Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa
File: AS141654.roa (raw, json)
Hash identifier: 0sPKnArPaHHZ9POT4UH8W7OVE5o01WjA+DB2JGNKzBI=
Subject key identifier: 49:03:3B:DD:96:87:DB:FA:93:68:2A:32:5B:5C:B9:4B:8C:53:E3:64
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3AD76BCB2F6F644317DF0D14D3F87B6C38848AE5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa
Signing time: Tue 10 Dec 2024 05:00:23 +0000
ROA not before: Tue 10 Dec 2024 04:55:23 +0000
ROA not after: Tue 09 Dec 2025 05:00:23 +0000
asID: 141654
IP address blocks: 103.162.144.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:d7:6b:cb:2f:6f:64:43:17:df:0d:14:d3:f8:7b:6c:38:84:8a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:23 2024 GMT
Not After : Dec 9 05:00:23 2025 GMT
Subject: CN=49033BDD9687DBFA93682A325B5CB94B8C53E364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:73:32:da:96:3e:6f:5d:3c:e9:c8:22:3f:
24:15:f5:10:ba:35:13:c2:8a:5e:00:b5:ce:e6:84:
87:98:34:42:98:d0:56:37:60:f2:12:75:ec:05:11:
02:69:23:83:98:96:ab:01:e1:cf:22:df:4b:c4:22:
1a:04:8f:49:b8:95:0a:ef:e3:0d:40:c3:41:68:fc:
87:3c:c4:66:4a:8a:a0:24:d6:e7:b4:91:21:6a:21:
e2:4f:96:3d:fb:4f:65:ca:d7:17:09:76:4c:ba:5f:
da:b1:ac:e0:27:49:e1:e6:c7:a5:21:0e:1c:f4:d4:
d8:d4:a6:f5:37:0f:ff:03:e7:28:1c:cd:bf:59:3f:
0d:d4:b7:c0:6d:f5:a3:0d:09:dd:c3:e6:be:49:79:
14:e3:ff:d8:3f:b1:06:23:96:17:28:3a:d4:00:94:
e2:c7:30:34:80:22:f6:9e:f5:c7:00:1a:8a:4d:f6:
10:67:88:5f:c1:6e:86:85:5f:c0:84:ea:fe:26:cf:
34:b4:61:da:7d:cd:06:2b:fd:1c:8c:0f:25:1d:23:
74:e0:aa:87:5f:4e:1b:fa:1e:0e:40:69:70:64:8e:
37:9b:71:b5:c3:0b:05:d0:c7:32:29:aa:79:c6:63:
24:5d:b8:aa:3f:a1:84:c0:c3:f0:b8:9e:1e:75:a0:
5c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:03:3B:DD:96:87:DB:FA:93:68:2A:32:5B:5C:B9:4B:8C:53:E3:64
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141654.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.144.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:4a:f7:b4:6c:c9:af:fc:90:f1:7b:8b:07:7d:30:25:c1:e8:
a5:e1:41:b4:27:c4:a9:26:be:c3:59:e6:f3:67:86:60:9c:de:
09:59:55:96:5d:23:40:ae:e9:e5:c6:01:bb:0b:b4:a0:33:fa:
7f:31:47:5c:ae:1c:e4:1a:ec:55:32:c1:59:1e:5f:37:5f:11:
1f:5e:be:9b:86:da:2c:a0:ad:58:65:29:bf:10:08:6d:1e:1f:
51:f6:77:7c:1a:e5:1d:f7:90:68:fd:64:07:31:c5:63:83:e5:
6e:b7:97:e5:84:2c:13:92:b4:a5:08:ed:13:c0:68:17:9d:d5:
c7:27:51:4c:b4:fe:a7:0a:46:f0:f4:ab:a7:0a:8e:f2:5d:0e:
0e:72:14:24:41:14:a6:4e:c2:60:d9:c0:74:fb:0b:ba:39:10:
e2:e7:8b:95:68:16:1d:65:f0:a1:4c:0f:00:c8:00:b6:dc:26:
94:25:37:4d:58:38:e2:12:4c:ae:bb:00:ea:b5:62:50:82:6c:
cd:42:dd:38:01:81:72:14:76:bb:0e:72:d6:55:0d:d9:e2:2e:
1f:e7:6b:ce:64:f9:db:b3:57:45:8b:78:45:8d:72:48:6a:a3:
d6:16:70:2f:9c:1c:3c:8e:1c:80:f8:16:7d:f3:20:1b:07:00:
ad:cd:e9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:29:26 2025 by rpki-client