Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa
File: AS138837.roa (raw, json)
Hash identifier: nf6eff9tAZpqXJdkdr30xnsRK6VsZS49wR5vsRqXGIA=
Subject key identifier: F7:7B:F2:62:A4:AD:B3:E9:3A:3A:55:AB:40:9F:B8:1E:14:E3:4D:71
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 12CAFE10094F13583EE9CB9756B7B3FBE9D2D6CE
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa
Signing time: Tue 10 Dec 2024 05:00:20 +0000
ROA not before: Tue 10 Dec 2024 04:55:20 +0000
ROA not after: Tue 09 Dec 2025 05:00:20 +0000
asID: 138837
IP address blocks: 103.137.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:ca:fe:10:09:4f:13:58:3e:e9:cb:97:56:b7:b3:fb:e9:d2:d6:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:20 2024 GMT
Not After : Dec 9 05:00:20 2025 GMT
Subject: CN=F77BF262A4ADB3E93A3A55AB409FB81E14E34D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:75:ae:96:73:16:21:bc:66:b6:ed:86:4a:ca:
4f:5a:25:c5:cc:67:bc:9c:62:f8:50:d6:1e:8f:51:
7e:37:c1:3d:d4:fe:0b:0b:e5:cf:0f:fe:51:91:9e:
7a:f4:0b:ca:d3:68:4b:6a:71:f2:e0:2c:6c:3d:16:
09:b8:92:83:40:ce:17:e3:aa:c1:11:7d:eb:35:d1:
15:30:74:c2:b1:d7:c8:89:73:49:ea:9d:dc:2e:40:
db:7a:61:f4:44:1b:f7:c9:02:cd:83:7e:a7:e5:b3:
56:89:0f:1f:1d:ed:f4:ce:d3:d6:7e:d5:62:25:48:
9c:e9:d4:8a:9e:9d:f8:d9:54:a9:38:07:6e:35:a6:
b6:91:be:9a:9e:93:66:4d:b9:ba:94:ab:66:e1:1f:
92:7c:e0:96:1e:e6:b6:ef:b7:0c:fb:80:3a:48:f5:
ca:b6:bd:20:ff:d1:67:e9:d3:d5:d8:d4:e7:78:7d:
2d:d3:77:c1:02:d3:e4:2f:af:30:45:34:82:6d:0d:
65:41:ac:f8:82:74:73:b7:22:77:79:2c:2e:8b:28:
f8:74:e8:1a:fe:89:85:2f:ac:ad:9e:cc:eb:18:0b:
0c:62:b0:5c:ab:25:8f:fd:83:d3:03:e6:13:0e:ec:
de:bf:c3:fc:8e:60:60:3e:4c:c1:51:63:29:cd:be:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:7B:F2:62:A4:AD:B3:E9:3A:3A:55:AB:40:9F:B8:1E:14:E3:4D:71
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.140.0/23
Signature Algorithm: sha256WithRSAEncryption
87:aa:2e:d5:bb:83:b8:f5:c4:3f:b7:48:43:bd:05:f0:cc:b0:
1e:ef:0f:14:03:76:44:78:26:c2:25:30:ad:30:b6:3a:f1:e3:
04:e2:11:d5:07:e9:fe:a0:16:c2:21:87:d5:ef:bb:7d:c1:35:
07:57:f4:17:82:6f:4a:c1:e1:13:8b:0e:f3:ac:d2:a7:88:c0:
b5:7f:f2:0c:5b:bf:9d:59:ad:39:59:6d:e9:b2:a7:fe:c6:4d:
60:a3:76:56:3a:67:c4:9f:1b:dc:8c:e8:ce:31:af:00:61:ba:
21:0f:d9:90:43:22:66:7e:40:ed:79:9b:a6:73:cf:ed:93:53:
2d:42:38:82:a7:5d:c4:16:6b:1b:b5:d2:3c:ed:3e:7d:43:25:
91:51:07:32:a3:ba:87:d5:3a:fa:bf:5a:d2:c0:2d:a8:f1:ac:
a4:0a:48:b6:4a:b9:e0:a2:e4:94:e6:05:06:65:a5:9f:7e:5a:
7d:53:d0:c3:77:97:ff:c1:b1:5d:10:cf:b0:87:8b:59:1d:c5:
7d:d5:a0:4d:8b:3f:f0:3f:b0:16:99:1f:1c:40:3b:6c:28:97:
2d:b8:dd:ee:01:5f:a9:61:74:1e:bf:b3:d6:a2:1c:dd:89:37:
ac:58:f7:0c:7b:f5:8a:85:6d:e1:2b:85:21:20:29:b2:ac:43:
82:8f:d8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:13 2025 by rpki-client