Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa
File: AS138131.roa (raw, json)
Hash identifier: PFGBDA4+agCzM3qXHBVtpGDfZ8pjJfrJgVD94w9yVRU=
Subject key identifier: A6:68:E6:2E:EC:6C:3E:9D:DB:F0:93:C7:DF:16:AB:48:8A:38:95:24
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 50A6849A32ACD60A81FC2AAE84CE24A234A2EA7E
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa
Signing time: Tue 10 Dec 2024 05:00:00 +0000
ROA not before: Tue 10 Dec 2024 04:55:00 +0000
ROA not after: Tue 09 Dec 2025 05:00:00 +0000
asID: 138131
IP address blocks: 103.164.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:a6:84:9a:32:ac:d6:0a:81:fc:2a:ae:84:ce:24:a2:34:a2:ea:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:00 2024 GMT
Not After : Dec 9 05:00:00 2025 GMT
Subject: CN=A668E62EEC6C3E9DDBF093C7DF16AB488A389524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:ce:56:5e:3c:2c:05:d9:6a:29:55:18:b8:
cd:4b:57:cc:a3:8a:9b:f8:ab:e9:e8:42:f0:ff:a5:
5f:46:e1:38:8d:08:74:43:37:9d:a0:0d:69:36:cf:
aa:5b:59:7d:27:87:1b:1f:4c:9c:b5:65:1c:d0:f5:
0d:ab:ab:3a:f5:55:a8:16:25:05:f4:04:c7:32:73:
0f:e5:c6:bc:ee:98:17:ba:cc:52:4b:b7:c1:4e:8d:
2d:60:43:35:39:cb:bf:0c:4a:4f:11:ef:0c:42:3f:
f8:08:1b:a8:2f:81:6a:51:88:7d:e9:08:47:c5:36:
68:66:39:0f:33:ba:57:93:5a:bf:fa:f2:37:ea:08:
4e:1a:93:52:28:22:b6:1a:eb:66:cc:31:1a:96:8f:
5c:0f:05:47:d7:ac:54:ca:0f:b7:88:d6:59:f2:e6:
26:ba:a9:80:ec:78:e5:11:e4:bd:8b:71:df:5e:4e:
bc:51:1c:14:c5:18:96:8d:51:7d:e4:19:df:60:7f:
d8:86:dd:3f:6f:7d:0c:be:41:1d:23:9d:90:bc:e2:
7d:a6:e8:85:9a:49:f9:de:29:a3:cc:f4:da:7d:3e:
b3:61:96:2d:ee:48:fa:76:de:14:1c:6b:d7:f7:2e:
1a:97:a2:6d:9e:54:1b:46:a9:c5:2f:28:f6:45:56:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:68:E6:2E:EC:6C:3E:9D:DB:F0:93:C7:DF:16:AB:48:8A:38:95:24
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.172.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e0:10:4b:05:aa:c4:27:61:03:bf:2e:1e:5f:c3:4a:61:f0:
60:c3:be:7b:bf:fb:ba:82:92:2c:e2:53:60:2b:25:e7:ef:1f:
bd:f7:5a:b0:9a:a2:14:f5:ef:4e:e6:81:bd:35:2d:1d:e8:e3:
e1:a9:ee:10:e6:30:77:0e:a7:88:ea:28:0c:10:32:e9:e2:0a:
15:f9:50:65:a7:6f:bb:7a:25:66:51:2a:d6:da:ea:15:dc:a9:
f3:15:53:ec:d3:47:4e:f6:65:17:e2:e8:ed:af:57:28:58:78:
ee:38:10:b1:db:f2:63:d5:5c:8d:82:57:2a:61:f0:f4:ab:18:
d0:d1:fa:8f:f8:10:b6:85:18:8e:50:45:58:ca:73:90:e3:b9:
89:52:17:60:98:bb:07:d7:0b:62:e1:ff:f6:27:09:8a:98:fc:
95:66:fd:ec:ea:c4:33:e9:07:63:b4:f5:f2:61:fc:78:a4:60:
b0:63:48:d1:8b:3a:cc:7c:2a:48:40:6e:cb:c3:dc:42:5d:ec:
97:74:0c:ce:a9:56:0d:cc:a5:69:e5:d3:64:0b:71:b4:a3:b4:
34:64:27:53:72:e6:e5:0f:00:8d:74:77:6c:36:4f:62:5c:f8:
85:9a:fa:c7:32:34:ea:43:2c:ea:55:67:38:4d:7d:00:a6:5a:
11:3f:7c:00
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUUKaEmjKs1gqB/CquhM4kojSi6n4wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUwMFoX
DTI1MTIwOTA1MDAwMFowMzExMC8GA1UEAxMoQTY2OEU2MkVFQzZDM0U5RERCRjA5
M0M3REYxNkFCNDg4QTM4OTUyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALtwzlZePCwF2WopVRi4zUtXzKOKm/ir6ehC8P+lX0bhOI0IdEM3naANaTbP
qltZfSeHGx9MnLVlHND1DaurOvVVqBYlBfQExzJzD+XGvO6YF7rMUku3wU6NLWBD
NTnLvwxKTxHvDEI/+AgbqC+BalGIfekIR8U2aGY5DzO6V5Nav/ryN+oIThqTUigi
thrrZswxGpaPXA8FR9esVMoPt4jWWfLmJrqpgOx45RHkvYtx315OvFEcFMUYlo1R
feQZ32B/2IbdP299DL5BHSOdkLzifabohZpJ+d4po8z02n0+s2GWLe5I+nbeFBxr
1/cuGpeibZ5UG0apxS8o9kVWpBkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSmaOYu
7Gw+ndvwk8ffFqtIijiVJDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEzMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAGekrDANBgkqhkiG9w0BAQsFAAOCAQEAGuAQSwWqxCdhA78uHl/D
SmHwYMO+e7/7uoKSLOJTYCsl5+8fvfdasJqiFPXvTuaBvTUtHejj4anuEOYwdw6n
iOooDBAy6eIKFflQZadvu3olZlEq1trqFdyp8xVT7NNHTvZlF+Lo7a9XKFh47jgQ
sdvyY9VcjYJXKmHw9KsY0NH6j/gQtoUYjlBFWMpzkOO5iVIXYJi7B9cLYuH/9icJ
ipj8lWb97OrEM+kHY7T18mH8eKRgsGNI0Ys6zHwqSEBuy8PcQl3sl3QMzqlWDcyl
aeXTZAtxtKO0NGQnU3Lm5Q8AjXR3bDZPYlz4hZr6xzI06kMs6lVnOE19AKZaET98
AA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:40 2025 by rpki-client