Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa
File: AS141936.roa (raw, json)
Hash identifier: HFHknxaDTA69aDT0BfZK0bXaKawAs6oxW9ZGhf3Ponw=
Subject key identifier: 3D:A6:19:8C:0E:A9:7A:2F:EA:67:B8:E7:0C:65:24:9B:38:98:75:98
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 316EF98CB771D3ECA0E8FC747B0E4CD86D724F90
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa
Signing time: Tue 10 Dec 2024 05:00:01 +0000
ROA not before: Tue 10 Dec 2024 04:55:01 +0000
ROA not after: Tue 09 Dec 2025 05:00:01 +0000
asID: 141936
IP address blocks: 103.166.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:6e:f9:8c:b7:71:d3:ec:a0:e8:fc:74:7b:0e:4c:d8:6d:72:4f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:01 2024 GMT
Not After : Dec 9 05:00:01 2025 GMT
Subject: CN=3DA6198C0EA97A2FEA67B8E70C65249B38987598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ad:55:1e:bc:74:c9:2d:01:91:6b:5a:8c:b5:
81:f1:f1:5b:16:7a:5c:b5:53:bd:35:ee:86:58:84:
43:ab:39:c9:14:3b:dd:dd:12:c0:38:9a:50:99:0c:
a8:0e:dd:43:d3:62:82:5f:19:db:57:18:4e:35:0f:
75:bc:7b:b6:5f:68:09:e1:b5:bf:d3:2c:7e:6d:13:
ba:bd:2f:9b:f7:fe:2a:d7:9c:c7:64:01:b0:91:fa:
94:bd:87:9c:9e:6e:72:98:74:00:3a:f4:63:59:2f:
e3:2b:b0:81:16:14:f3:91:5c:56:10:2c:c2:2f:84:
fe:bd:9d:40:53:78:60:af:25:e4:e9:31:9e:0a:d1:
4e:a9:6c:66:43:f5:22:02:24:fc:d9:4e:71:e4:da:
db:e0:2e:d9:7c:78:16:a5:f7:1a:1c:25:9f:83:f1:
e1:68:f8:8a:b6:0b:09:62:59:8f:5b:ee:19:1e:9f:
87:31:9f:de:1f:5a:a5:45:82:77:74:98:d0:56:ba:
a8:92:8c:fe:a3:13:af:c9:47:91:0b:b3:97:e0:5e:
df:22:b7:a3:f1:6a:a3:67:14:1f:dd:6c:4e:c4:aa:
35:8f:93:1c:60:4f:23:dc:84:9e:ff:d2:3e:41:7f:
1a:b1:2f:3b:f6:8f:53:00:05:26:ac:b2:43:42:23:
25:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A6:19:8C:0E:A9:7A:2F:EA:67:B8:E7:0C:65:24:9B:38:98:75:98
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.46.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:56:a8:42:9e:74:96:79:17:81:ef:e1:9f:78:2b:5b:ff:9b:
ae:cd:4a:37:70:0d:c4:8d:21:60:f1:0c:d8:5e:fc:ad:39:16:
7e:54:43:29:21:ba:f2:90:d6:20:1e:4c:0f:17:a0:ca:98:68:
4d:d3:e8:10:63:03:ff:9f:04:8e:ae:21:39:ca:ee:d5:e1:69:
7a:b5:0d:6a:6e:ea:26:61:7b:c1:cd:67:8c:96:ee:76:b9:48:
2a:c5:ad:42:d1:be:54:4b:0f:73:c8:d8:8c:53:c2:99:ae:a7:
13:8b:50:04:2b:4e:6a:e3:67:49:ee:38:e3:4c:1b:22:40:d4:
9d:8a:7e:02:2d:d5:65:4c:47:95:c1:23:9d:e0:1d:f3:d2:4f:
33:ec:66:4d:db:35:16:89:76:24:51:2c:5c:c9:0e:4b:c6:f2:
b0:2f:de:79:82:4e:40:bd:df:ec:3d:57:24:b9:ad:63:b1:f7:
28:33:77:aa:b3:6e:df:79:eb:79:47:7b:2e:82:cd:af:af:9b:
1e:58:a9:fa:0d:ec:9a:44:e3:73:ab:f4:02:a2:43:db:4d:25:
49:58:92:9b:8b:fe:86:6f:e6:26:fa:d0:40:f2:ba:2c:a7:34:
e5:38:e8:8c:f4:90:20:97:74:32:49:70:b8:0f:f7:ea:85:01:
3c:7b:ec:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:26 2025 by rpki-client