Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa
File: AS138109.roa (raw, json)
Hash identifier: /i20djmRdfbWexDbY4GdWO2CGBRE7bSrFnohzrhfI6Q=
Subject key identifier: 60:9C:36:B1:58:2C:55:A3:B7:51:05:31:F0:23:73:70:6F:83:1C:CC
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7A0C242B1A3D6A43AFD4A438D1328F7A92ED0AB6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa
Signing time: Thu 27 Mar 2025 08:00:00 +0000
ROA not before: Thu 27 Mar 2025 07:55:00 +0000
ROA not after: Thu 26 Mar 2026 08:00:00 +0000
asID: 138109
IP address blocks: 103.112.194.0/24 maxlen: 24
2001:df2:7940::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:0c:24:2b:1a:3d:6a:43:af:d4:a4:38:d1:32:8f:7a:92:ed:0a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 27 07:55:00 2025 GMT
Not After : Mar 26 08:00:00 2026 GMT
Subject: CN=609C36B1582C55A3B7510531F02373706F831CCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:18:e3:26:d8:f4:03:4b:f0:29:69:7b:b7:c7:
6a:61:14:18:5e:20:41:1d:6a:78:c8:5b:f1:e3:7c:
d7:d7:6e:14:b7:b9:b0:93:1e:68:91:8e:56:78:82:
c7:66:ef:84:73:fc:4e:7f:e8:d3:c1:a4:83:52:f5:
48:48:38:1b:04:45:49:22:7c:52:8b:94:27:3b:5d:
5a:28:ce:ca:9c:45:12:b1:9e:91:5d:d6:55:8b:de:
88:ac:9f:bc:14:b3:eb:72:6e:41:9a:63:22:d4:19:
5d:c7:67:35:0b:a9:dd:52:d2:99:d6:00:81:bd:0d:
9c:af:09:8e:1c:17:d7:f2:ce:dd:f4:63:82:3f:38:
c6:05:6d:6a:1b:2a:3f:65:fd:8d:2e:41:cc:2a:38:
18:0a:81:22:d5:93:88:84:ed:b1:7c:57:7a:70:e7:
eb:9e:ca:ec:bd:18:fc:f0:ea:84:30:ac:6f:c3:03:
f7:52:65:e0:02:77:40:77:78:3f:70:48:91:9c:0c:
2e:6d:34:3e:2f:92:45:f9:9a:f1:21:81:17:4b:b7:
95:c1:3a:e9:3a:ee:7e:5c:41:9e:69:9e:7a:20:6c:
72:e8:bd:70:b7:6b:1c:6c:ef:c5:dc:f7:84:8a:d0:
e9:0e:51:47:af:fe:28:9b:f1:de:67:cc:4d:e0:4e:
d6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9C:36:B1:58:2C:55:A3:B7:51:05:31:F0:23:73:70:6F:83:1C:CC
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138109.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.194.0/24
IPv6:
2001:df2:7940::/48
Signature Algorithm: sha256WithRSAEncryption
2e:3c:2e:00:9b:2c:8a:4e:97:85:a2:3d:4d:bc:58:43:ad:59:
0d:fc:41:43:25:7e:f1:bd:1c:7d:cc:bb:ec:03:72:b0:52:72:
d7:b3:9b:34:da:4d:f9:79:96:a2:21:75:f2:fc:64:84:f5:fd:
a8:7a:3d:3f:c7:e6:3b:d5:87:29:18:13:9f:62:af:02:02:23:
53:68:ae:49:70:48:8b:51:4e:52:f6:f2:9d:50:75:92:72:60:
b8:f9:7e:8d:6f:9c:37:2a:f7:74:8c:59:5f:90:c0:30:c0:a4:
69:66:c9:8f:ad:09:34:82:0e:c8:da:c3:f8:d4:27:a1:94:2d:
a8:29:b5:6d:da:09:0e:ff:91:a5:4d:bd:11:cf:f1:53:54:29:
21:4f:a8:08:c5:62:31:4f:5a:c2:0c:f2:a0:79:3a:47:7b:7d:
f7:21:f9:8b:73:83:df:bc:2e:af:22:10:57:d8:18:8d:26:87:
5b:b0:3e:9e:3f:18:ce:14:29:08:11:1d:19:19:06:ce:e6:94:
2c:1e:88:09:e2:23:53:3d:92:4f:f4:f7:7b:21:b6:3c:e7:d1:
d1:90:5f:b1:39:80:7f:90:72:3e:f8:88:9e:53:3d:29:13:88:
69:db:a9:a4:6c:60:0c:94:2a:25:9d:13:cf:ec:94:72:e3:50:
1f:05:06:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:46 2025 by rpki-client