Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa
File: AS141061.roa (raw, json)
Hash identifier: Zm5ySAVG1a7NIxDH34xEPS94YdOHxGfk8G7CsOAsUKc=
Subject key identifier: 8B:AD:14:42:66:88:B3:1D:76:EE:AA:69:5B:A2:DE:62:0C:5B:4A:66
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6B777647E6A740B5901C4AA33D624670D2D9D69B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa
Signing time: Tue 10 Dec 2024 05:00:03 +0000
ROA not before: Tue 10 Dec 2024 04:55:03 +0000
ROA not after: Tue 09 Dec 2025 05:00:03 +0000
asID: 141061
IP address blocks: 103.155.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:77:76:47:e6:a7:40:b5:90:1c:4a:a3:3d:62:46:70:d2:d9:d6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:03 2024 GMT
Not After : Dec 9 05:00:03 2025 GMT
Subject: CN=8BAD14426688B31D76EEAA695BA2DE620C5B4A66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:41:eb:69:e8:25:3b:45:ed:07:f7:df:16:e7:
89:ff:89:40:52:e2:55:6c:71:d5:9c:8f:cc:0b:25:
15:64:79:6e:1c:dc:65:8f:4b:d2:3b:27:d4:09:dc:
50:d1:7e:48:0e:97:b6:db:14:97:3d:81:6d:d3:75:
8c:80:1a:9a:53:cc:a0:3e:b5:93:06:7c:6f:f2:2e:
d1:b1:f6:62:6e:0c:df:45:c3:bc:28:98:16:30:04:
cf:54:52:41:f8:51:db:09:d8:d7:e4:2a:f7:70:cb:
6e:d8:0f:81:1a:7e:22:4a:90:96:c1:60:6c:fe:89:
e5:13:75:ad:11:f3:bc:52:89:27:09:e8:d1:cb:6d:
10:4a:f6:f3:f7:cf:2f:fa:84:fb:0f:59:91:78:e6:
47:75:7a:69:3b:10:65:26:f2:69:b6:fe:a7:3e:8f:
51:66:db:93:01:64:1c:2b:65:8a:f5:7b:eb:4d:bc:
8e:c7:05:cb:70:3e:e4:59:07:01:51:13:46:71:9a:
56:70:bd:bb:a5:86:3f:4c:4b:4b:12:e2:7a:dc:08:
c8:30:8e:24:84:e9:07:55:73:b4:c7:b3:02:b9:f3:
34:08:e7:30:75:5e:91:60:5b:99:c1:00:90:6c:14:
f9:97:29:73:46:71:4b:b5:e3:80:1c:2a:7b:43:d7:
da:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AD:14:42:66:88:B3:1D:76:EE:AA:69:5B:A2:DE:62:0C:5B:4A:66
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.144.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ba:2b:3a:80:21:a4:0b:10:4b:ea:11:e2:52:90:ff:c2:c4:
13:ee:ad:e8:ba:c3:d7:3f:78:34:c3:48:86:d8:cd:fa:a6:d4:
76:44:3d:05:bc:0f:b9:33:f9:ec:9d:23:23:a9:93:52:1a:68:
70:63:21:75:7d:64:02:e2:dc:af:6a:fa:f4:7d:71:71:e1:f2:
fa:56:52:e5:c1:fb:5b:cf:23:64:a1:b0:0f:33:ce:4a:49:1a:
c6:cd:71:93:d1:de:96:52:a8:8c:67:a3:87:8b:4a:45:a6:5e:
ab:0f:d9:6d:31:00:4f:8d:a5:13:15:4c:1d:19:b3:bf:5b:fe:
cd:7e:f6:d4:ba:eb:8a:a4:b2:56:7e:05:eb:e9:52:21:d4:fe:
c6:34:1b:20:12:50:03:68:f7:8f:12:6e:6a:0a:c4:60:3c:a7:
40:11:49:25:ad:be:08:a1:da:86:a6:4c:c9:5b:c0:5a:64:39:
4a:9c:25:8a:2a:52:89:44:60:b7:3f:78:59:86:39:f6:f6:fb:
42:b4:50:da:43:69:30:1b:00:a7:d7:a8:56:e9:85:0c:5e:12:
3f:7a:ba:4f:12:32:21:69:46:bc:eb:71:98:55:aa:74:15:8d:
e4:64:ce:c1:1c:ac:3a:3a:46:e9:eb:cb:82:fa:de:a9:eb:98:
0c:00:c0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:12 2025 by rpki-client