Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa
File: AS137299.roa (raw, json)
Hash identifier: llnGXML2nIyrozHWX4VAcrHOnMJLfE3w+7zQ7Fkxzj0=
Subject key identifier: AA:37:52:63:8A:A1:56:B6:1F:A1:C8:01:74:9E:79:A6:49:C1:E7:7C
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 02664C4C6DACFE6AA3FA29537A61FC027879CF87
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa
Signing time: Tue 10 Dec 2024 05:00:17 +0000
ROA not before: Tue 10 Dec 2024 04:55:17 +0000
ROA not after: Tue 09 Dec 2025 05:00:17 +0000
asID: 137299
IP address blocks: 103.107.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:66:4c:4c:6d:ac:fe:6a:a3:fa:29:53:7a:61:fc:02:78:79:cf:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:17 2024 GMT
Not After : Dec 9 05:00:17 2025 GMT
Subject: CN=AA3752638AA156B61FA1C801749E79A649C1E77C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:4a:93:16:8c:ce:20:81:c0:c7:a5:5f:f1:
35:ec:0d:fc:21:44:9d:98:d1:51:a9:1f:b3:b7:06:
6e:3d:7b:2b:31:fa:5c:2f:e0:a0:b3:1a:fc:76:ce:
b0:9a:15:14:c4:d9:f3:15:c0:5b:5f:64:83:a3:c0:
11:3c:7b:43:21:b4:c1:ab:2f:6d:8d:c6:8b:31:bb:
8d:b6:43:a9:cc:64:66:87:a7:f3:8d:77:56:8a:d3:
4d:07:eb:5a:4f:33:d8:82:f0:37:26:41:81:8a:c1:
79:92:aa:c4:36:50:dc:54:95:3d:c9:34:1d:9d:83:
89:74:46:97:f9:c4:a9:1a:64:49:a1:fd:46:4b:cf:
de:c6:ad:47:d3:17:87:7a:88:3c:a0:da:cb:da:5b:
14:4d:80:6d:d3:fb:21:47:2f:c7:43:7d:e5:23:88:
6a:6d:88:91:48:8b:1e:69:01:ce:f2:ee:f0:61:7a:
1b:41:59:af:8d:90:51:24:9c:b3:d7:a7:4a:d9:f0:
3d:dd:8f:a6:43:c1:61:ff:fd:3b:ec:43:2e:db:cd:
ac:43:74:11:d3:26:7f:13:c2:42:8b:a1:6b:f4:e1:
c6:87:6e:a6:71:21:8b:91:62:3b:4e:fd:c8:f7:98:
c2:14:4a:b0:9e:88:54:1d:18:32:63:7e:f6:ca:c2:
c7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:37:52:63:8A:A1:56:B6:1F:A1:C8:01:74:9E:79:A6:49:C1:E7:7C
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.186.0/24
Signature Algorithm: sha256WithRSAEncryption
29:91:f5:67:1d:3d:27:ac:d7:79:de:97:27:5a:da:c1:6a:52:
ce:80:db:d8:0d:a2:0b:dc:4a:48:64:85:45:f6:b6:55:f8:fb:
54:e7:be:d7:fc:80:e2:92:b2:96:07:ce:87:99:3f:b9:e7:90:
d5:4c:7f:a6:a3:0b:2f:3c:90:22:6e:d8:70:0c:48:3b:eb:d6:
de:7f:6e:7a:4a:69:c1:b1:6f:77:7b:b1:6e:4a:24:74:de:f0:
b8:58:64:71:09:28:fa:b9:14:f6:f9:84:d3:da:f1:60:17:72:
c6:9e:27:c6:3d:65:88:b8:67:9a:63:a5:84:eb:b4:3e:7f:83:
86:ce:58:ca:07:36:53:6a:ea:f4:1c:35:e0:45:2a:ee:88:c2:
11:aa:8a:13:cf:7b:79:0e:68:27:6b:73:d8:ad:a0:04:1e:67:
4f:2e:74:58:97:01:ea:7a:33:32:80:67:92:86:f1:2a:b8:f6:
f9:bf:8f:ab:e0:33:d4:b7:dc:ce:eb:32:43:9e:84:e7:66:2b:
ba:58:be:15:88:a4:e9:99:9e:e9:ea:06:55:01:eb:e4:a2:19:
bc:ce:9b:32:68:cd:44:8e:9b:fe:3a:e4:23:8e:bc:2e:14:e6:
26:cf:6f:4f:7d:ef:09:23:9a:4a:ba:43:73:28:8b:1b:2d:42:
ac:a8:87:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:40 2025 by rpki-client