Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa
File: AS141104.roa (raw, json)
Hash identifier: cIwQpYJdbuByNPBdqcK382uDOBReJukt5lOvUbOu8aw=
Subject key identifier: E0:F7:9B:01:DC:E8:46:DB:D8:11:7C:B3:82:E6:24:22:07:2C:A1:C4
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0423B96836A46C59D764EDA3F8D30487E5C86623
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa
Signing time: Tue 10 Dec 2024 05:00:26 +0000
ROA not before: Tue 10 Dec 2024 04:55:26 +0000
ROA not after: Tue 09 Dec 2025 05:00:26 +0000
asID: 141104
IP address blocks: 103.156.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:23:b9:68:36:a4:6c:59:d7:64:ed:a3:f8:d3:04:87:e5:c8:66:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:26 2024 GMT
Not After : Dec 9 05:00:26 2025 GMT
Subject: CN=E0F79B01DCE846DBD8117CB382E62422072CA1C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7f:9c:e5:78:6c:42:e5:98:aa:b5:37:8f:bf:
01:8c:12:73:16:b1:5b:d8:a7:bb:53:9a:08:88:ad:
3c:85:b7:68:86:39:c0:18:2b:b7:82:cb:f5:56:44:
c3:8b:46:c3:cd:ef:7b:cf:5b:48:85:f4:2f:26:52:
4f:be:ce:75:9c:48:97:37:ee:14:71:60:95:a8:25:
c8:6a:2e:c2:c6:1b:c7:17:80:70:94:be:bc:40:45:
b2:06:7a:6b:66:e0:4a:2f:da:26:c7:c8:9c:e5:16:
6b:50:6c:7b:69:28:60:41:e7:74:fe:d8:c8:b1:4f:
35:c1:6f:8b:8a:c2:46:64:d7:31:1d:99:9d:d7:85:
aa:3e:00:cc:aa:ef:7f:fa:99:ac:fe:99:ed:57:d5:
2b:5a:7b:c3:e3:5e:8d:32:0a:07:55:19:fb:79:04:
e9:42:68:bb:e9:91:e6:87:94:64:de:b5:c5:09:b4:
d4:13:63:69:50:8b:f9:61:7d:c9:c4:2d:52:ab:d6:
4d:c3:2f:79:a5:19:4d:bb:94:7d:19:2b:83:73:36:
c4:b8:f1:dc:86:f4:ce:c4:d1:06:be:a8:cc:b2:fd:
70:cb:55:78:26:79:13:f0:6e:e8:09:23:4b:e3:5c:
8c:e6:46:ae:d5:9a:e7:b7:41:cb:5d:65:3c:b4:2c:
7c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F7:9B:01:DC:E8:46:DB:D8:11:7C:B3:82:E6:24:22:07:2C:A1:C4
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.254.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d4:c9:9f:84:93:00:06:74:d5:9c:39:6f:03:f0:68:c1:6f:
12:41:08:a8:f2:81:bb:9d:5c:9c:35:4f:57:ee:8e:0a:3a:18:
4b:d9:04:5c:58:8e:4d:6a:f1:96:71:7d:ab:17:83:55:a6:7b:
ee:f8:1b:cb:b0:89:f8:ec:7c:ca:68:f8:88:38:3e:0c:c1:01:
c2:a1:ee:d8:2b:b8:9b:1b:f5:06:5f:7e:70:87:d8:4a:4b:7a:
53:88:15:51:e4:04:ab:49:d1:8e:1e:dc:d3:e4:27:c3:09:2c:
b2:58:b2:f0:61:ce:de:64:db:11:4c:04:13:2b:0a:42:b7:58:
2a:d5:73:a6:41:e0:5b:8c:45:49:91:cf:9e:11:7b:55:2c:17:
e8:e4:ac:46:b8:ac:ae:e2:84:85:49:dd:33:5d:55:f9:4e:04:
81:66:dc:09:ad:ae:87:fc:65:ad:72:1e:52:b9:5d:31:b3:7d:
5f:4a:56:98:02:6d:9f:f2:13:ce:4b:00:6c:26:3e:31:32:3a:
e0:5b:d6:9c:49:1d:a4:5f:41:30:3e:e0:28:eb:20:fc:71:c8:
fc:82:59:33:41:16:76:50:6d:a8:04:52:2e:e3:91:e9:e0:9c:
91:a6:c0:c3:a5:49:e0:4e:23:17:02:75:26:88:63:4c:ef:7d:
6c:68:33:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:41 2025 by rpki-client