Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa
File: AS138865.roa (raw, json)
Hash identifier: 8Lb8vx4yi6cRRh2WNO8NxOiJy5/rTK7dV96fBlBoxa8=
Subject key identifier: 51:0F:5B:D1:F3:28:D8:CC:50:28:60:0E:C1:39:DF:EB:19:32:E0:CA
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 52314B38C733C1D70C2962684CDC4F5AF9B92E14
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa
Signing time: Tue 10 Dec 2024 05:00:14 +0000
ROA not before: Tue 10 Dec 2024 04:55:14 +0000
ROA not after: Tue 09 Dec 2025 05:00:14 +0000
asID: 138865
IP address blocks: 103.139.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:31:4b:38:c7:33:c1:d7:0c:29:62:68:4c:dc:4f:5a:f9:b9:2e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:14 2024 GMT
Not After : Dec 9 05:00:14 2025 GMT
Subject: CN=510F5BD1F328D8CC5028600EC139DFEB1932E0CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0c:53:8f:06:58:bb:4d:05:5d:61:af:be:f4:
b3:64:db:09:b5:9a:df:ea:55:5e:08:0a:2a:36:de:
a4:08:2a:66:d8:a5:ec:6c:69:68:77:ec:10:3f:1d:
07:70:7f:3b:94:02:a5:65:df:c7:ec:d0:9a:7a:1f:
91:89:fb:2e:41:fa:66:f5:f2:02:31:d1:1c:ba:9f:
eb:05:20:29:8d:51:4e:99:cd:e2:72:2b:13:b7:f1:
7f:d5:90:06:64:fb:7f:27:9e:f5:ef:51:1a:8e:a3:
d4:d9:e0:d2:c8:54:b9:fd:1d:1a:53:1d:18:6c:53:
61:b9:c4:f3:52:64:44:de:37:72:ff:14:df:9d:3f:
d9:a4:38:f8:2b:a9:f6:a4:82:a4:e5:18:8c:25:f5:
bb:b9:7f:65:65:39:5d:b2:c6:09:7a:e6:28:d4:79:
0b:43:a3:7f:39:98:37:0f:83:a7:c6:f5:99:c1:7b:
ce:4b:ce:3c:c9:96:f9:3b:6e:e9:6c:bf:de:45:55:
8f:d6:7b:95:b8:39:f9:bb:1e:01:5b:37:5e:77:92:
f8:37:b7:fc:d1:f1:e4:10:ea:d7:63:96:01:a2:a3:
03:cb:4b:fa:aa:39:42:67:c2:0f:61:ad:1d:57:7e:
28:e7:be:74:05:7b:49:39:e9:69:5c:8d:62:65:4c:
36:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0F:5B:D1:F3:28:D8:CC:50:28:60:0E:C1:39:DF:EB:19:32:E0:CA
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.139.244.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:f4:4d:88:38:82:9a:b7:e0:39:8a:86:77:66:6f:0f:f0:f6:
6c:74:59:82:74:74:14:54:cd:84:c9:02:9e:08:97:44:89:ee:
e0:21:b7:4b:11:67:6e:97:a0:b8:41:0f:04:e8:45:ca:54:b0:
c0:c4:b4:6f:45:f3:b4:33:32:2a:2a:7d:14:d7:9a:da:60:6a:
54:e0:08:2e:85:a5:b2:87:11:e4:6d:30:88:63:7e:79:a1:a1:
f6:ae:af:bf:48:a8:5c:dc:a1:4a:af:d6:2e:19:86:92:3d:8d:
a3:39:25:53:e0:48:77:e0:92:cf:be:54:ff:3d:7f:2f:9b:c3:
30:a6:d9:44:85:73:0c:cc:aa:9f:13:70:fb:3d:a0:ef:dc:a1:
f4:c4:a1:25:7e:e1:4d:ea:33:08:4e:68:53:5d:8b:b9:63:96:
42:ff:4d:8a:d3:9f:27:83:88:86:9e:0c:e5:4b:32:88:f3:76:
ae:f8:76:43:54:41:d2:03:7c:a7:37:c0:94:b0:f2:c6:d4:e7:
54:10:d7:28:8c:91:36:99:a9:74:e4:3b:10:40:1d:0d:0e:37:
ce:01:d2:78:6f:9a:5a:b1:10:4c:6b:c5:db:64:f5:11:a5:08:
42:6b:88:24:d8:06:d9:83:cb:a7:98:68:5f:1f:dc:87:ae:0d:
68:35:c6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:20 2025 by rpki-client