Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140010.roa
File: AS140010.roa (raw, json)
Hash identifier: Fbsc9qfloBZy6M+okpiBJqtcVPRB2P+mi4jGXb0scEQ=
Subject key identifier: B2:56:C8:F9:A9:49:FC:55:29:1A:80:3F:2A:BD:A5:07:01:1A:F1:3D
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 28C0BB3FB32BCDE1238D4ABE58342260BE8753E8
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140010.roa
Signing time: Wed 04 Dec 2024 09:01:50 +0000
ROA not before: Wed 04 Dec 2024 08:56:50 +0000
ROA not after: Wed 03 Dec 2025 09:01:50 +0000
asID: 140010
IP address blocks: 103.147.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:c0:bb:3f:b3:2b:cd:e1:23:8d:4a:be:58:34:22:60:be:87:53:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 4 08:56:50 2024 GMT
Not After : Dec 3 09:01:50 2025 GMT
Subject: CN=B256C8F9A949FC55291A803F2ABDA507011AF13D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:59:3a:bd:d5:2a:08:1c:ca:27:df:5d:61:42:
8c:2a:93:fb:c4:ee:26:3d:9e:b3:7c:72:43:49:c6:
f0:89:1d:91:d9:b7:a3:d3:da:d5:cf:21:bd:cd:33:
69:04:6e:60:48:94:28:c1:04:cd:f8:ab:aa:60:e4:
7a:89:15:3d:83:99:86:b0:2b:9b:82:43:cc:46:5a:
35:d8:49:f4:ac:a9:85:2a:3b:36:01:2b:13:28:83:
50:19:ea:aa:82:4e:c6:ed:8f:12:f1:57:d7:d5:ad:
a6:eb:3a:c6:a0:6a:ae:82:02:d2:b8:bd:de:13:1d:
56:f3:76:ef:8f:ca:b7:b9:5c:c3:69:f8:08:61:67:
3d:97:7b:08:1a:0d:8d:a2:a1:aa:af:ff:43:44:55:
ae:72:8d:c4:9a:1f:c9:15:a9:34:db:ba:75:8d:48:
c6:eb:51:5a:fb:01:78:0a:c5:4c:0e:3b:43:36:31:
6e:b0:5c:3e:a8:c4:fe:c0:bc:7e:9e:a7:5e:0c:3f:
9d:65:9a:10:69:f3:14:70:28:1d:4e:73:aa:0b:23:
07:a5:0f:00:96:93:ae:cd:9d:63:31:d4:eb:1e:0d:
7c:e9:0d:63:b6:ec:a2:e8:aa:c9:e4:82:e0:3f:f0:
54:ce:a2:d5:f6:32:c6:5f:6e:2a:c0:d1:4d:03:71:
65:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:56:C8:F9:A9:49:FC:55:29:1A:80:3F:2A:BD:A5:07:01:1A:F1:3D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140010.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.241.0/24
Signature Algorithm: sha256WithRSAEncryption
82:84:ee:ab:53:9b:12:62:a3:63:c1:cc:9b:67:54:a4:40:7e:
67:de:1a:1f:6c:c1:72:85:96:39:5f:2d:df:cf:1f:68:3a:31:
cb:32:40:20:cc:01:78:cb:0e:79:00:cb:4f:23:3e:90:dd:4d:
8d:ef:52:a8:34:d7:6f:5d:e8:68:09:50:94:4e:ea:cb:e2:0a:
4e:00:9a:13:8c:db:51:50:43:22:2f:03:71:a9:f1:57:91:19:
1f:f7:2f:a3:4a:63:d2:df:3c:7e:6b:e7:29:1b:f6:08:28:56:
96:f4:a3:4c:e1:fd:5a:ae:44:9a:60:25:94:ab:b9:cd:84:71:
de:45:ca:88:33:aa:7b:72:b4:3e:42:d6:6e:7a:09:c0:b5:7d:
e6:6a:db:40:8d:1b:80:58:c2:52:70:cf:e9:c4:ae:da:c8:cc:
d1:a3:03:ca:b9:74:74:4b:61:14:97:b2:96:d6:db:6f:33:f7:
ce:c8:33:a3:ea:23:d4:d6:f3:50:1a:31:35:23:a1:9d:d0:f7:
28:2d:16:d4:fe:f8:34:e1:a3:d0:b3:b3:5f:b5:76:42:61:db:
50:93:4a:ba:10:03:33:e4:5a:94:78:7d:1a:f2:48:98:13:0a:
15:67:d8:b4:e2:4a:98:94:00:b8:73:03:ea:1d:5d:ee:fc:4c:
80:4d:96:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:54 2025 by rpki-client