Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138866.roa
File: AS138866.roa (raw, json)
Hash identifier: Ih5Q0JIqkC6hOQoVOZTNf61vSPKr05dBvj0j2uvdLwI=
Subject key identifier: 05:21:E6:C8:35:E1:0A:46:5A:1A:AF:59:03:15:4B:FA:FD:22:4A:08
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 07400E08241AE1125F131A7DB6AFAA14359C9EDD
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138866.roa
Signing time: Tue 10 Dec 2024 05:00:11 +0000
ROA not before: Tue 10 Dec 2024 04:55:11 +0000
ROA not after: Tue 09 Dec 2025 05:00:11 +0000
asID: 138866
IP address blocks: 103.140.130.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:40:0e:08:24:1a:e1:12:5f:13:1a:7d:b6:af:aa:14:35:9c:9e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:11 2024 GMT
Not After : Dec 9 05:00:11 2025 GMT
Subject: CN=0521E6C835E10A465A1AAF5903154BFAFD224A08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4e:84:98:d3:48:9e:cd:43:f8:0b:40:cc:f4:
35:c7:fe:3e:3e:e6:45:fd:dd:ee:84:cf:a4:ae:cd:
cb:4c:97:c4:3c:39:78:0a:aa:e2:66:8a:fb:fa:77:
9e:40:85:d3:51:f2:ae:e2:54:7d:cb:94:76:48:8d:
c0:9c:d1:74:bf:1f:48:00:65:89:95:e4:c4:31:cd:
e5:43:ab:da:19:85:37:3e:d8:b2:86:4d:f7:56:e6:
17:06:9d:f0:55:88:50:52:a7:c6:44:16:34:b3:72:
72:24:92:2b:31:c9:5a:77:61:11:0a:2c:dc:29:6f:
e7:da:54:7f:39:c7:55:f9:6b:af:a7:e3:a6:d3:21:
dd:24:b0:55:11:31:70:b9:a6:f4:2f:8f:f0:43:9b:
5c:78:3d:eb:ff:cc:ec:85:69:4d:61:65:99:b2:71:
09:8a:3e:e6:e2:60:9d:bf:25:8c:4f:12:c6:18:ea:
39:b2:10:63:80:df:32:a7:43:d2:e5:3e:69:8b:5e:
ac:0f:cb:0c:de:72:79:68:e2:8c:d6:f4:8e:eb:73:
2b:c6:8f:2c:97:f3:7e:a3:b2:7b:45:23:6c:0b:ea:
3c:66:95:1a:ee:c2:0c:46:76:21:42:65:01:48:e6:
ba:94:99:74:29:38:5b:a7:b9:ba:21:53:1b:e4:fd:
be:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:21:E6:C8:35:E1:0A:46:5A:1A:AF:59:03:15:4B:FA:FD:22:4A:08
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138866.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.140.130.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:19:59:1a:69:59:98:93:d2:14:49:d5:e1:35:05:13:e0:20:
de:de:0a:43:30:6c:12:73:50:56:dd:fa:c4:66:03:dd:1e:73:
11:ca:1c:0b:60:9a:19:b1:cf:23:81:f0:2d:3d:94:fd:60:aa:
75:6d:dd:39:f4:e1:08:b7:b7:5f:97:d3:9c:4a:b8:8a:f2:ce:
23:2c:1f:b7:43:67:e4:fd:bc:d6:ad:3a:35:bf:7b:d7:99:fb:
68:da:88:54:bc:82:b5:2a:e9:0e:a0:71:cf:10:c8:9b:5c:b9:
84:27:45:70:d7:9e:db:fb:ce:83:4e:00:b5:6c:a1:96:8a:40:
1d:23:30:fe:cf:73:2a:c5:a5:d3:dc:fc:a8:28:ed:77:24:cf:
80:ed:e8:67:18:79:6b:13:4e:55:a2:61:cd:ab:b8:50:41:b5:
7a:28:3c:46:90:24:32:ce:e6:6e:4f:bc:cd:9c:fd:1c:c0:05:
5e:83:ab:62:7f:84:9a:7e:8f:7b:42:9d:d8:b0:0d:5c:9f:bc:
b5:72:e7:fd:13:4b:9b:ec:81:ca:4d:8b:59:88:27:71:02:cb:
f3:06:cc:3a:fd:de:46:00:18:00:d5:68:8a:d2:8d:2c:6e:4d:
78:d7:05:9d:5c:09:bf:24:a4:88:ef:a0:f0:30:48:5e:e9:2b:
fc:6b:bc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:13 2025 by rpki-client