Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa
File: AS140479.roa (raw, json)
Hash identifier: S7/XeAlsN77zj2vvsq1aYYFu3gr+ayrhZ6fnQqUc+uA=
Subject key identifier: F0:09:48:65:50:0A:6A:A6:96:70:1B:BF:76:07:D5:F3:C5:A8:93:A8
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5730B62A630C7D087BB146E8D8BAE0F01AB43F17
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa
Signing time: Fri 13 Sep 2024 09:00:00 +0000
ROA not before: Fri 13 Sep 2024 08:55:00 +0000
ROA not after: Fri 12 Sep 2025 09:00:00 +0000
asID: 140479
IP address blocks: 103.154.52.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:30:b6:2a:63:0c:7d:08:7b:b1:46:e8:d8:ba:e0:f0:1a:b4:3f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 13 08:55:00 2024 GMT
Not After : Sep 12 09:00:00 2025 GMT
Subject: CN=F0094865500A6AA696701BBF7607D5F3C5A893A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:e4:51:07:a3:1b:c3:90:bb:9a:9d:30:41:
80:1b:66:c2:48:60:f4:7a:8e:99:31:3f:13:14:e8:
cc:f7:f3:72:1c:5e:20:c7:d6:3f:bf:1a:e3:4f:7d:
d0:55:f4:ff:79:a7:be:a5:3b:a5:be:7a:50:f1:ea:
6a:bd:7e:50:c7:92:e8:b2:92:2e:af:e8:9e:96:5c:
29:a5:1c:b6:b4:c5:c6:9b:65:b2:69:80:06:f6:6f:
96:c5:94:d5:ca:d0:34:25:8e:90:89:1a:ee:cc:8c:
c1:a0:4f:23:64:68:ce:78:b1:d4:ce:11:a7:d9:3b:
64:d9:5d:71:2c:c7:4e:44:6f:c0:2f:84:90:8a:a2:
e5:45:ed:c7:90:5b:8f:04:cd:ce:95:76:58:96:48:
21:c6:a4:f3:51:51:de:3b:89:a4:ce:82:73:c6:07:
1c:fa:37:ea:2b:43:44:5b:1c:74:a6:36:85:86:55:
c3:33:b5:be:be:09:a5:e5:74:24:7f:f2:45:21:1a:
1f:fc:8c:52:7e:57:05:49:51:f7:06:ec:9e:70:4b:
56:0f:70:6f:68:7c:a4:26:3e:c1:75:d3:64:5e:8d:
4f:63:b6:3b:a5:1e:8e:e2:57:7e:60:2f:36:6c:75:
21:8a:52:9a:46:bb:e2:e4:56:bb:ad:6a:f6:f6:5d:
05:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:09:48:65:50:0A:6A:A6:96:70:1B:BF:76:07:D5:F3:C5:A8:93:A8
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140479.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.154.52.0/23
Signature Algorithm: sha256WithRSAEncryption
28:1b:5e:ca:91:b7:53:ab:f3:cb:d4:f7:f5:c6:c4:6d:e5:e6:
ae:06:8d:ec:4e:c5:c1:2e:f4:cd:cf:6e:d2:dc:b7:73:8f:64:
c5:54:f6:06:70:04:bb:24:0d:51:4e:32:15:5e:57:6c:b5:ba:
1a:9f:74:ca:c4:ca:da:33:5f:13:6d:ac:bc:76:47:76:25:21:
6d:6d:35:aa:ee:e5:c3:89:08:62:17:0e:a6:dc:31:90:50:1a:
98:98:1f:1c:c1:e8:f1:b4:7e:86:64:5b:87:f5:b5:6f:5c:64:
e4:fc:c9:6f:13:4d:b7:c7:a2:6c:98:ae:db:df:a3:2a:45:b2:
de:1d:ff:6a:25:62:ef:38:ad:be:14:2d:52:86:58:3e:87:68:
c2:33:a5:bd:b8:15:e9:72:31:b5:82:af:47:a6:15:b5:eb:22:
85:d0:b4:ee:09:15:b0:01:53:d9:aa:db:62:5d:61:1e:92:46:
1a:21:c1:25:c7:9d:01:e6:f4:2c:fb:bb:f8:ee:12:d6:58:69:
99:26:33:18:02:46:a0:03:06:97:00:79:d0:2c:bf:f6:78:8a:
96:fe:b5:83:e3:79:c9:5d:bb:2a:fa:7f:56:90:e3:31:7e:41:
d8:90:88:a1:43:54:68:4e:f3:cf:76:28:37:7b:05:66:60:cc:
b9:85:e3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:14 2025 by rpki-client