Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa
File: AS137315.roa (raw, json)
Hash identifier: EJ/AYGo2ycGfWETr14I6+GCdGz7PsxINmPysZyMZhbE=
Subject key identifier: DD:A2:31:91:93:0F:EE:95:84:E3:45:22:6C:58:A3:90:BE:53:C7:96
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 50D867FB561824A80E32D775CDEB7EEC1666F294
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa
Signing time: Tue 10 Dec 2024 05:00:15 +0000
ROA not before: Tue 10 Dec 2024 04:55:15 +0000
ROA not after: Tue 09 Dec 2025 05:00:15 +0000
asID: 137315
IP address blocks: 103.164.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:d8:67:fb:56:18:24:a8:0e:32:d7:75:cd:eb:7e:ec:16:66:f2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:15 2024 GMT
Not After : Dec 9 05:00:15 2025 GMT
Subject: CN=DDA23191930FEE9584E345226C58A390BE53C796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:59:54:1d:68:19:f8:71:59:4d:09:8e:6a:d2:
11:c1:36:a0:ab:72:1c:e7:87:dc:46:5b:51:0c:89:
4f:e7:60:fb:cf:bb:a0:28:e1:74:22:58:66:73:a4:
60:f1:d0:21:16:95:9b:c7:35:54:2f:71:a2:1f:6d:
2f:11:a6:8e:7c:b8:58:fe:af:91:a5:86:c3:a5:4f:
0b:d3:05:1b:14:17:d0:d8:d5:34:9c:63:e9:67:5c:
30:04:f2:02:98:b9:70:76:01:22:d1:39:82:79:1c:
3d:c6:12:f1:cb:c7:89:79:f6:aa:10:cd:9e:b4:65:
2f:82:45:c3:05:16:d8:56:8f:39:74:dc:d2:55:38:
1f:d6:0a:04:4e:f1:03:71:26:69:ca:34:da:00:3b:
7f:ea:92:6a:30:62:05:ac:01:70:83:d8:33:b7:4d:
dc:a6:2c:dd:d4:71:d3:55:b9:b4:60:f9:35:70:04:
e2:3c:d3:d2:60:16:73:b5:ef:5b:9f:6b:3c:03:c7:
ab:ab:29:eb:5e:65:26:45:05:95:ed:12:28:e4:c1:
70:e7:d6:ab:eb:ec:82:82:46:09:56:9f:9e:ea:67:
db:98:b2:ca:82:5d:3c:74:d2:d9:3e:ba:36:ef:3a:
e6:40:aa:46:ae:cd:24:08:f4:49:09:c0:3c:3f:f3:
d6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A2:31:91:93:0F:EE:95:84:E3:45:22:6C:58:A3:90:BE:53:C7:96
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137315.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.60.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5f:a9:a7:4b:4b:73:e3:14:1e:a7:7a:3e:8e:2c:22:cc:a3:
8e:7f:82:7a:a0:4f:18:99:c4:67:5d:77:2e:f1:04:fa:c5:31:
82:02:dc:7b:84:2f:e4:0d:a0:83:82:b9:2b:1d:a7:c6:f2:0c:
2f:6d:6e:af:6d:a3:66:bf:80:03:d5:9d:e2:5d:01:e9:c7:3d:
d3:89:53:dc:fb:ca:1f:28:ed:92:49:1b:ad:93:a2:8e:d5:c4:
a2:9b:bc:ab:c8:d4:a6:b5:69:5f:5d:b9:59:27:75:50:df:4d:
ce:47:ca:5c:60:30:2d:0f:8a:66:7f:14:37:12:00:75:e8:18:
a4:5d:55:7c:3c:91:7e:f1:be:9a:78:ae:25:49:28:64:d5:04:
d3:26:38:68:9f:40:63:13:17:df:3b:6a:35:58:39:94:da:82:
b7:00:31:d0:e0:ec:4e:87:92:67:f7:7f:43:31:35:19:9c:dc:
dc:60:78:f6:e4:9b:ac:2e:c2:f4:6c:a7:3f:91:4c:be:92:1d:
fa:18:d3:67:2b:e8:28:9d:90:f3:65:cc:04:db:81:54:67:1d:
53:ef:b9:7e:0a:52:51:03:95:07:cd:5a:6c:c5:de:be:9e:13:
2a:c3:23:f5:a1:e4:ea:c6:b1:95:1a:3d:a2:30:01:5b:df:62:
d7:31:34:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:22 2025 by rpki-client