Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa
File: AS136873.roa (raw, json)
Hash identifier: YlpZJv5EMMJV3YPnuee/HaYQK92elJ6+5g6JUEQbJFk=
Subject key identifier: 0D:78:68:33:FB:CF:E9:97:A2:20:59:F0:3A:45:2B:ED:28:53:29:D0
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3B73A5449BBDDF6F31DEF5A3106CCAABE7D6BEEA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa
Signing time: Tue 13 Aug 2024 09:00:00 +0000
ROA not before: Tue 13 Aug 2024 08:55:00 +0000
ROA not after: Tue 12 Aug 2025 09:00:00 +0000
asID: 136873
IP address blocks: 103.75.84.0/23 maxlen: 24
103.165.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:73:a5:44:9b:bd:df:6f:31:de:f5:a3:10:6c:ca:ab:e7:d6:be:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 13 08:55:00 2024 GMT
Not After : Aug 12 09:00:00 2025 GMT
Subject: CN=0D786833FBCFE997A22059F03A452BED285329D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:34:0f:a7:ea:05:36:9a:d7:93:7e:e0:00:27:
89:4c:80:41:c9:1c:6c:64:15:10:6e:14:0f:fc:09:
14:21:7f:98:a9:6e:de:8c:7f:bf:a3:95:d7:d0:ba:
4b:95:ea:c1:31:e7:9a:58:16:a0:cd:80:74:e8:9b:
03:0a:62:60:0d:93:29:2c:1f:c0:1f:d2:13:74:97:
6d:47:2b:10:d1:90:dc:8c:95:77:3e:2f:f4:c7:31:
61:72:06:52:05:20:5b:9a:f0:11:c6:70:24:78:5d:
e1:15:28:7e:52:1e:64:81:ff:db:c0:21:12:3e:e2:
b6:dd:f4:a6:5b:78:88:aa:6f:82:8e:db:cd:9d:f9:
03:58:b6:46:86:85:9a:fe:ef:06:51:59:e8:a1:82:
8a:aa:0f:1b:4e:16:11:ec:8b:0d:b5:cf:e2:a2:7e:
5f:8f:97:c6:03:b8:8b:81:30:2a:8f:17:11:7a:24:
76:62:3b:88:16:22:00:e5:8a:a4:8f:32:ce:12:32:
2a:29:20:57:37:18:d9:3f:af:7a:8e:82:2b:3e:9b:
d8:d0:dd:ba:4f:e9:f1:97:55:c6:f5:0a:29:3a:40:
2b:f2:07:5a:6c:03:0a:5a:3b:e8:69:bd:c0:5c:6f:
3c:93:15:3f:01:82:2e:d6:6f:5d:26:6c:6c:f5:1c:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:78:68:33:FB:CF:E9:97:A2:20:59:F0:3A:45:2B:ED:28:53:29:D0
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136873.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.84.0/23
103.165.156.0/23
Signature Algorithm: sha256WithRSAEncryption
37:a4:01:7c:c9:ee:0b:40:9e:2f:92:1a:cd:a7:fa:d2:a8:fc:
bd:09:4a:05:6d:a8:67:2f:46:19:56:ce:6d:5c:72:91:7e:71:
d1:00:dd:8d:74:52:c2:ac:b0:18:b9:c8:c7:d8:8e:26:35:33:
45:05:98:e0:c3:45:c0:59:19:0b:34:db:82:5b:16:e7:76:21:
56:8a:8a:1a:53:e5:25:3e:66:a1:35:82:22:d7:81:c9:bf:04:
75:5f:c1:59:58:e9:a6:60:cb:f4:b4:a4:f5:a2:79:3d:41:94:
77:d6:b0:07:70:4b:3e:bb:ab:b5:ad:fb:45:b7:39:32:89:cd:
b0:14:13:94:ce:e7:39:c0:02:09:21:08:f8:5f:f2:b3:90:54:
93:77:0c:33:1f:bc:a9:45:8d:ce:15:91:fa:d7:37:6b:bb:c1:
c6:32:17:ca:df:bd:13:79:7c:50:91:29:c4:68:8f:2f:5c:a0:
ab:01:a8:08:e9:62:28:7c:c4:db:b8:1e:f7:45:da:3f:2b:7d:
02:17:df:e8:c8:ba:8b:ef:c9:64:54:e7:c5:2d:b8:31:c3:0b:
0b:0a:b6:60:66:fc:6b:c1:84:97:b7:f5:1d:d7:f6:8c:5c:65:
a2:56:26:2d:da:19:59:5f:b6:62:8d:da:9c:d4:c8:c3:e6:20:
4e:26:fa:ae
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUO3OlRJu9328x3vWjEGzKq+fWvuowDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMzA4NTUwMFoX
DTI1MDgxMjA5MDAwMFowMzExMC8GA1UEAxMoMEQ3ODY4MzNGQkNGRTk5N0EyMjA1
OUYwM0E0NTJCRUQyODUzMjlEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALs0D6fqBTaa15N+4AAniUyAQckcbGQVEG4UD/wJFCF/mKlu3ox/v6OV19C6
S5XqwTHnmlgWoM2AdOibAwpiYA2TKSwfwB/SE3SXbUcrENGQ3IyVdz4v9McxYXIG
UgUgW5rwEcZwJHhd4RUoflIeZIH/28AhEj7itt30plt4iKpvgo7bzZ35A1i2RoaF
mv7vBlFZ6KGCiqoPG04WEeyLDbXP4qJ+X4+XxgO4i4EwKo8XEXokdmI7iBYiAOWK
pI8yzhIyKikgVzcY2T+veo6CKz6b2NDduk/p8ZdVxvUKKTpAK/IHWmwDClo76Gm9
wFxvPJMVPwGCLtZvXSZsbPUctBMCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQNeGgz
+8/pl6IgWfA6RSvtKFMp0DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjg3My5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw
EgQCAAEwDAMEAWdLVAMEAWelnDANBgkqhkiG9w0BAQsFAAOCAQEAN6QBfMnuC0Ce
L5Iazaf60qj8vQlKBW2oZy9GGVbObVxykX5x0QDdjXRSwqywGLnIx9iOJjUzRQWY
4MNFwFkZCzTbglsW53YhVoqKGlPlJT5moTWCIteByb8EdV/BWVjppmDL9LSk9aJ5
PUGUd9awB3BLPrurta37Rbc5MonNsBQTlM7nOcACCSEI+F/ys5BUk3cMMx+8qUWN
zhWR+tc3a7vBxjIXyt+9E3l8UJEpxGiPL1ygqwGoCOliKHzE27ge90XaPyt9Ahff
6Mi6i+/JZFTnxS24McMLCwq2YGb8a8GEl7f1Hdf2jFxlolYmLdoZWV+2Yo3anNTI
w+YgTib6rg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:32 2025 by rpki-client