Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa
File: AS137352.roa (raw, json)
Hash identifier: TJzfvHSb8beiFuzqSEJUOSLsLbkjGmloqqZcSi53W0o=
Subject key identifier: 38:FC:03:EE:20:21:3E:35:1D:E4:6D:9F:30:03:60:20:C9:05:80:85
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0A9D0F489C9E28BE974477054EA76C166A3EF9AC
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa
Signing time: Tue 02 Jul 2024 08:00:00 +0000
ROA not before: Tue 02 Jul 2024 07:55:00 +0000
ROA not after: Tue 01 Jul 2025 08:00:00 +0000
asID: 137352
IP address blocks: 103.113.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:9d:0f:48:9c:9e:28:be:97:44:77:05:4e:a7:6c:16:6a:3e:f9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 2 07:55:00 2024 GMT
Not After : Jul 1 08:00:00 2025 GMT
Subject: CN=38FC03EE20213E351DE46D9F30036020C9058085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7b:8a:a3:7a:da:10:69:a6:6c:b7:b2:4e:84:
7f:c4:39:5c:46:13:94:7f:f6:85:ee:44:96:19:f8:
f0:47:92:43:d9:41:c6:3d:62:99:18:9e:83:78:f5:
e4:d0:49:57:6c:6a:bd:87:30:68:72:e3:f2:56:20:
63:b2:47:02:31:49:b2:a9:2e:4b:c5:8a:7b:e6:36:
90:21:e3:8c:2b:f1:cd:e0:13:ff:d5:16:e8:ab:6f:
26:1f:12:e6:68:7c:ff:7a:5b:e6:df:94:ad:fb:7e:
c7:e2:ae:1e:cc:93:9c:3a:40:a4:6d:85:6b:3b:69:
9a:32:ef:c1:a1:b5:91:df:3b:52:88:aa:c8:63:d9:
d4:5a:14:10:95:2d:a2:9c:f1:17:a7:4c:6b:44:21:
8b:f9:f7:dc:57:13:cf:4b:23:1d:a1:dc:6b:45:7f:
cc:7b:95:ac:df:ab:d3:24:22:58:29:1e:08:67:7a:
be:37:9f:4c:c7:62:b1:3c:d4:4c:12:9f:2d:a3:73:
7d:69:47:af:ed:ab:6d:f8:8f:9f:9d:48:f9:98:5a:
fa:6f:f5:04:2c:84:4b:40:04:e6:47:df:10:42:cb:
6a:51:93:d2:c0:b0:b1:fd:6b:81:12:37:a1:cf:43:
a3:ce:41:e2:ed:e9:2f:81:93:e9:63:3b:7d:59:64:
a7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:FC:03:EE:20:21:3E:35:1D:E4:6D:9F:30:03:60:20:C9:05:80:85
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137352.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.113.170.0/23
Signature Algorithm: sha256WithRSAEncryption
89:f3:40:fa:31:cb:f8:2b:7e:f8:ba:09:af:64:eb:58:ff:ee:
3a:5f:81:b2:46:7b:ff:56:d8:e6:61:cb:51:dd:38:96:4e:42:
de:23:ae:71:e3:ee:a5:92:70:9e:28:f7:d7:37:ba:9c:33:a9:
fd:87:dd:c0:0b:03:62:04:6e:3e:d4:35:48:3a:92:99:1d:6a:
59:87:43:eb:19:ad:48:89:59:83:78:93:b6:c0:0a:4c:c2:9d:
bb:61:65:78:c9:52:05:5c:0a:58:40:92:5f:bf:36:3f:c5:dd:
6a:ce:1f:20:99:fb:d6:07:af:01:d1:32:fc:b0:49:09:20:f7:
a3:96:fd:a8:c3:3d:81:13:6e:fa:f9:68:f9:50:65:f5:59:ce:
57:9a:de:b5:b8:7b:c8:55:97:9c:c0:66:51:79:4f:3c:8d:91:
48:62:b2:7c:47:ce:94:e8:37:49:82:84:7d:7c:b8:e6:46:93:
1c:c4:ee:95:a1:e3:01:32:c9:c6:5a:05:f6:2c:93:cc:5d:d3:
b6:4b:3f:43:5b:5a:b3:44:f0:96:61:f2:36:ab:d3:07:bf:b7:
a2:c5:4e:fb:25:c4:b3:40:35:ed:1c:19:d5:5c:a7:e8:fe:ec:
99:3c:89:65:0f:1a:fe:0f:fc:1e:6b:62:6c:3b:a5:ee:50:0c:
c2:11:39:bb
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUCp0PSJyeKL6XRHcFTqdsFmo++awwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA3NTUwMFoX
DTI1MDcwMTA4MDAwMFowMzExMC8GA1UEAxMoMzhGQzAzRUUyMDIxM0UzNTFERTQ2
RDlGMzAwMzYwMjBDOTA1ODA4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMN7iqN62hBppmy3sk6Ef8Q5XEYTlH/2he5Elhn48EeSQ9lBxj1imRieg3j1
5NBJV2xqvYcwaHLj8lYgY7JHAjFJsqkuS8WKe+Y2kCHjjCvxzeAT/9UW6KtvJh8S
5mh8/3pb5t+Urft+x+KuHsyTnDpApG2FaztpmjLvwaG1kd87UoiqyGPZ1FoUEJUt
opzxF6dMa0Qhi/n33FcTz0sjHaHca0V/zHuVrN+r0yQiWCkeCGd6vjefTMdisTzU
TBKfLaNzfWlHr+2rbfiPn51I+Zha+m/1BCyES0AE5kffEELLalGT0sCwsf1rgRI3
oc9Do85B4u3pL4GT6WM7fVlkpz0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ4/APu
ICE+NR3kbZ8wA2AgyQWAhTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM1Mi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWdxqjANBgkqhkiG9w0BAQsFAAOCAQEAifNA+jHL+Ct++LoJr2Tr
WP/uOl+BskZ7/1bY5mHLUd04lk5C3iOucePupZJwnij31ze6nDOp/YfdwAsDYgRu
PtQ1SDqSmR1qWYdD6xmtSIlZg3iTtsAKTMKdu2FleMlSBVwKWECSX782P8Xdas4f
IJn71gevAdEy/LBJCSD3o5b9qMM9gRNu+vlo+VBl9VnOV5retbh7yFWXnMBmUXlP
PI2RSGKyfEfOlOg3SYKEfXy45kaTHMTulaHjATLJxloF9iyTzF3Ttks/Q1tas0Tw
lmHyNqvTB7+3osVO+yXEs0A17RwZ1Vyn6P7smTyJZQ8a/g/8HmtibDul7lAMwhE5
uw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:24 2025 by rpki-client