Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa
File: AS141663.roa (raw, json)
Hash identifier: tVsuDVMNIRg8bduN67J6PekvFgYZT/XZjsL5MQCsYmw=
Subject key identifier: BF:F9:ED:0D:A0:0C:33:BA:EF:76:DE:93:F0:A9:FD:C9:18:5D:E7:EE
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 54049341450ED81A0526E4201A4306CB15D785E1
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa
Signing time: Tue 11 Mar 2025 05:00:00 +0000
ROA not before: Tue 11 Mar 2025 04:55:00 +0000
ROA not after: Tue 10 Mar 2026 05:00:00 +0000
asID: 141663
IP address blocks: 103.158.188.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:04:93:41:45:0e:d8:1a:05:26:e4:20:1a:43:06:cb:15:d7:85:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 11 04:55:00 2025 GMT
Not After : Mar 10 05:00:00 2026 GMT
Subject: CN=BFF9ED0DA00C33BAEF76DE93F0A9FDC9185DE7EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b4:36:30:be:e0:40:a9:32:28:29:1e:21:77:
62:2f:2a:40:69:b7:40:4e:9f:3b:73:cd:e2:dd:65:
67:9c:33:1c:2e:70:cb:0c:c0:5d:1f:48:f1:68:d1:
ec:0a:49:b4:87:9a:a7:50:40:27:c3:ac:5d:6f:ee:
86:90:00:a2:4b:19:ac:7e:3f:fa:fa:09:5e:c1:83:
47:4e:08:c7:de:8d:da:da:09:4e:f5:92:e3:9d:dd:
db:55:5a:2b:6e:f9:8f:05:a8:e5:04:0c:7d:9a:3d:
0c:14:46:14:4a:54:a0:87:13:24:ea:ef:93:90:80:
18:fd:ec:f9:47:40:16:a9:bd:ac:4f:43:72:8b:d2:
01:5e:97:a1:71:f9:00:2a:61:42:1a:22:93:2a:20:
86:4b:15:51:c1:2c:ca:be:40:42:06:71:77:f9:a5:
2f:b4:1b:32:c6:7b:07:da:9b:c8:eb:5a:8e:24:c7:
78:f2:ce:d1:95:98:17:dc:3b:e5:d3:fb:ee:a3:44:
c6:cc:ad:db:0d:e7:ed:e6:bc:1c:53:42:f5:fc:11:
10:56:43:99:8c:c0:44:91:01:d3:5b:da:dd:02:60:
bc:ab:ad:45:68:f4:04:fe:69:94:55:3f:ed:df:d6:
f5:10:b4:ad:e1:33:63:63:17:05:a1:79:65:b1:33:
97:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F9:ED:0D:A0:0C:33:BA:EF:76:DE:93:F0:A9:FD:C9:18:5D:E7:EE
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141663.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.188.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:e5:a0:80:fd:0b:c9:e5:fe:a5:b5:a8:7e:ca:57:dd:65:60:
a6:a1:a7:8a:82:47:52:a0:5f:14:09:c8:ea:d5:71:83:4f:b7:
26:c3:9b:c9:7f:d0:51:6a:fe:c8:90:35:67:cf:bf:da:0d:fe:
11:30:2a:86:ea:8a:64:0e:55:25:a4:73:56:77:63:3e:b4:23:
44:dc:c7:9b:b1:0a:03:bd:c2:a2:20:fa:b6:8f:5a:53:74:aa:
0c:9c:92:be:9d:60:dc:0c:76:8c:c1:8f:f1:d2:a5:74:d0:4c:
e4:4c:b0:de:54:f7:ee:fd:54:b0:d4:ea:5e:32:21:4c:2d:39:
59:50:7d:1c:82:c1:b2:e2:14:fd:26:d2:48:67:85:1b:49:83:
83:bc:9b:be:b6:0c:74:00:fe:8e:0f:5f:a9:a7:16:d1:f7:7d:
1b:53:3e:ab:8b:cd:3d:18:38:b5:f7:b1:b1:81:41:80:d5:4b:
bd:1d:3b:3f:47:7e:61:be:27:2f:f0:4c:d7:08:5c:7b:cd:f9:
28:dc:25:7a:07:2f:c6:94:f7:47:df:fe:63:ad:d2:8b:4b:fe:
c0:b3:98:e1:66:10:0c:34:4b:ba:e0:19:83:86:dc:23:bd:c9:
07:c5:eb:99:7a:ec:32:14:a4:8e:a3:1e:9f:59:f6:db:9a:10:
e2:95:32:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:42 2025 by rpki-client