Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa
File: AS141073.roa (raw, json)
Hash identifier: fcU9OLjwq3phHgbSyf+hTe0sV9HeKrIsgGjudLVE7TE=
Subject key identifier: 0C:4E:6B:F4:1E:D4:5D:78:04:9B:73:7B:09:98:36:60:6E:DB:9E:72
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5AAD3B629A2D1A77E49F302672370DD4290A3517
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa
Signing time: Thu 19 Dec 2024 03:16:12 +0000
ROA not before: Thu 19 Dec 2024 03:11:12 +0000
ROA not after: Thu 18 Dec 2025 03:16:12 +0000
asID: 141073
IP address blocks: 103.95.20.0/23 maxlen: 24
103.229.200.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:ad:3b:62:9a:2d:1a:77:e4:9f:30:26:72:37:0d:d4:29:0a:35:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 19 03:11:12 2024 GMT
Not After : Dec 18 03:16:12 2025 GMT
Subject: CN=0C4E6BF41ED45D78049B737B099836606EDB9E72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9c:e5:ad:80:03:2a:2b:4f:3f:7c:5e:87:a8:
e1:27:38:d0:cb:56:b4:77:99:2d:29:23:cb:8b:4a:
78:4f:07:74:e9:a7:41:1f:a6:ab:77:00:70:68:66:
bd:0b:b8:b5:d4:49:2a:d0:55:27:cb:82:1b:67:14:
da:0a:6c:35:8c:94:7e:69:34:9b:99:2c:6b:65:8a:
80:12:22:4e:a1:41:9e:6f:c0:3b:fd:93:95:f4:4c:
f7:e9:ff:fd:53:33:df:95:57:78:da:ec:8b:24:76:
a0:04:93:da:75:7b:e0:e5:2b:ee:98:db:a2:d4:6e:
66:b2:5d:ec:d9:c5:21:0a:5c:29:8e:9c:8d:90:8a:
a8:6b:4e:f7:53:ac:e3:ee:e8:db:73:02:92:5f:ad:
49:e1:5c:10:cd:f4:ff:18:f4:57:de:fe:47:e5:b7:
98:87:31:53:2d:25:33:c5:90:64:3f:33:58:71:37:
2c:32:f5:bf:db:e7:2f:e3:bf:9e:79:85:b1:2d:65:
4a:64:03:63:d3:74:fa:ce:ac:d8:24:8e:89:d0:a4:
81:5a:88:fb:4f:d4:95:a4:63:18:81:5e:82:31:e8:
1b:3e:29:f2:2c:ac:85:8f:b4:c1:8a:06:00:60:06:
ac:50:22:2a:50:48:96:64:7f:71:30:f1:09:82:a1:
19:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4E:6B:F4:1E:D4:5D:78:04:9B:73:7B:09:98:36:60:6E:DB:9E:72
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141073.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.20.0/23
103.229.200.0/23
Signature Algorithm: sha256WithRSAEncryption
32:de:da:94:ca:ec:22:b8:35:64:99:a5:a3:7c:07:39:3e:0f:
37:ae:a5:7d:b1:18:7d:bf:be:7b:18:c6:0d:97:ef:24:ee:0e:
ad:50:2b:66:ef:62:f2:fe:9c:7b:52:61:52:e3:8d:ba:b3:58:
92:73:aa:27:ce:5e:6f:75:f4:13:81:31:38:ac:6b:21:64:a4:
48:5c:11:fb:ee:e2:c2:df:7a:e8:08:ef:31:58:12:a6:11:30:
ab:d6:b7:cb:de:88:d6:6f:9b:35:ac:3c:58:2c:26:c7:dd:06:
4e:21:6c:25:b0:2a:f3:0c:72:e5:67:02:f5:d1:ed:95:ef:91:
8a:0f:8b:fd:f5:a6:68:eb:c5:7e:ce:a9:16:b9:3f:9d:7a:4d:
e0:53:84:ef:30:09:59:cf:5e:bd:ef:00:c4:2f:ec:32:0c:ff:
a0:7c:5b:b6:f5:b5:c1:d9:63:55:cf:ea:25:1c:0e:8f:35:1a:
6b:cc:e6:ad:ab:76:d8:66:f8:5e:ba:9e:ee:be:80:18:8a:69:
d4:7a:f6:37:36:ba:33:ee:46:46:9c:d6:b0:c0:91:2a:b8:c9:
ca:d7:cd:14:2d:09:12:4b:84:67:72:89:36:44:2a:00:ab:55:
9a:e3:de:5d:8d:85:41:d7:1f:0c:50:a3:1b:15:14:08:d8:6d:
99:da:f3:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:39 2025 by rpki-client