Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa
File: AS138125.roa (raw, json)
Hash identifier: 5dTF8upTxOutxbsHZrEMLXJu30Vk815UzUSD9hy0qqs=
Subject key identifier: 32:08:93:36:46:C0:F6:AC:C9:52:7A:21:C8:43:66:04:67:7C:4C:8E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 36C8404FCFAC7761BD9BE861B88366FFE5FEA3B1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa
Signing time: Tue 21 Jan 2025 10:00:00 +0000
ROA not before: Tue 21 Jan 2025 09:55:00 +0000
ROA not after: Tue 20 Jan 2026 10:00:00 +0000
asID: 138125
IP address blocks: 103.132.18.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:c8:40:4f:cf:ac:77:61:bd:9b:e8:61:b8:83:66:ff:e5:fe:a3:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 21 09:55:00 2025 GMT
Not After : Jan 20 10:00:00 2026 GMT
Subject: CN=3208933646C0F6ACC9527A21C8436604677C4C8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8f:d9:9b:f3:14:d8:ec:29:2c:d4:84:9b:17:
11:03:9c:b6:da:ad:80:1f:e2:03:1e:65:2a:de:c4:
c9:4c:17:de:bf:bb:21:4d:f8:7d:4d:37:d8:77:8e:
99:26:96:d7:94:1e:b5:98:2c:73:36:41:5d:1b:e3:
10:c3:a5:53:3f:52:7f:90:24:ee:c7:90:7c:4b:fc:
6d:0d:bc:a1:43:9c:33:59:2d:a3:7d:e8:3f:9d:27:
87:bd:73:62:58:90:6b:49:2e:d2:e3:8e:e1:be:3b:
3c:88:74:b6:c7:7f:b1:af:d9:ab:b9:ce:58:0a:ca:
89:d6:96:4e:f5:7a:57:3c:38:24:33:f6:c1:4c:fe:
9a:2a:40:60:eb:cb:e3:f9:67:97:dc:b8:5a:4e:62:
96:d7:74:7a:8f:f0:1e:0a:08:5b:00:9c:c1:fe:1e:
f7:f4:e0:cd:e8:94:61:c8:e5:50:9c:7a:e0:45:2f:
f3:79:8b:ee:27:d7:aa:30:c2:67:15:a2:ca:bf:58:
04:be:c0:29:30:a8:4c:16:45:10:16:d5:a8:8b:b4:
46:88:78:a1:e9:07:00:45:8f:53:93:57:4a:be:2d:
8b:73:ab:38:75:2f:26:e3:97:fc:9d:e7:34:e2:18:
ed:51:58:f0:62:aa:ea:f7:a9:91:cb:db:4a:aa:50:
67:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:08:93:36:46:C0:F6:AC:C9:52:7A:21:C8:43:66:04:67:7C:4C:8E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.132.18.0/23
Signature Algorithm: sha256WithRSAEncryption
84:61:1d:e9:aa:c0:8b:a4:e9:51:6a:7d:5f:98:ca:52:0e:cb:
d0:9c:ce:8f:68:1a:79:d1:3c:ce:68:0a:a3:a8:22:5d:ef:7b:
06:b4:be:f6:1f:d7:10:c6:e4:2f:5b:ac:14:a1:4d:26:97:94:
90:a2:a7:f2:9a:2a:0e:0b:32:dd:0a:7e:d0:20:49:b0:7d:cc:
72:cb:31:36:53:bc:66:b9:b0:f2:90:14:15:98:18:fe:23:b0:
d9:66:00:f1:08:37:27:aa:aa:39:48:3a:06:7e:e1:33:67:1d:
62:59:9c:fc:52:1c:67:51:b3:a3:7f:9c:f1:ed:0a:14:14:04:
34:fe:52:6f:9e:4d:72:eb:30:05:10:b8:26:95:c8:f8:72:fc:
1b:e8:0e:29:7d:77:1a:89:d9:e2:44:c4:73:b4:26:35:0c:11:
ed:ed:44:a1:c4:8c:a5:ae:68:c2:a7:44:a7:43:79:13:84:72:
52:6a:06:07:cb:bc:d9:3f:81:ba:64:18:e1:10:05:4d:6d:b3:
a2:1c:11:5b:67:91:2f:49:27:32:bc:f1:d2:2d:44:81:58:65:
8d:7e:82:ee:35:6f:c1:46:69:ad:a8:aa:22:83:78:06:2b:6b:
5b:f0:56:91:25:8b:0f:9d:71:c8:9d:91:c8:ad:09:45:1a:62:
fa:a3:d6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:57 2025 by rpki-client