Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137367.roa
File: AS137367.roa (raw, json)
Hash identifier: jzkPGVN0KrThdP61+6FWIzFGWiFB+Eo9/zlFJJ7WMeo=
Subject key identifier: 14:9D:30:CD:DF:92:10:DE:3A:74:67:67:73:23:3D:5C:60:96:BC:95
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 430699192D73068865FD55C18210FB1275CBF6F0
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137367.roa
Signing time: Fri 21 Feb 2025 11:00:00 +0000
ROA not before: Fri 21 Feb 2025 10:55:00 +0000
ROA not after: Fri 20 Feb 2026 11:00:00 +0000
asID: 137367
IP address blocks: 103.12.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:06:99:19:2d:73:06:88:65:fd:55:c1:82:10:fb:12:75:cb:f6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 21 10:55:00 2025 GMT
Not After : Feb 20 11:00:00 2026 GMT
Subject: CN=149D30CDDF9210DE3A74676773233D5C6096BC95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:84:74:96:1f:24:27:16:f7:66:46:70:2d:
12:e1:e7:06:39:7f:fe:30:e2:e3:12:76:2c:f8:12:
1e:c5:05:86:c3:c8:d5:55:69:9c:85:c7:bd:81:83:
05:1e:08:8a:38:42:ba:f7:43:83:09:e2:88:b9:5d:
6d:c0:ba:fd:fd:07:cf:0f:26:87:f1:ba:b9:64:d4:
ab:c6:a5:a5:3b:b0:f5:84:92:9a:cf:dd:82:e6:1b:
b8:c8:71:ec:82:6e:75:06:d1:1b:7d:ed:3d:61:3f:
73:6b:5c:cb:59:65:46:51:c2:c2:fd:d5:44:50:ea:
ba:a7:0f:79:12:77:3e:75:9d:ef:47:90:57:0d:32:
f9:5e:70:9a:cc:bd:21:ba:16:3d:10:d4:aa:21:45:
be:02:11:be:b3:8c:ed:9a:5a:83:b0:92:c7:9f:d0:
c8:31:c0:69:aa:14:5b:c1:cd:45:27:a4:2e:e9:19:
83:30:e4:77:ab:89:84:0b:fb:8a:0c:8f:d3:4b:a4:
3a:09:46:42:94:50:2e:b6:ba:d0:45:b5:04:27:26:
85:47:6d:8f:3d:1c:8e:20:bf:d5:43:26:80:11:70:
a8:1d:25:29:69:94:29:73:59:0b:de:f3:e6:e2:2a:
6e:8e:99:d4:63:c4:f9:2e:a3:29:b8:16:da:db:53:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9D:30:CD:DF:92:10:DE:3A:74:67:67:73:23:3D:5C:60:96:BC:95
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137367.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.12.14.0/23
Signature Algorithm: sha256WithRSAEncryption
07:71:b5:09:66:a3:dc:3f:93:bd:4b:f8:90:35:d9:68:83:eb:
91:b5:84:2d:50:62:3a:93:4a:00:aa:d1:1d:79:58:eb:c4:f5:
65:e5:7c:69:65:4d:4e:b6:4f:30:16:09:32:d6:0f:57:14:e8:
12:9d:a3:7d:ba:5d:05:11:b3:ac:a0:2d:64:98:3c:f0:f6:0b:
1f:36:16:4c:0f:fb:c7:69:94:aa:de:50:5b:ad:12:7d:87:e9:
51:01:ca:b5:ed:96:38:bf:39:1e:72:c0:6d:a8:64:0c:12:38:
04:c1:96:f1:cc:2e:a7:5e:d5:b6:9c:cc:49:44:c9:dd:19:a0:
21:40:92:04:5e:02:0f:98:b8:a2:e8:4a:70:22:0e:ce:f4:74:
a8:fd:68:94:2d:60:80:b6:50:d6:79:ac:f1:7d:c4:ae:c9:d1:
1e:1b:eb:d9:1c:a4:bf:c2:62:6e:d1:ea:0b:c3:53:a4:a5:65:
2e:5f:f4:c8:50:f8:b2:c1:91:9f:8f:d3:70:32:f6:d9:06:df:
9c:d9:e6:3e:a2:33:b9:55:be:02:19:cc:77:f7:5c:dc:a0:84:
0b:46:73:7c:25:9b:c9:79:fd:1f:8c:2d:a4:aa:c1:b8:c5:07:
c9:1d:70:e9:28:0d:d7:98:b1:d9:43:3b:b7:0e:28:6c:23:bc:
70:d7:f7:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:38 2025 by rpki-client