Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa
File: AS134630.roa (raw, json)
Hash identifier: yW1fWPOf4Wpgt2naxMqnEVRIOWKBaUnD3/ESMp3kGR4=
Subject key identifier: 22:E9:5F:EF:64:E2:AF:B3:45:B5:EE:9E:D2:1B:BC:71:86:53:BB:01
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7D11CB8DD1A0B6E58A760F6F06BED734E635B6F8
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa
Signing time: Thu 05 Sep 2024 03:00:00 +0000
ROA not before: Thu 05 Sep 2024 02:55:00 +0000
ROA not after: Thu 04 Sep 2025 03:00:00 +0000
asID: 134630
IP address blocks: 49.156.20.0/23 maxlen: 24
49.156.22.0/23 maxlen: 24
103.200.16.0/23 maxlen: 24
103.200.18.0/23 maxlen: 24
2403:8680::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:11:cb:8d:d1:a0:b6:e5:8a:76:0f:6f:06:be:d7:34:e6:35:b6:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 5 02:55:00 2024 GMT
Not After : Sep 4 03:00:00 2025 GMT
Subject: CN=22E95FEF64E2AFB345B5EE9ED21BBC718653BB01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:23:07:40:13:06:93:c2:c3:7c:c4:f5:6f:31:
f6:7e:1e:8d:9f:49:44:01:bd:15:5c:c0:64:28:41:
9e:61:5e:22:aa:75:67:fa:90:c4:48:3a:7d:39:14:
b6:63:09:4b:10:fe:6a:c9:91:ce:11:12:da:e0:90:
9e:69:26:df:d6:d7:64:24:1d:ac:d9:d1:48:a0:cc:
5c:24:c5:1f:53:c3:47:fa:87:52:ba:28:75:c8:2f:
ec:db:64:44:09:86:eb:0a:6d:e3:18:bc:70:b3:bd:
80:b4:fb:6b:11:16:e4:73:98:b5:be:4b:37:4d:ad:
a5:4a:0f:66:cb:91:44:b5:6f:33:c8:ea:38:6b:94:
15:d4:41:4b:11:9a:45:5b:17:b6:e6:9e:9b:62:6a:
9c:ad:7e:ad:0f:18:b7:e8:1e:78:04:d1:08:63:64:
ad:9c:e9:55:5b:56:cc:c4:a3:80:bc:0c:3e:4b:5f:
f6:29:06:4f:73:3c:fa:4a:41:6f:60:98:44:a6:91:
c4:8a:bb:3e:8e:9f:61:be:f2:11:30:18:d5:53:b6:
87:be:13:c9:ec:77:24:ae:69:25:ac:a2:2a:bd:39:
5f:64:d9:4b:9c:a2:b4:7d:4d:10:69:d1:4e:31:62:
3e:e6:cb:10:06:ef:ad:56:8b:de:79:bc:d6:85:34:
23:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E9:5F:EF:64:E2:AF:B3:45:B5:EE:9E:D2:1B:BC:71:86:53:BB:01
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.156.20.0/22
103.200.16.0/22
IPv6:
2403:8680::/32
Signature Algorithm: sha256WithRSAEncryption
66:a3:7b:89:8a:ad:56:93:70:4c:8c:74:13:5a:d3:f3:60:2a:
89:73:9b:b9:a4:72:92:0c:65:a8:63:87:f9:58:5a:69:8b:7f:
57:43:b1:7a:85:40:2b:cc:b6:48:64:1b:df:3b:05:97:09:93:
67:66:eb:15:94:ea:b1:92:ba:16:53:9f:3b:64:42:0f:dd:76:
5b:35:fd:c8:13:37:48:0a:48:65:d0:7e:65:2d:00:f5:90:11:
31:6e:63:41:0a:85:b4:60:9c:21:4c:59:3c:4d:63:d7:0a:1b:
d7:e9:c8:63:f4:5c:0e:d9:f5:32:40:a5:7b:21:6d:b4:2a:a2:
40:a7:b3:57:ad:cc:19:d8:4d:5d:07:94:0d:dd:60:e1:26:d1:
01:b6:39:35:df:23:76:30:7e:4f:be:79:d5:9f:65:73:61:9d:
e2:43:98:94:3e:7f:26:b4:b3:45:52:63:13:f3:74:66:c9:ac:
3b:0e:11:51:91:0b:f0:e5:57:d0:cf:a5:b6:62:34:e8:aa:71:
eb:8c:b0:f2:6a:67:c4:54:17:3d:a8:90:5c:77:03:a8:99:46:
c4:9b:d6:93:0d:ed:b9:ad:5b:2e:4c:81:f8:70:23:eb:53:7c:
9d:c3:96:00:7f:6d:a9:15:81:19:d4:0a:37:0d:93:dd:78:da:
1b:4c:87:a3
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIUfRHLjdGgtuWKdg9vBr7XNOY1tvgwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNTAyNTUwMFoX
DTI1MDkwNDAzMDAwMFowMzExMC8GA1UEAxMoMjJFOTVGRUY2NEUyQUZCMzQ1QjVF
RTlFRDIxQkJDNzE4NjUzQkIwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALMjB0ATBpPCw3zE9W8x9n4ejZ9JRAG9FVzAZChBnmFeIqp1Z/qQxEg6fTkU
tmMJSxD+asmRzhES2uCQnmkm39bXZCQdrNnRSKDMXCTFH1PDR/qHUroodcgv7Ntk
RAmG6wpt4xi8cLO9gLT7axEW5HOYtb5LN02tpUoPZsuRRLVvM8jqOGuUFdRBSxGa
RVsXtuaem2JqnK1+rQ8Yt+geeATRCGNkrZzpVVtWzMSjgLwMPktf9ikGT3M8+kpB
b2CYRKaRxIq7Po6fYb7yETAY1VO2h74Tyex3JK5pJayiKr05X2TZS5yitH1NEGnR
TjFiPubLEAbvrVaL3nm81oU0I/cCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQi6V/v
ZOKvs0W17p7SG7xxhlO7ATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDYzMC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw
EgQCAAEwDAMEAjGcFAMEAmfIEDANBAIAAjAHAwUAJAOGgDANBgkqhkiG9w0BAQsF
AAOCAQEAZqN7iYqtVpNwTIx0E1rT82AqiXObuaRykgxlqGOH+VhaaYt/V0OxeoVA
K8y2SGQb3zsFlwmTZ2brFZTqsZK6FlOfO2RCD912WzX9yBM3SApIZdB+ZS0A9ZAR
MW5jQQqFtGCcIUxZPE1j1wob1+nIY/RcDtn1MkCleyFttCqiQKezV63MGdhNXQeU
Dd1g4SbRAbY5Nd8jdjB+T7551Z9lc2Gd4kOYlD5/JrSzRVJjE/N0ZsmsOw4RUZEL
8OVX0M+ltmI06Kpx64yw8mpnxFQXPaiQXHcDqJlGxJvWkw3tua1bLkyB+HAj61N8
ncOWAH9tqRWBGdQKNw2T3XjaG0yHow==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:46 2025 by rpki-client