Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa
File: AS138833.roa (raw, json)
Hash identifier: Jj59KTWgXOtHC/HXwoarer+EEHsSIvNxOu0ETfegmHw=
Subject key identifier: 75:B6:81:53:29:AF:4D:D9:FD:68:9B:B5:B0:69:24:38:F0:B6:35:93
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 11CB8DDD4BBA1543B6504BD398795C15C4AA8630
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa
Signing time: Tue 10 Dec 2024 05:00:16 +0000
ROA not before: Tue 10 Dec 2024 04:55:16 +0000
ROA not after: Tue 09 Dec 2025 05:00:16 +0000
asID: 138833
IP address blocks: 103.137.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:cb:8d:dd:4b:ba:15:43:b6:50:4b:d3:98:79:5c:15:c4:aa:86:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:16 2024 GMT
Not After : Dec 9 05:00:16 2025 GMT
Subject: CN=75B6815329AF4DD9FD689BB5B0692438F0B63593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:62:4a:9d:70:99:b6:40:a7:40:32:8c:52:96:
76:46:2d:01:f5:f1:a1:23:cb:2f:55:d9:73:f3:35:
d3:6a:f2:b3:74:43:d6:73:27:ec:7c:6f:75:6a:ef:
38:2f:52:6a:dc:78:fb:63:89:8d:a3:af:d8:eb:fb:
36:79:7f:33:32:f3:30:67:fa:e8:74:38:79:3a:ed:
c8:30:4f:0a:d3:69:2b:01:18:ea:b5:39:77:24:0d:
84:fe:74:bb:0f:d2:37:ce:5f:dd:df:1c:ab:58:6f:
f5:17:88:3f:12:85:f6:7a:7e:db:fc:ea:aa:00:89:
c5:b1:33:df:75:bf:1b:e9:8e:cb:56:b7:32:c9:d8:
d2:ec:64:28:70:04:09:0d:ce:55:4e:73:da:49:f0:
73:67:e3:a9:55:ac:cc:a3:0c:a2:99:fd:e6:6f:77:
1f:20:bf:44:ad:c0:e1:79:7f:67:0f:9e:41:4d:7b:
c8:04:43:be:33:16:f0:f8:26:2a:4c:98:d5:f7:4a:
dd:1a:8a:60:a7:cb:78:b4:df:02:61:7e:81:92:12:
99:77:a9:b8:f0:a6:ca:84:68:c0:55:d3:44:fb:b2:
e4:aa:17:cb:6f:7a:21:73:6e:57:bf:4a:a7:6d:21:
bd:b1:f0:96:58:24:0d:dc:e5:12:84:0f:65:9e:f7:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B6:81:53:29:AF:4D:D9:FD:68:9B:B5:B0:69:24:38:F0:B6:35:93
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.254.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:00:bd:8a:ca:5a:b1:22:36:ad:e5:10:2c:b2:3c:e9:cf:b6:
b9:b5:ea:db:62:be:9d:07:1e:52:b7:bb:e7:e9:d7:bc:e7:e6:
0c:1b:c3:78:94:31:e8:7b:4b:45:5b:ee:df:e2:5b:f7:49:66:
05:b9:25:ab:63:b6:4a:02:2e:d1:80:57:84:a6:ac:7e:14:54:
13:b2:24:5f:14:af:b0:46:cc:49:66:04:a6:40:17:9f:6b:41:
c4:1a:3e:03:db:27:5c:f8:5a:54:04:05:7d:28:76:b2:3e:86:
dd:0c:2e:ac:06:40:e1:32:83:10:89:c4:44:7c:88:13:5c:4c:
ae:4c:4b:fe:42:a9:45:1a:c4:f4:85:73:c2:0d:9a:c9:d2:9b:
fa:32:ab:aa:7d:a0:f6:a7:1a:63:06:2f:a2:e4:03:43:51:6a:
9c:e3:ac:1f:39:77:51:a7:5c:c7:3d:42:96:57:9f:ff:1a:1e:
50:e2:04:ae:33:05:f5:a4:1c:e3:58:95:38:fb:8f:83:b3:46:
3e:8c:4d:74:32:bc:49:7b:3c:fb:92:0d:63:ff:4a:1d:c1:bd:
20:da:0f:75:fc:c2:bb:d3:a0:c3:7b:ac:6d:80:ee:3e:2c:8a:
0c:56:e2:ee:5a:a2:c4:07:01:38:62:3f:98:5d:85:b7:d5:ed:
9d:db:f3:e2
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUEcuN3Uu6FUO2UEvTmHlcFcSqhjAwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxNloX
DTI1MTIwOTA1MDAxNlowMzExMC8GA1UEAxMoNzVCNjgxNTMyOUFGNEREOUZENjg5
QkI1QjA2OTI0MzhGMEI2MzU5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPBiSp1wmbZAp0AyjFKWdkYtAfXxoSPLL1XZc/M102rys3RD1nMn7HxvdWrv
OC9Satx4+2OJjaOv2Ov7Nnl/MzLzMGf66HQ4eTrtyDBPCtNpKwEY6rU5dyQNhP50
uw/SN85f3d8cq1hv9ReIPxKF9np+2/zqqgCJxbEz33W/G+mOy1a3MsnY0uxkKHAE
CQ3OVU5z2knwc2fjqVWszKMMopn95m93HyC/RK3A4Xl/Zw+eQU17yARDvjMW8Pgm
KkyY1fdK3RqKYKfLeLTfAmF+gZISmXepuPCmyoRowFXTRPuy5KoXy296IXNuV79K
p20hvbHwllgkDdzlEoQPZZ73G5UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR1toFT
Ka9N2f1om7WwaSQ48LY1kzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgzMy5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWeJ/jANBgkqhkiG9w0BAQsFAAOCAQEATgC9ispasSI2reUQLLI8
6c+2ubXq22K+nQceUre75+nXvOfmDBvDeJQx6HtLRVvu3+Jb90lmBbklq2O2SgIu
0YBXhKasfhRUE7IkXxSvsEbMSWYEpkAXn2tBxBo+A9snXPhaVAQFfSh2sj6G3Qwu
rAZA4TKDEInERHyIE1xMrkxL/kKpRRrE9IVzwg2aydKb+jKrqn2g9qcaYwYvouQD
Q1FqnOOsHzl3Uadcxz1Cllef/xoeUOIErjMF9aQc41iVOPuPg7NGPoxNdDK8SXs8
+5INY/9KHcG9INoPdfzCu9Ogw3usbYDuPiyKDFbi7lqixAcBOGI/mF2Ft9Xtndvz
4g==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:43 2025 by rpki-client