Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa
File: AS137311.roa (raw, json)
Hash identifier: RnZIJp7EbQA9ytYNwXTQx5Nex9yOXBjilE8p0v3ZRxo=
Subject key identifier: 8A:43:0B:38:24:7F:FA:D9:B7:39:F9:F3:3C:CA:8C:0B:10:38:9E:26
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3B897FFB8DDE0150AB912AFFD2898E0014BCD377
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa
Signing time: Tue 31 Dec 2024 01:55:51 +0000
ROA not before: Tue 31 Dec 2024 01:50:51 +0000
ROA not after: Tue 30 Dec 2025 01:55:51 +0000
asID: 137311
IP address blocks: 103.232.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:89:7f:fb:8d:de:01:50:ab:91:2a:ff:d2:89:8e:00:14:bc:d3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 31 01:50:51 2024 GMT
Not After : Dec 30 01:55:51 2025 GMT
Subject: CN=8A430B38247FFAD9B739F9F33CCA8C0B10389E26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:11:ef:e0:ec:83:02:e2:a0:03:85:7d:dd:7e:
5f:17:cb:92:49:15:35:c9:67:7e:ef:aa:57:ff:0c:
26:a2:d9:7e:d1:e8:45:7c:21:68:3e:51:92:42:04:
84:48:70:5c:80:f2:8a:9c:97:46:df:d8:40:a8:97:
a1:98:81:29:87:40:f0:a5:68:c2:eb:90:13:67:4a:
95:37:c9:39:c0:dd:04:29:2e:13:65:67:7a:38:09:
21:89:2c:9b:53:49:17:51:55:c8:13:38:12:13:27:
0c:ed:24:74:e9:b7:18:3f:27:2d:05:ea:eb:d5:67:
d7:2a:8f:7a:d0:6d:0b:c1:81:7c:9a:06:9d:5b:f0:
a1:6f:24:30:6b:50:92:09:de:e6:70:f7:cb:f1:07:
54:bc:e8:26:aa:e9:92:35:c7:76:e2:f5:d5:aa:9f:
b8:28:4a:34:af:e1:f7:5b:ac:ab:77:46:41:14:51:
98:9e:59:8b:4e:06:64:ff:7a:44:ef:6e:38:c1:dc:
ef:fd:4b:30:96:9c:80:68:30:26:9e:f1:16:72:2c:
c4:1d:a5:fd:b4:98:ee:82:d2:9b:22:7a:bc:1f:43:
52:09:65:0d:cb:f6:23:ec:bd:8c:ec:44:84:ab:cd:
e3:fc:d7:db:d0:29:12:15:6e:96:a8:af:4d:d8:4f:
09:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:43:0B:38:24:7F:FA:D9:B7:39:F9:F3:3C:CA:8C:0B:10:38:9E:26
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.232.64.0/22
Signature Algorithm: sha256WithRSAEncryption
39:d8:d8:41:81:26:3d:f2:a0:80:e1:86:3b:da:f7:90:4e:b4:
e8:0c:7c:11:5a:58:68:d5:89:41:01:b8:d8:2e:2e:21:19:ac:
d2:0c:69:03:17:b6:01:02:b6:b9:1d:05:74:49:a8:d9:a0:06:
8b:ef:8b:0b:23:df:e7:93:54:28:d3:38:6f:fb:8f:1a:7f:9d:
e0:f6:7b:88:91:d8:f5:e4:ee:98:94:fe:a3:19:e2:fd:5f:72:
73:18:03:d4:18:2c:c0:0b:da:e6:88:3b:33:46:71:f9:df:2f:
36:ff:1c:02:42:46:9b:23:d6:96:86:22:f1:44:77:3f:57:f5:
fc:5e:cf:84:c2:46:d9:e1:b8:43:ca:b9:8f:48:c1:9d:98:d7:
9e:29:2f:f5:f8:e0:f5:92:b7:5d:eb:1e:57:af:2d:08:1b:2d:
e2:2b:24:50:1e:c7:1f:68:a9:e1:e9:91:94:d2:5f:0f:66:07:
96:8c:35:fc:98:7a:91:91:d0:1d:a9:35:12:6e:f8:62:33:9a:
eb:81:62:78:a0:e3:ac:a6:45:90:ba:0c:1c:80:68:ce:0f:e4:
c6:57:b2:40:1e:85:88:68:71:ba:e2:a2:72:0f:9d:10:e3:4d:
5d:86:26:87:45:7d:6a:ce:69:b4:51:31:69:de:14:a6:cc:91:
63:23:61:65
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUO4l/+43eAVCrkSr/0omOABS803cwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIzMTAxNTA1MVoX
DTI1MTIzMDAxNTU1MVowMzExMC8GA1UEAxMoOEE0MzBCMzgyNDdGRkFEOUI3MzlG
OUYzM0NDQThDMEIxMDM4OUUyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMwR7+DsgwLioAOFfd1+XxfLkkkVNclnfu+qV/8MJqLZftHoRXwhaD5RkkIE
hEhwXIDyipyXRt/YQKiXoZiBKYdA8KVowuuQE2dKlTfJOcDdBCkuE2VnejgJIYks
m1NJF1FVyBM4EhMnDO0kdOm3GD8nLQXq69Vn1yqPetBtC8GBfJoGnVvwoW8kMGtQ
kgne5nD3y/EHVLzoJqrpkjXHduL11aqfuChKNK/h91usq3dGQRRRmJ5Zi04GZP96
RO9uOMHc7/1LMJacgGgwJp7xFnIsxB2l/bSY7oLSmyJ6vB9DUgllDcv2I+y9jOxE
hKvN4/zX29ApEhVulqivTdhPCZsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSKQws4
JH/62bc5+fM8yowLEDieJjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAmfoQDANBgkqhkiG9w0BAQsFAAOCAQEAOdjYQYEmPfKggOGGO9r3
kE606Ax8EVpYaNWJQQG42C4uIRms0gxpAxe2AQK2uR0FdEmo2aAGi++LCyPf55NU
KNM4b/uPGn+d4PZ7iJHY9eTumJT+oxni/V9ycxgD1BgswAva5og7M0Zx+d8vNv8c
AkJGmyPWloYi8UR3P1f1/F7PhMJG2eG4Q8q5j0jBnZjXnikv9fjg9ZK3XeseV68t
CBst4iskUB7HH2ip4emRlNJfD2YHlow1/Jh6kZHQHak1Em74YjOa64FieKDjrKZF
kLoMHIBozg/kxleyQB6FiGhxuuKicg+dEONNXYYmh0V9as5ptFExad4UpsyRYyNh
ZQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:23 2025 by rpki-client