Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa
File: AS139957.roa (raw, json)
Hash identifier: KXrJI8heXG7EGn6kj046CcgKAzBgqZBmcsPGx/zAdF8=
Subject key identifier: 40:2F:3E:25:C1:3F:C1:C3:19:C9:45:F6:9C:47:F1:9E:E2:AF:22:CE
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 44F567A5875568BB179246C2DAAB8B7D1E2B3117
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa
Signing time: Tue 10 Dec 2024 05:00:09 +0000
ROA not before: Tue 10 Dec 2024 04:55:09 +0000
ROA not after: Tue 09 Dec 2025 05:00:09 +0000
asID: 139957
IP address blocks: 103.145.46.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f5:67:a5:87:55:68:bb:17:92:46:c2:da:ab:8b:7d:1e:2b:31:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:09 2024 GMT
Not After : Dec 9 05:00:09 2025 GMT
Subject: CN=402F3E25C13FC1C319C945F69C47F19EE2AF22CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4f:4b:c6:68:b8:27:16:24:f8:57:94:22:97:
eb:28:77:08:a7:0f:57:dc:f6:9a:fb:b3:c1:f6:0d:
c1:6d:62:ef:01:c8:1a:6f:2e:e9:ad:6a:30:e6:28:
b0:f4:98:c0:79:90:e9:c1:5b:09:fe:84:dd:6c:3f:
87:6d:7d:76:8e:df:e7:2d:c0:58:63:db:6e:b7:52:
3b:fe:3a:53:93:e2:54:b7:5d:14:f3:74:b9:e5:6d:
80:ab:45:a1:e4:11:19:88:f2:bb:ae:df:d5:e5:9f:
16:93:c7:fa:81:93:6f:75:fe:14:c1:ff:f7:5e:a2:
1e:c8:7b:a8:cb:83:ef:69:0e:f1:41:1a:4a:af:a2:
b9:7a:1f:1e:c1:2d:b6:19:ae:4c:87:cc:0d:92:3a:
d8:15:0b:ff:e5:fd:0d:ba:6e:a7:56:2b:9a:68:08:
89:54:a3:03:e5:af:6a:50:f2:43:66:a2:f8:ca:27:
21:5a:64:c9:45:25:81:d1:ae:a2:9f:aa:7e:82:20:
f7:83:f1:8f:f5:45:42:6f:0e:d1:cf:13:ee:96:81:
96:18:0c:97:3f:ab:c0:b0:44:55:11:2c:6c:de:3e:
84:5d:12:e8:94:61:93:1a:86:fb:07:4e:dd:25:c1:
5d:75:87:9e:63:c1:43:ca:c9:5a:d0:a1:10:9a:04:
14:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2F:3E:25:C1:3F:C1:C3:19:C9:45:F6:9C:47:F1:9E:E2:AF:22:CE
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.145.46.0/23
Signature Algorithm: sha256WithRSAEncryption
78:58:a3:0a:31:54:29:6e:e1:a7:00:aa:b1:b8:c8:2e:2e:7d:
2a:73:a0:c0:09:49:6f:1e:d7:a8:c6:c3:f1:4a:30:60:52:b8:
15:0b:ba:4d:23:5d:a3:a5:92:9a:7d:0e:da:11:5f:36:8d:f1:
e6:46:86:fb:ff:00:25:8f:f3:18:61:4d:2f:76:b9:a0:bd:fd:
db:58:3c:6f:d4:5f:ef:4a:69:fd:72:4f:77:26:63:74:df:b3:
bc:23:bc:ad:ef:92:ac:1c:c5:d8:d2:7b:dc:09:f7:06:f6:27:
78:41:ab:c8:e8:52:34:6d:e1:4f:02:9b:0f:2a:5f:a2:d1:b8:
80:df:aa:76:68:2b:91:d2:3a:02:4c:60:04:b5:ca:aa:28:b1:
a9:2a:4d:86:dd:14:c2:43:c9:21:d6:da:92:fb:63:bd:12:d4:
fc:43:c6:61:a3:91:bd:ba:5b:cc:4c:73:da:17:1d:08:4c:64:
ef:8f:89:71:06:dc:3c:2f:67:ad:65:b8:d9:65:a5:d3:0e:71:
21:d8:d4:0a:3c:73:8b:e5:e3:c5:26:27:57:b6:ec:02:90:9d:
d9:1f:64:73:96:01:6b:7a:48:c5:7b:a2:33:29:a9:6c:8f:d1:
60:8a:c9:8d:43:16:14:ee:d3:75:2b:1c:15:5f:ba:13:07:b5:
cf:d6:bf:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:32:13 2025 by rpki-client