Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa
File: AS138839.roa (raw, json)
Hash identifier: 0aEXUDl2lO/PReOfFJOApmKmoazPU81Tc7zVJ+HeuVY=
Subject key identifier: 37:00:C5:7B:DB:B9:F4:D5:03:77:B9:51:0B:DE:F7:75:9D:EA:6F:83
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 292818FC9E946A494E07EB22D245BCBD1D5C8B5F
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa
Signing time: Tue 10 Dec 2024 05:00:01 +0000
ROA not before: Tue 10 Dec 2024 04:55:01 +0000
ROA not after: Tue 09 Dec 2025 05:00:01 +0000
asID: 138839
IP address blocks: 103.138.14.0/23 maxlen: 24
2404:bdc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:28:18:fc:9e:94:6a:49:4e:07:eb:22:d2:45:bc:bd:1d:5c:8b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:01 2024 GMT
Not After : Dec 9 05:00:01 2025 GMT
Subject: CN=3700C57BDBB9F4D50377B9510BDEF7759DEA6F83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b1:2f:57:40:10:57:ce:13:f2:01:ce:31:ea:
96:99:9e:e4:57:95:3a:1e:3f:8f:7e:23:5f:60:90:
f8:0d:2d:b5:96:f2:4b:ff:b2:de:1e:1e:f2:4e:cf:
ee:bf:31:60:02:55:63:8e:51:f8:a7:5b:23:d9:aa:
b2:6f:5e:18:40:c0:2b:f2:76:ce:b8:f7:e8:a3:0a:
7b:da:bc:41:b7:34:aa:ed:e6:44:b7:d5:dc:77:16:
57:2b:59:6d:3b:5e:b3:d3:bd:04:65:2b:89:b8:dc:
de:71:a0:21:16:09:72:ef:a6:f0:6c:1b:52:00:27:
e1:5a:d1:30:56:f5:cf:d4:35:e6:8f:1e:a0:39:f5:
bb:c5:18:d3:8d:e5:4d:24:66:b0:30:c1:1f:52:6f:
1d:b9:04:ca:bd:31:7e:02:0b:e4:49:f4:2d:07:34:
3e:91:e5:df:77:6c:b8:37:f3:c7:75:a4:a3:19:45:
21:fe:f8:86:ca:7f:d5:82:64:80:5f:95:c6:ec:f7:
94:83:ee:9b:24:2f:59:a0:f4:50:6c:6f:cf:3d:d4:
5c:b1:85:23:e6:ca:32:a3:40:2d:17:24:9b:32:25:
0b:61:fe:24:96:a3:97:2e:35:45:60:c8:72:2b:a7:
9d:58:03:ce:76:f4:2d:d6:17:c3:ff:9e:7a:04:64:
0a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:00:C5:7B:DB:B9:F4:D5:03:77:B9:51:0B:DE:F7:75:9D:EA:6F:83
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.138.14.0/23
IPv6:
2404:bdc0::/32
Signature Algorithm: sha256WithRSAEncryption
0f:c7:1a:ea:24:4d:65:37:3f:57:f6:18:b2:46:b1:5a:99:c3:
02:1a:5e:b5:08:78:b0:5d:78:53:52:e8:52:12:9c:35:95:53:
16:3e:55:5e:1e:4e:85:17:aa:58:18:69:2f:9d:3f:aa:68:9b:
26:81:c0:ab:86:da:50:21:61:71:54:03:99:91:03:92:08:52:
a8:42:32:3d:4f:eb:5a:33:bd:44:bc:1b:07:ed:05:91:95:d0:
73:5d:9e:22:66:eb:55:79:c5:57:39:39:00:ae:b3:2f:97:40:
1a:52:52:fa:23:d1:45:a6:81:f8:3f:c0:c0:d7:e7:68:80:a4:
8f:b2:aa:c9:1f:94:3f:db:f7:63:2b:44:75:f5:b7:d1:2e:59:
97:c6:a9:87:08:89:7d:3a:6c:27:ea:4c:21:e6:34:01:47:34:
ca:71:66:83:50:86:cc:84:b3:77:ca:54:55:62:0f:2b:ad:cc:
a3:d5:6b:ae:72:ea:e6:b8:de:df:04:29:61:4e:82:83:13:dc:
3a:46:67:ca:fa:10:8c:9b:16:06:d8:1e:e1:3d:bd:b0:b0:7b:
03:d5:06:b6:66:39:40:e0:f0:47:a8:ef:be:d9:ea:2b:00:94:
59:99:a9:68:99:54:d3:15:a1:04:20:d8:3a:35:2e:ec:41:3e:
63:0e:65:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:22 2025 by rpki-client