Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa
File: AS141904.roa (raw, json)
Hash identifier: bi6RYyBgnS8xRHje3AtuWLrG7MI8DKppJl6t1QuXcqo=
Subject key identifier: CC:82:86:81:D7:CA:61:F1:43:B1:0C:A1:F3:C6:C4:AD:EF:BD:FC:99
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0D2F7CFD39423027A54754AC8727D26A77740667
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa
Signing time: Tue 10 Dec 2024 05:00:14 +0000
ROA not before: Tue 10 Dec 2024 04:55:14 +0000
ROA not after: Tue 09 Dec 2025 05:00:14 +0000
asID: 141904
IP address blocks: 103.164.68.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:2f:7c:fd:39:42:30:27:a5:47:54:ac:87:27:d2:6a:77:74:06:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:14 2024 GMT
Not After : Dec 9 05:00:14 2025 GMT
Subject: CN=CC828681D7CA61F143B10CA1F3C6C4ADEFBDFC99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:10:31:4a:75:b1:ac:02:ad:9b:e0:c8:e6:9f:
62:fe:c4:dd:49:5d:2f:c8:54:cf:36:eb:44:41:bc:
58:8d:9d:fc:92:fe:bf:1f:92:94:8b:4c:ba:20:d3:
e3:f0:87:a2:72:e2:2b:18:d7:95:c0:83:ae:0a:be:
49:09:8c:fc:aa:42:48:c7:05:2f:d6:55:cb:fa:cc:
c0:83:d1:46:92:2f:76:b3:54:85:6f:00:8e:f8:f6:
aa:a4:73:46:ed:e3:bb:8e:a1:dc:4f:df:55:aa:cd:
e0:05:a1:49:3b:6a:04:74:fb:35:9f:3c:85:6d:a6:
d0:27:2f:60:33:77:28:c3:20:05:ee:ce:47:be:7d:
a7:56:ae:f7:35:67:76:79:fb:1e:7c:23:55:0e:9b:
1b:47:9b:1e:b7:0b:ed:63:cb:4c:39:1a:3b:ac:1a:
22:75:98:f0:aa:b4:af:46:49:0e:9f:8f:f7:5e:3a:
1d:19:a7:b6:f5:5f:d4:dc:49:f9:5e:87:49:45:da:
50:ae:1f:b9:70:eb:b2:5e:e4:87:54:5f:2f:48:41:
46:10:11:4f:5d:29:57:c2:d2:4a:0c:d1:c9:6c:5f:
1f:d7:b7:07:99:24:eb:24:a2:61:73:2a:de:04:88:
f9:33:06:55:72:13:a4:43:f6:45:a0:34:26:a2:31:
7c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:82:86:81:D7:CA:61:F1:43:B1:0C:A1:F3:C6:C4:AD:EF:BD:FC:99
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.68.0/23
Signature Algorithm: sha256WithRSAEncryption
10:45:c0:8c:27:58:aa:24:a8:45:63:70:f1:ad:cb:57:a9:90:
a2:80:1e:de:42:e9:37:ae:73:83:a5:66:8c:63:6a:e6:bb:2e:
6e:0f:92:0f:61:3d:43:f4:aa:ef:a0:40:e3:b3:5d:d5:1f:fa:
b4:1f:3a:6f:49:4d:7e:37:6c:a6:63:c5:7b:77:70:33:99:a2:
98:ba:f5:c3:7b:ed:d2:6f:34:75:29:bb:47:fa:73:bd:5f:b1:
2a:8d:db:e8:cf:6f:fe:05:d4:5e:0e:94:04:55:e1:d1:77:80:
a3:1b:e7:d3:9a:94:1c:08:1a:0f:2d:79:9f:90:09:37:9f:e1:
32:b5:af:88:aa:0d:ff:be:8b:04:ad:12:16:1c:2b:ec:d9:32:
12:7b:55:39:ab:b0:a3:58:dc:c0:9b:38:c6:06:ce:a1:b9:89:
cf:ee:7c:48:c4:3c:99:8f:a7:da:b0:7b:b8:a9:93:2c:80:37:
5f:e3:e3:14:4d:0f:53:de:2d:74:b7:1a:8f:34:3c:62:78:5b:
f7:dc:7d:f9:1c:a4:44:0c:24:21:88:4c:21:1e:62:79:0c:cb:
51:d2:50:69:61:01:3f:6d:24:3d:46:4a:0a:b0:5a:98:98:4e:
96:9a:49:47:49:1b:4f:70:77:de:97:e2:23:7f:43:0b:2a:a4:
ed:4d:31:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:44 2025 by rpki-client