Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa
File: AS138818.roa (raw, json)
Hash identifier: zYHY5ZBE5M9u0Vcx8DlC/E4ISO/cleMYOfX7wMjqPng=
Subject key identifier: EE:57:9A:17:B1:D1:32:F9:49:17:82:4F:84:3E:6E:23:C3:69:DA:71
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3CAD56CA0E533BBB08795835D4ED4EA173C6E8E7
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa
Signing time: Thu 13 Mar 2025 09:00:00 +0000
ROA not before: Thu 13 Mar 2025 08:55:00 +0000
ROA not after: Thu 12 Mar 2026 09:00:00 +0000
asID: 138818
IP address blocks: 103.103.136.0/22 maxlen: 24
2406:be40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:ad:56:ca:0e:53:3b:bb:08:79:58:35:d4:ed:4e:a1:73:c6:e8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 13 08:55:00 2025 GMT
Not After : Mar 12 09:00:00 2026 GMT
Subject: CN=EE579A17B1D132F94917824F843E6E23C369DA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ce:20:71:89:fa:b6:bc:23:35:ac:d7:7f:e0:
c3:70:24:04:b6:0c:af:4d:56:d4:f2:75:9a:06:b5:
9b:ce:62:d9:3b:35:9c:ef:f1:df:a9:e2:be:e4:ff:
b8:2f:a9:68:7e:99:4e:19:53:6b:04:98:0b:93:13:
60:89:a8:35:39:9f:89:61:e7:1a:0b:69:04:6e:23:
1a:49:14:d1:d7:75:9a:39:91:91:cf:e7:04:33:6e:
1d:2e:8a:8b:c9:37:f2:a3:16:b0:86:ad:ae:87:e5:
b0:66:6b:cf:31:af:b1:c1:4d:29:8f:f2:20:0d:c3:
e5:1d:45:11:46:3e:49:d9:c1:52:7d:b2:c6:56:44:
5e:5b:95:78:0c:67:4c:ec:00:a6:e6:13:3e:e4:98:
bc:a8:9f:51:7d:a9:23:c8:47:6f:08:07:81:c9:d1:
57:50:ff:4f:50:34:1c:62:86:cf:a0:54:eb:8a:02:
4a:d6:5b:a4:61:9d:13:e4:80:6b:9f:92:6b:12:67:
a3:41:92:a9:d1:77:32:1c:d7:1d:31:b1:23:77:0f:
d2:90:fe:e0:ab:50:fe:47:ff:b1:45:79:bc:cf:98:
86:00:e8:da:4a:51:2f:91:ae:26:f9:28:a1:1e:c2:
87:4a:b2:f1:91:c6:ae:44:42:e4:4e:06:65:b4:f6:
b9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:57:9A:17:B1:D1:32:F9:49:17:82:4F:84:3E:6E:23:C3:69:DA:71
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138818.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.103.136.0/22
IPv6:
2406:be40::/32
Signature Algorithm: sha256WithRSAEncryption
4b:22:2d:1c:5d:1b:7a:59:a9:47:22:f8:a0:cf:fe:7a:ed:7e:
db:57:ee:85:8c:f3:03:ce:87:03:75:7b:7f:de:90:7f:4d:c7:
18:f2:e0:8a:27:33:af:0e:04:34:fe:34:5a:32:b9:b7:1f:4f:
fd:73:84:0b:63:e8:68:de:0a:98:9d:da:d6:6e:fe:a4:08:95:
7f:ec:3d:36:d6:98:83:72:2c:17:68:ba:23:f9:5c:20:5a:e6:
08:25:d2:af:b7:ff:30:c5:c2:9f:01:34:95:b4:9a:f0:eb:b9:
11:ba:83:46:dd:f7:d5:c1:96:74:11:28:b6:2e:0b:f4:17:d0:
d9:47:9c:8f:af:ca:c3:cf:e7:3b:0a:2c:4b:59:c4:b9:18:b8:
cf:3c:f9:af:80:ec:99:3b:67:a8:96:5b:39:06:20:1f:50:f0:
e4:32:5e:57:17:25:ce:4f:45:c2:c7:30:fe:56:5d:4e:14:55:
74:be:38:2a:5d:9d:bf:a9:96:94:41:cf:57:9a:b9:b0:40:f3:
95:f6:55:8e:63:6e:3a:b8:e7:30:1b:eb:4a:53:95:6a:9a:77:
64:f2:57:9e:3d:f2:82:e1:31:67:81:bb:e6:4b:18:23:8d:3c:
39:77:5d:59:b7:5c:de:49:14:2c:a4:77:86:e4:c0:94:e4:06:
a2:23:7c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:20 2025 by rpki-client