Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa
File: AS138091.roa (raw, json)
Hash identifier: rvtOU2+F2CkL8is7ymU+tX9oEQFaDNFJyFQ+ohC5m90=
Subject key identifier: 78:FC:7B:7E:2F:83:5F:17:12:F4:45:AE:E8:26:7B:A0:CF:8E:E8:87
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 561459864A0743265EBA8166EB3F10B9D4B06583
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa
Signing time: Tue 10 Dec 2024 05:00:22 +0000
ROA not before: Tue 10 Dec 2024 04:55:22 +0000
ROA not after: Tue 09 Dec 2025 05:00:22 +0000
asID: 138091
IP address blocks: 103.218.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:14:59:86:4a:07:43:26:5e:ba:81:66:eb:3f:10:b9:d4:b0:65:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:22 2024 GMT
Not After : Dec 9 05:00:22 2025 GMT
Subject: CN=78FC7B7E2F835F1712F445AEE8267BA0CF8EE887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:d1:4e:bf:f8:72:f4:96:ef:a7:d6:7e:87:
82:17:71:a9:05:2d:c2:f3:f8:bf:69:97:6b:b3:7e:
12:a1:2f:8a:d8:d4:f4:d0:43:46:83:c3:50:11:da:
4c:e1:5e:4e:b8:ab:d3:d1:79:8a:0f:07:ef:d0:c3:
6e:fb:50:12:29:23:0c:87:86:9a:dc:f5:54:52:9c:
39:95:39:ba:bf:4e:e7:7b:0c:1e:cf:81:b3:bd:29:
ca:50:95:09:c5:24:ca:f9:28:77:02:90:68:91:a6:
3a:85:54:80:0e:88:c6:32:5a:c7:0d:20:3b:97:e1:
11:c7:56:d2:87:8d:cc:95:94:06:fd:16:89:eb:cc:
8f:7f:a7:f9:da:38:85:b1:8b:f2:dd:48:53:e9:23:
5f:01:f8:f5:79:73:95:e1:84:05:9f:53:19:23:f7:
d4:da:b6:32:1b:63:66:3a:3d:1c:7c:7b:2c:8f:8b:
00:46:d2:71:12:31:64:6f:c2:e8:ca:40:d0:2d:9e:
d5:69:35:5f:04:cf:cc:c7:51:aa:3b:de:48:b7:55:
21:c7:70:9a:80:df:9e:43:19:be:b9:c9:fd:44:3e:
d6:57:92:64:34:f0:f1:8c:40:3d:cc:a5:7c:4c:a1:
7e:a4:fa:26:91:a9:54:ac:ba:fb:6c:9b:0e:bc:7c:
c4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FC:7B:7E:2F:83:5F:17:12:F4:45:AE:E8:26:7B:A0:CF:8E:E8:87
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.218.165.0/24
Signature Algorithm: sha256WithRSAEncryption
99:76:62:f1:34:a3:57:35:41:79:72:c9:bc:21:f1:bd:96:c9:
9f:2c:ae:29:95:f2:62:1f:f7:99:7d:99:21:a7:91:5c:66:e2:
ee:1d:8e:0d:e0:2b:01:fd:1e:04:d7:85:33:4e:58:fb:e4:d2:
51:dc:a9:88:e2:ae:a1:f7:65:12:84:39:91:b7:ed:57:44:c4:
ef:1a:10:96:d3:fa:5d:e8:4f:79:3a:1c:d1:87:16:ac:94:7c:
7c:e2:36:99:c4:15:33:1a:6f:1f:64:a6:21:a8:7d:53:0a:00:
37:56:39:ca:82:39:a1:07:93:2f:5a:ee:f0:d9:c2:8a:2f:e7:
b5:42:99:61:04:a6:6f:a6:90:b8:70:59:e7:71:d1:5d:12:60:
1d:ab:57:0a:85:0e:4e:29:0f:5d:48:9f:e4:3d:87:67:83:5a:
bf:c3:84:fb:3a:67:38:00:71:8a:84:b6:12:3a:69:12:39:a2:
1a:f0:49:9d:22:0a:9b:5d:a2:9f:90:69:14:ab:98:7c:fa:f1:
65:b4:61:55:81:dc:ca:e5:c3:29:05:f8:ea:bd:93:97:4a:9e:
9a:45:8b:e5:d4:f3:e7:03:49:66:6d:3d:db:f0:d4:c7:0a:06:
5f:a7:dc:ab:a4:f2:c4:29:c1:b8:9e:8f:72:41:1f:3f:fc:d0:
a1:aa:1a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:51 2025 by rpki-client