Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa
File: AS136123.roa (raw, json)
Hash identifier: Kz6h3RM5kLB8EDhsLKachVt70n5mSKxmSg/rD1axd54=
Subject key identifier: 74:AF:C0:AD:75:D6:4B:7D:29:07:84:EC:E6:F9:0C:66:1D:D6:1B:CF
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3379C7BA5AB58B99A359D87DE3F7642952D1BC21
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa
Signing time: Tue 10 Dec 2024 05:00:06 +0000
ROA not before: Tue 10 Dec 2024 04:55:06 +0000
ROA not after: Tue 09 Dec 2025 05:00:06 +0000
asID: 136123
IP address blocks: 103.95.162.0/24 maxlen: 24
103.98.61.0/24 maxlen: 24
2001:df1:b300::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:79:c7:ba:5a:b5:8b:99:a3:59:d8:7d:e3:f7:64:29:52:d1:bc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:06 2024 GMT
Not After : Dec 9 05:00:06 2025 GMT
Subject: CN=74AFC0AD75D64B7D290784ECE6F90C661DD61BCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d6:db:89:3e:46:c9:78:82:56:3b:03:f6:fd:
fa:19:7f:92:6c:43:fc:c5:e0:cc:07:eb:89:ea:70:
6f:9f:82:6f:be:1d:31:97:91:50:0f:12:f3:d3:a6:
32:7c:47:35:89:0e:72:ae:d1:0c:5a:79:47:5b:b8:
c9:05:98:4c:c1:7a:f6:d5:2c:7a:9e:00:8f:06:fb:
4c:9a:54:5c:5b:4e:5f:01:4a:55:8f:f6:18:fb:98:
94:be:50:85:d6:5d:e0:56:b7:47:e4:52:93:45:d6:
6d:b9:b5:80:f3:af:49:6b:f2:ac:89:58:a1:98:4d:
03:c2:8e:5a:22:f0:28:fb:ce:5f:64:60:4d:03:53:
66:e6:53:68:fe:82:18:2e:3e:29:81:27:a3:13:88:
ad:12:d8:67:c1:0f:47:84:4a:f2:13:3a:1c:05:b2:
47:7a:20:f3:bc:de:fb:40:c2:12:d0:7b:7e:c5:05:
4d:81:96:b1:e1:04:49:47:ee:7c:58:82:5a:39:84:
6e:d6:19:ec:9d:7f:03:5b:c4:d0:4f:e6:d0:02:84:
90:d6:8b:c1:aa:bc:24:77:a7:d8:e4:c1:93:4a:06:
fd:71:db:59:9c:37:82:20:b6:5d:7b:01:32:4d:8e:
b1:1b:bf:fa:47:5d:67:cf:f0:08:dc:b9:76:18:e8:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AF:C0:AD:75:D6:4B:7D:29:07:84:EC:E6:F9:0C:66:1D:D6:1B:CF
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136123.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.162.0/24
103.98.61.0/24
IPv6:
2001:df1:b300::/48
Signature Algorithm: sha256WithRSAEncryption
48:5d:e9:49:62:ff:92:ac:5f:59:a3:b9:89:72:0d:48:72:c5:
85:89:03:e7:35:cf:09:27:da:76:97:ed:f9:0b:a8:a0:17:ee:
44:fb:c0:b8:11:51:44:7a:6c:d2:76:95:6d:c7:ec:2d:13:5b:
12:f0:e4:f1:e6:1b:9f:33:a4:23:22:7b:fb:ed:4b:1a:c1:55:
c3:f7:9b:48:64:25:f7:28:09:a9:f5:cd:ab:77:13:34:77:79:
48:49:d0:79:f7:92:ef:61:07:37:15:74:bc:78:8c:8d:0f:b3:
54:c0:e4:ef:a6:48:b5:5d:56:a6:99:a3:f9:56:8a:14:cc:41:
07:b1:c3:14:3a:ab:e5:c2:5e:b9:3a:5f:4e:0d:0a:ca:46:d6:
07:30:e7:68:2d:52:d9:57:50:64:22:18:d7:7c:8c:6c:cc:2d:
64:7d:3f:5e:46:cc:99:65:6a:86:80:7c:14:44:63:4f:fa:bc:
ec:10:b5:f1:a7:0b:20:65:1e:45:02:e4:65:3a:ed:a9:55:95:
66:ef:70:91:1f:d1:89:89:bf:6f:92:c5:d8:16:9c:41:96:ae:
59:38:48:f5:61:de:d7:86:6d:ab:39:5c:ca:49:8c:47:8b:57:
ca:cd:9b:bb:4f:82:0e:4f:e7:75:8f:ca:dc:14:aa:95:e5:c9:
32:3a:60:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:08 2025 by rpki-client