Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa
File: AS139977.roa (raw, json)
Hash identifier: 8W2SKej/PFzfGgmLE7dook2AQs6r8wJKeNEhTwAVYLA=
Subject key identifier: 8E:69:3E:86:44:78:A9:A4:BC:89:C0:54:4C:C1:57:D7:F8:E2:D0:8E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 411D3A5CE0BF3FF8DE5EEA099A423AD663789DAC
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa
Signing time: Tue 04 Mar 2025 05:00:00 +0000
ROA not before: Tue 04 Mar 2025 04:55:00 +0000
ROA not after: Tue 03 Mar 2026 05:00:00 +0000
asID: 139977
IP address blocks: 103.148.2.0/23 maxlen: 24
2405:c640::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:1d:3a:5c:e0:bf:3f:f8:de:5e:ea:09:9a:42:3a:d6:63:78:9d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 4 04:55:00 2025 GMT
Not After : Mar 3 05:00:00 2026 GMT
Subject: CN=8E693E864478A9A4BC89C0544CC157D7F8E2D08E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:28:fe:db:7a:87:e4:bc:20:57:c4:44:2b:97:
6b:42:bd:a3:ff:bc:cb:d9:2d:d6:f2:d4:41:ff:30:
69:86:da:91:4a:a3:b1:06:b2:d1:93:40:97:6e:ed:
6c:92:af:f2:2e:31:0a:28:eb:d9:4a:37:3a:2c:1b:
cd:a9:97:c5:bb:e6:e8:1e:1f:d8:a7:bd:cf:99:6d:
98:72:f6:ea:eb:8b:48:5c:95:f1:fe:e3:00:1e:4c:
e3:c1:5e:f3:2f:f3:2a:f9:2f:c9:44:9c:1e:fa:6c:
09:15:39:98:26:9d:9a:f7:c1:ea:6b:e9:4a:18:e0:
da:28:c1:6a:8b:77:e9:d0:9c:71:ef:1a:63:0c:58:
d5:08:80:b2:f6:40:14:c3:e0:6e:16:06:f8:4e:36:
27:af:f1:49:de:b0:72:ac:a9:c4:c1:4e:47:fd:3c:
37:27:9d:85:d9:d6:44:32:2b:6f:ed:e6:a2:bc:84:
00:d7:f1:73:6a:8c:66:ee:2e:f5:24:f5:09:18:03:
2d:09:37:31:2f:13:81:37:8d:ac:7a:f0:2d:71:46:
c8:3a:b3:f8:66:7b:d7:8f:46:a6:a9:3d:07:51:e9:
65:49:95:e9:f6:d8:a5:5e:c2:b4:4c:64:c7:2c:13:
62:1a:02:db:8b:c0:30:84:33:6e:c5:0f:ff:a0:a7:
52:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:69:3E:86:44:78:A9:A4:BC:89:C0:54:4C:C1:57:D7:F8:E2:D0:8E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139977.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.2.0/23
IPv6:
2405:c640::/32
Signature Algorithm: sha256WithRSAEncryption
26:6f:4c:6f:da:c9:d8:2d:c8:77:08:dd:81:37:37:66:e8:4d:
d6:e9:ab:d5:36:0c:f7:65:44:0f:dd:4f:3b:47:2c:2c:99:2e:
06:8d:80:b1:93:ff:83:6d:2c:f2:d6:80:92:dc:4d:91:d7:92:
2e:b8:a1:94:80:14:59:77:b0:32:2e:a5:04:16:97:ef:65:60:
c7:2d:ca:12:8c:cf:34:0c:bb:a6:be:73:f6:74:fd:f4:57:6f:
4b:46:35:f4:98:3c:6c:6b:39:8d:8f:c4:c6:7c:46:f6:93:4f:
2c:4c:76:6d:a1:43:ee:91:b6:07:ba:a4:57:6f:32:ee:c6:a0:
43:55:11:f2:23:6c:3b:74:56:70:7c:24:ae:64:c3:26:c6:be:
b0:0f:99:d7:e0:f5:e7:ee:7e:bd:4b:b6:08:45:c4:87:88:21:
8a:4f:f4:4c:a5:63:ec:0a:af:b6:83:fc:fa:b7:8e:d8:d5:c7:
d7:b6:5c:43:c2:14:02:71:06:d2:3c:30:08:f8:cd:6a:7f:fc:
e2:59:6b:57:ec:92:7a:25:6b:57:f3:5b:e1:36:84:18:5f:75:
c7:ce:f6:72:49:24:2d:70:db:8f:14:50:3f:a6:57:15:c6:f4:
ba:18:56:63:ed:95:03:da:45:6d:f1:b1:73:90:65:14:b0:a9:
dd:28:67:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:28 2025 by rpki-client