Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa
File: AS141889.roa (raw, json)
Hash identifier: KNyzogZ3N0qBiImF/wYSPunup+KUaIgVgwOioQvze9M=
Subject key identifier: 5F:2D:80:23:DF:0B:6C:D1:24:E3:ED:55:EA:0C:00:5F:DA:7F:BD:03
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5D55C37085F59C987EB9D51EBFC679A8673682DA
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa
Signing time: Mon 23 Sep 2024 09:00:00 +0000
ROA not before: Mon 23 Sep 2024 08:55:00 +0000
ROA not after: Mon 22 Sep 2025 09:00:00 +0000
asID: 141889
IP address blocks: 103.163.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:55:c3:70:85:f5:9c:98:7e:b9:d5:1e:bf:c6:79:a8:67:36:82:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 23 08:55:00 2024 GMT
Not After : Sep 22 09:00:00 2025 GMT
Subject: CN=5F2D8023DF0B6CD124E3ED55EA0C005FDA7FBD03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c4:d3:3b:84:1e:a0:20:9a:68:ce:5b:6b:a8:
fa:31:ff:46:0f:e4:52:85:65:23:8f:e7:3f:e5:ed:
dd:58:27:e4:0d:23:79:b5:55:f7:f6:82:98:b1:e6:
cb:84:86:18:a3:72:66:22:b5:96:92:51:ae:80:c8:
37:88:d2:42:8e:d6:70:cd:a4:f9:84:cd:4e:db:53:
c7:34:7c:77:94:06:57:46:81:90:04:4e:ee:f7:3f:
08:3a:08:47:10:a7:bf:ef:99:e0:3f:10:90:77:9d:
ec:75:2f:99:18:d4:c0:61:6e:76:80:65:be:13:bc:
fa:45:4b:9e:4d:1b:16:9a:93:e2:99:ab:c5:54:d6:
99:39:47:2e:05:f6:0b:30:ee:35:c6:dc:de:dd:72:
ac:aa:54:0e:cd:2d:52:86:51:d1:85:60:90:0a:91:
c9:ed:e4:1e:f9:1a:45:8b:eb:a6:72:ca:24:f6:69:
f3:6a:93:03:c4:00:5a:38:81:b3:a3:a6:8b:95:5d:
d2:0d:5e:15:05:1a:68:12:bc:ba:0a:94:46:9b:e4:
22:c4:b8:6f:03:4d:46:27:f4:1e:14:ed:14:d2:24:
5d:a7:1f:45:bc:d6:74:cd:86:85:6e:8f:17:09:85:
f2:3d:5a:53:5e:2a:db:a4:62:a9:79:dd:3d:28:00:
d3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2D:80:23:DF:0B:6C:D1:24:E3:ED:55:EA:0C:00:5F:DA:7F:BD:03
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141889.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.163.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:38:b2:24:16:b2:93:a3:4a:6f:78:45:d3:23:ca:46:2f:77:
0e:18:56:1c:74:fc:da:1e:51:05:c6:13:55:aa:d8:38:3b:57:
28:06:8c:84:0e:94:7c:7b:d6:32:57:f4:2a:eb:5b:b0:ff:55:
ab:9d:8a:ba:db:e9:1b:4b:de:9a:9e:3a:a4:04:96:00:7e:68:
29:eb:be:a5:69:db:bf:9e:e0:bf:4e:0c:27:84:1d:28:4a:44:
0d:a6:73:c5:4c:19:2b:f0:3b:8d:dd:c1:66:d9:8c:dd:71:bc:
35:92:53:74:5e:c1:69:d7:39:44:62:cb:c3:fc:3e:9e:dd:35:
85:e4:65:cf:12:30:25:ce:5e:bb:95:d5:9d:c4:52:ec:bf:a3:
d8:a9:a9:3a:24:f6:6c:1c:b4:e5:ba:9c:c5:c2:59:f1:b7:ed:
6b:5a:63:72:cd:29:21:9d:3f:cc:c6:b0:e1:b2:7a:c7:da:a8:
f1:bb:ae:4d:22:b3:e3:5d:91:54:35:61:5a:20:ed:27:25:df:
c1:c4:15:2d:65:c5:a0:59:da:9a:6d:94:ab:6f:48:66:42:89:
3e:2d:fe:b9:72:59:38:bb:9c:57:c7:74:ea:54:07:52:92:24:
12:40:ef:70:9b:12:54:e2:0f:1a:bf:45:47:db:f1:37:cc:46:
75:1a:49:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:56 2025 by rpki-client