Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa
File: AS141937.roa (raw, json)
Hash identifier: ZRdnMSdSuGDD60Aw2APXUPcYGKHF72+7TKg7XxDMNKc=
Subject key identifier: B1:ED:78:D3:AE:A2:45:6A:11:23:FF:45:EB:4D:74:4A:3F:9C:29:5E
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 66DD520ABE7AB277C431E4A1CF69DCF20813CBFD
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa
Signing time: Tue 10 Dec 2024 05:00:04 +0000
ROA not before: Tue 10 Dec 2024 04:55:04 +0000
ROA not after: Tue 09 Dec 2025 05:00:04 +0000
asID: 141937
IP address blocks: 103.165.250.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:dd:52:0a:be:7a:b2:77:c4:31:e4:a1:cf:69:dc:f2:08:13:cb:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:04 2024 GMT
Not After : Dec 9 05:00:04 2025 GMT
Subject: CN=B1ED78D3AEA2456A1123FF45EB4D744A3F9C295E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f3:5b:90:39:e1:d0:f0:43:b9:df:d5:36:7b:
07:dc:30:7c:30:e1:47:a7:9d:5f:e3:00:55:c7:c6:
3a:3c:63:c6:4f:ba:d4:63:a5:ea:3d:c0:b9:7e:61:
b1:3c:0d:87:9d:14:a3:f7:00:84:9d:94:ed:b4:e3:
58:0b:a5:34:b0:d0:c5:75:01:dd:6d:ae:f4:fa:d9:
58:46:12:01:79:b6:d6:22:72:81:86:62:2f:db:2b:
ae:be:8d:77:bb:39:2e:32:46:aa:eb:39:8c:ac:91:
19:85:37:d7:bd:23:46:3d:0d:02:62:88:0f:11:f5:
7e:af:37:56:3b:7d:06:21:fa:21:e4:dd:97:7d:fd:
76:b2:83:0f:52:54:1a:10:ce:cd:99:06:9a:c5:e3:
01:2b:f0:d2:30:db:d6:32:05:d3:3c:cc:23:b9:4a:
1d:eb:4f:fd:5f:43:cd:96:c6:86:5a:b3:e5:66:8f:
de:4b:e2:10:65:fb:1f:8c:34:84:bd:18:3f:f1:c7:
16:7e:7c:12:e8:34:2a:00:f4:23:e8:46:11:7e:17:
b2:6a:14:e0:9a:b5:de:bc:8d:db:4e:4e:ca:50:2c:
99:be:be:0b:bb:20:8d:bb:d4:f2:60:22:12:ba:12:
23:2e:f7:0b:3c:f6:53:23:9e:b5:78:22:27:ea:47:
6b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:ED:78:D3:AE:A2:45:6A:11:23:FF:45:EB:4D:74:4A:3F:9C:29:5E
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.165.250.0/23
Signature Algorithm: sha256WithRSAEncryption
50:eb:3e:5d:02:47:1c:04:8f:78:05:fa:15:06:62:28:dd:d3:
4b:98:d4:4a:bf:b0:17:59:78:5a:f1:54:27:97:61:e1:e8:6e:
e9:67:3e:29:cd:52:16:40:14:eb:6b:f6:75:1a:78:b7:16:97:
94:b4:ea:eb:34:0f:45:82:49:46:d0:cc:d2:e1:31:43:22:ea:
d2:20:dd:5d:26:44:d2:d7:d3:b2:09:f8:1b:12:d6:91:d8:f0:
5b:39:bb:32:06:55:3d:97:f0:53:74:f2:ea:be:f3:0e:5f:bf:
18:d6:93:aa:c4:ee:20:25:2b:1c:70:1c:0e:1d:2e:be:e5:94:
f6:56:62:d4:d9:d7:02:e8:c7:6c:64:c6:74:e9:10:8c:93:5f:
db:2a:43:75:c9:bb:b2:cc:66:23:df:d2:2a:37:ff:8e:31:92:
af:53:96:67:04:eb:25:90:7a:6d:3c:e4:f0:34:bb:7b:ac:95:
be:03:99:96:e5:c0:f4:6e:f2:1d:c3:c0:c6:c8:1b:21:cb:68:
c2:7f:ec:6c:bb:56:68:b2:ff:ff:8e:cf:6c:d3:12:e6:27:7b:
e0:50:f5:98:e5:bb:2b:6f:89:85:87:23:3e:a4:91:06:2e:18:
3d:bb:ee:42:f9:d7:18:50:74:8d:02:10:ed:fa:ad:63:4a:02:
20:aa:5e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:23:02 2025 by rpki-client