Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141892.roa
File: AS141892.roa (raw, json)
Hash identifier: vj9wvTM1EoLb2JBd6L+LcT8hK4LtBANOc838xD9a3As=
Subject key identifier: 05:E9:99:69:92:77:C6:1A:FD:7E:7C:80:CF:5C:EC:43:7D:FD:C3:5E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 55A4F0C249206BC138A8AE7C6C2154800BD13AB2
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141892.roa
Signing time: Thu 16 Jan 2025 08:00:00 +0000
ROA not before: Thu 16 Jan 2025 07:55:00 +0000
ROA not after: Thu 15 Jan 2026 08:00:00 +0000
asID: 141892
IP address blocks: 103.163.161.0/24 maxlen: 24
103.186.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:a4:f0:c2:49:20:6b:c1:38:a8:ae:7c:6c:21:54:80:0b:d1:3a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 16 07:55:00 2025 GMT
Not After : Jan 15 08:00:00 2026 GMT
Subject: CN=05E999699277C61AFD7E7C80CF5CEC437DFDC35E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:df:ce:78:f8:c8:3e:f2:e4:3c:dd:26:64:
5c:ba:dc:d7:05:5b:a7:24:50:05:62:41:38:f0:6f:
93:40:9c:00:87:3c:0e:09:ec:db:bc:9f:88:be:3b:
1f:9c:71:63:a2:2d:3c:ae:83:62:0c:9a:83:e8:ad:
27:fb:94:70:9d:68:0c:05:95:52:21:cd:b6:20:d5:
59:47:17:17:10:f9:5f:2a:91:a5:b3:b6:d5:8a:a5:
86:c4:37:37:c1:67:aa:7b:89:03:43:c5:1d:4c:ef:
4b:b7:24:ce:7e:c1:1e:a5:de:65:1e:9b:43:3d:ba:
aa:85:bc:2f:bf:7f:af:85:3e:c0:69:46:77:29:72:
ec:42:74:54:8e:e7:31:8b:23:1f:ba:27:e8:39:19:
ad:93:eb:78:32:6d:6e:7c:2e:90:de:7e:78:3e:5a:
0a:50:16:8e:28:89:05:8c:00:08:79:cd:b4:ad:62:
56:1b:e3:10:b5:12:46:89:ef:c8:c6:1d:a2:84:44:
24:7c:13:35:59:ab:31:76:d9:de:f1:3d:a0:bd:ec:
21:b5:0f:ba:5f:16:64:cc:d5:21:ff:7e:54:f2:e3:
16:8c:6f:a7:5e:3f:8d:29:2b:3c:00:84:c2:59:64:
fd:ef:44:d9:bf:aa:f6:4f:0f:64:db:2f:af:4c:ef:
37:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E9:99:69:92:77:C6:1A:FD:7E:7C:80:CF:5C:EC:43:7D:FD:C3:5E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141892.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.163.161.0/24
103.186.30.0/23
Signature Algorithm: sha256WithRSAEncryption
80:1f:ec:bb:76:d4:82:39:bd:5b:5c:32:5e:f1:f0:1c:23:84:
37:7e:18:48:59:f7:92:56:39:78:1f:01:92:81:9b:e7:12:fe:
f8:91:14:39:fc:64:ca:51:f1:29:8c:3f:04:34:51:f8:69:23:
ad:55:3a:3d:06:98:f4:fe:31:d7:20:7f:e2:a0:a0:f5:b4:dd:
52:ca:9d:ab:71:dc:8e:3e:03:e6:7e:1a:67:f0:64:5c:79:c6:
84:58:8e:c5:4a:9d:55:17:84:5a:39:03:5c:d6:3f:d5:79:5a:
95:53:84:1e:1c:97:8e:9c:7b:0c:ee:39:e7:98:36:13:c5:d3:
4b:c2:48:72:14:48:b6:64:84:00:32:3e:3a:ad:57:7d:48:2b:
5c:cb:9e:b4:3a:b7:16:8b:c5:e1:4d:e8:fc:b1:67:67:a7:71:
f2:a0:52:ef:68:7f:33:6f:60:72:23:63:2d:0d:0c:0d:26:1e:
64:09:95:51:9f:0c:a9:4a:16:76:70:db:09:9f:ec:3d:86:2a:
e6:d3:30:51:ae:38:6f:94:76:18:20:6a:ea:1d:c5:ad:f2:3e:
2a:e3:ad:a8:9f:4e:a4:28:b4:ef:5d:79:31:98:ff:fb:21:8a:
87:46:1a:24:90:2b:c6:60:c4:90:4f:9d:cd:24:22:9d:e2:41:
99:c3:96:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:35 2025 by rpki-client