Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa
File: AS140472.roa (raw, json)
Hash identifier: 0herpwDJ+KXREryxCkhf5DZaIwppWoYxy7Ia7351NnI=
Subject key identifier: CB:93:20:33:01:BC:EA:71:E1:DD:BA:62:BB:5C:5E:42:37:30:45:13
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 51DC23A613D86277BF5EA70F50090A87C69AC18C
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa
Signing time: Tue 10 Dec 2024 05:00:07 +0000
ROA not before: Tue 10 Dec 2024 04:55:07 +0000
ROA not after: Tue 09 Dec 2025 05:00:07 +0000
asID: 140472
IP address blocks: 103.153.192.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:dc:23:a6:13:d8:62:77:bf:5e:a7:0f:50:09:0a:87:c6:9a:c1:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:07 2024 GMT
Not After : Dec 9 05:00:07 2025 GMT
Subject: CN=CB93203301BCEA71E1DDBA62BB5C5E4237304513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8f:f0:ca:39:0b:c8:c5:bf:5e:bf:18:3d:c5:
04:9b:02:a4:cd:c0:44:6a:56:d1:25:8e:dd:7e:d7:
e3:cd:9c:f0:83:68:a0:a6:d4:b0:cc:7c:41:d9:49:
32:95:d1:a7:8b:11:83:a2:16:14:ba:77:f9:70:1d:
aa:b8:70:aa:5e:15:d8:52:83:30:22:a3:48:83:c1:
15:c4:2f:c9:2d:a7:67:6f:1a:74:1b:ab:ce:a3:1c:
fc:c6:c3:c9:ec:0a:55:b4:2f:85:69:8b:b1:12:c6:
7b:5b:ca:35:d8:43:24:3f:90:81:d2:77:93:84:a0:
3f:e5:f9:51:49:4b:fe:35:16:6e:a7:04:02:8a:c3:
de:cf:18:8b:36:95:9a:9a:46:12:e4:f8:8e:88:cc:
2a:a4:57:10:fb:f4:87:ac:3c:50:f8:8d:dc:ea:1f:
74:42:1a:a9:91:68:26:d2:84:65:1f:f8:40:7d:58:
a1:9c:ff:42:ae:2d:89:95:3f:7e:64:85:e0:71:dc:
c2:fe:7c:d1:22:aa:1f:af:42:38:2a:4e:45:6a:db:
2f:07:e7:4f:e7:6e:d6:4d:7e:ce:3a:ca:84:00:a7:
83:07:20:b8:03:70:29:eb:81:5c:43:0f:54:ec:2e:
b4:d6:ae:2b:4d:f7:fe:09:0d:c4:f3:21:bb:74:d4:
32:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:93:20:33:01:BC:EA:71:E1:DD:BA:62:BB:5C:5E:42:37:30:45:13
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.192.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:20:80:17:77:e7:63:ce:0d:b0:5b:7c:ff:fd:0e:35:2c:cc:
80:5b:e2:09:cf:7a:da:b4:87:f0:8c:54:da:ee:01:3d:3c:60:
24:37:ef:1d:d7:6f:64:ca:83:b9:e9:aa:38:d2:3e:0d:78:1e:
c7:21:01:53:d2:5d:5e:09:f8:6d:72:b2:d9:b3:d0:5c:37:d7:
58:de:71:ab:c9:26:4e:8b:26:ba:29:2b:e8:ac:67:73:e1:c9:
f1:69:fe:bd:5f:e7:38:f5:3b:03:2f:a6:d9:74:85:fb:ed:ad:
6d:dd:ae:dc:66:86:ea:ce:fb:af:c8:d2:40:35:71:a9:5a:a7:
34:2c:f4:d1:00:90:b0:6f:70:b9:a2:f0:a3:53:cc:1d:03:4a:
ac:a2:22:b0:63:8c:4f:fb:58:53:6c:6c:bc:96:5d:9e:79:6d:
69:00:09:ba:86:04:27:9c:e4:6f:b9:12:6f:09:13:7c:06:c0:
07:37:ea:fa:aa:0c:56:0a:89:56:c4:bb:68:85:83:56:ed:93:
f5:3e:13:4d:eb:bf:69:9b:be:d4:97:20:80:77:01:4f:a3:65:
bc:22:6e:6a:64:aa:14:a1:cd:fb:c7:8a:4a:76:5c:6c:45:03:
ee:16:ab:1f:08:99:3a:62:40:0b:f3:27:6a:52:c8:ca:2e:08:
3e:88:72:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:42 2025 by rpki-client