Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa
File: AS141128.roa (raw, json)
Hash identifier: G3Yhxpds20xB9ZUHVAHowr1vOr/pdrGqNx4Tx6AMK3A=
Subject key identifier: 08:66:E9:D3:B2:0C:8B:7B:2C:54:A1:0A:E6:BE:A4:26:6A:BE:09:57
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0F519F1A67D2CA04D7E619FD5E83657B2FF8C23D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa
Signing time: Tue 10 Dec 2024 05:00:26 +0000
ROA not before: Tue 10 Dec 2024 04:55:26 +0000
ROA not after: Tue 09 Dec 2025 05:00:26 +0000
asID: 141128
IP address blocks: 103.158.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:51:9f:1a:67:d2:ca:04:d7:e6:19:fd:5e:83:65:7b:2f:f8:c2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:26 2024 GMT
Not After : Dec 9 05:00:26 2025 GMT
Subject: CN=0866E9D3B20C8B7B2C54A10AE6BEA4266ABE0957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:97:ac:a1:65:1c:79:60:28:06:59:d5:b7:
3c:d9:a5:2e:e5:a4:59:6b:22:64:9f:00:7a:74:42:
97:a3:2d:9a:a2:95:f1:fc:c5:d6:6b:95:40:9c:97:
7b:6a:54:a0:f2:ae:f0:76:17:71:ae:56:00:5e:83:
88:e4:66:8a:e6:9f:85:9d:46:23:22:b3:4b:85:55:
f3:6d:c9:de:85:5c:c0:9f:6f:3b:ff:a9:62:df:da:
07:12:f5:17:d1:47:60:6c:c1:fd:d3:b3:49:b4:3c:
fe:ea:f9:f2:de:89:f2:72:df:36:87:6b:13:f3:2a:
91:75:90:87:e6:ef:32:ec:56:d0:42:dc:0f:2c:53:
99:63:06:56:1f:34:59:51:e9:a1:87:18:fe:d7:1a:
4a:2e:35:bd:51:26:1e:2d:37:8e:df:2d:01:7b:32:
a7:10:75:e7:b3:44:2b:71:c4:55:34:8e:75:91:ca:
38:24:cb:67:fb:b5:e7:7a:9a:b5:b0:a7:97:70:b6:
11:f0:ae:80:9e:f0:0a:43:de:6c:2a:49:f4:06:b6:
54:a0:af:6d:79:cd:2f:68:39:68:ef:68:6b:ab:ec:
60:9e:75:34:ab:c5:0b:af:0e:30:8f:cb:3e:ca:bf:
3a:5e:9d:c5:db:9e:a4:4e:49:8f:12:6c:51:49:69:
9b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:66:E9:D3:B2:0C:8B:7B:2C:54:A1:0A:E6:BE:A4:26:6A:BE:09:57
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.130.0/24
Signature Algorithm: sha256WithRSAEncryption
69:98:d8:91:94:1b:56:30:80:82:10:83:f5:50:aa:d7:b4:ad:
8d:97:c3:da:9f:e4:13:87:1c:0d:11:b1:33:ca:7d:98:0f:27:
dd:61:08:1b:cc:09:2d:32:f4:de:59:d6:2b:43:ca:e4:7f:a1:
4e:cb:46:77:e6:7e:19:5f:3c:cf:a0:00:3c:11:b8:a5:98:6d:
c4:0f:14:bd:07:44:d2:94:bf:e4:ee:65:9d:a8:91:22:b9:31:
b5:5f:78:fb:04:ab:c9:13:51:32:f2:1c:6c:94:28:47:06:62:
92:8c:1b:bc:bc:a8:7a:a3:68:50:98:cf:a8:26:2d:e3:b8:80:
2e:83:4b:54:94:59:a1:44:f7:29:43:23:9d:36:4d:14:5c:32:
d8:7b:a1:50:cd:b8:e1:96:19:57:f8:98:13:3d:63:6a:92:4b:
6d:b8:22:ed:19:66:4e:34:f2:d6:a8:47:2e:78:cd:6b:8a:44:
d5:47:74:ae:03:db:ab:32:b0:60:db:1d:c8:88:b0:c0:79:e0:
39:7c:0a:b6:0a:3a:04:f4:17:87:b0:4c:92:0c:89:b1:dc:41:
5a:19:02:fd:79:13:cd:71:dc:28:80:1a:cc:36:5d:26:43:73:
01:93:de:85:1e:b9:c9:60:64:9c:6a:0d:6d:0a:c6:1d:ba:85:
c0:c4:f6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:39 2025 by rpki-client