66:93:f4:49:b5:f2:73:0e:16:62:3d:1d:00:3b:d2:
c8:98:a7:f4:95:c5:b3:82:83:7e:bd:f9:4a:c7:2c:c9:43:f0:
10:e1:70:37:00:5a:58:a2:ce:3c:b1:f8:7f:82:a6:98:95:c4:
c8:06:cc:7b:11:94:a5:17:bc:d8:d4:71:ec:c2:75:2c:3b:66:
0a:cd:cb:1e:24:02:61:6c:d2:e2:e9:e7:06:2a:54:d6:ed:ee:
00:f8:31:be:4c:64:de:22:12:a9:5a:ff:74:ed:87:84:2e:9d:
1b:0a:d7:0e:77:ce:85:1b:6e:39:65:ea:3f:ad:d9:4c:b0:b7:
58:a8:42:34:8b:59:08:8c:dc:a6:dd:1c:4a:4c:30:e4:b1:75:
77:1d:33:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:32 2025 by rpki-client