Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa
File: AS142385.roa (raw, json)
Hash identifier: 7QCC3vDzcYcMzqSEam51h1fDqJLt2ealW6a+UbQfoSo=
Subject key identifier: 39:6E:D9:82:0E:11:EE:9A:0B:0A:51:94:8B:F5:A2:20:67:1B:CB:70
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 13894B238E172E7727CEC8E55AC0AF977F457889
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa
Signing time: Tue 03 Dec 2024 08:58:55 +0000
ROA not before: Tue 03 Dec 2024 08:53:55 +0000
ROA not after: Tue 02 Dec 2025 08:58:55 +0000
asID: 142385
IP address blocks: 103.172.43.0/24 maxlen: 24
2001:df2:ad40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:89:4b:23:8e:17:2e:77:27:ce:c8:e5:5a:c0:af:97:7f:45:78:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 3 08:53:55 2024 GMT
Not After : Dec 2 08:58:55 2025 GMT
Subject: CN=396ED9820E11EE9A0B0A51948BF5A220671BCB70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6b:8a:32:52:d7:81:ae:fa:84:89:f5:78:1b:
de:31:a1:6b:f8:b8:30:c6:8a:95:26:b4:2e:61:e9:
1a:c9:33:8c:5a:14:b3:57:98:13:eb:a4:31:64:ed:
0d:f5:0b:e0:de:14:da:6d:18:f2:de:17:c1:2d:51:
a8:fd:a1:a1:c1:ee:b6:bb:5b:b0:cf:5f:f7:97:9e:
de:9b:93:ef:58:2b:ff:0b:2d:3e:c9:c1:60:84:c0:
93:1c:da:d5:87:fc:16:75:7d:df:9c:db:8d:02:f5:
36:65:a2:64:d7:25:ca:ab:15:4b:05:6b:26:94:30:
5d:f2:32:4a:94:9e:4a:0c:52:70:49:0f:e5:3e:d3:
34:30:7b:46:73:86:f2:12:d3:30:af:ff:ef:05:b1:
f7:54:a3:23:e0:14:02:33:5b:27:a5:ac:f1:87:3e:
df:03:c2:0d:8d:be:f6:91:a3:b4:55:37:81:ea:8c:
2e:26:f1:a1:d8:e5:4e:29:88:b5:04:c2:ad:58:02:
33:1a:57:a2:44:b9:3d:83:d6:03:15:63:9e:6c:8e:
cd:9e:c7:34:1e:fd:8e:bd:23:0f:08:1d:34:0b:21:
c7:bb:8c:33:22:19:12:c6:73:dd:7d:df:d4:21:be:
a0:db:cd:ed:3c:08:98:ee:de:41:de:0a:21:1d:0a:
ae:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6E:D9:82:0E:11:EE:9A:0B:0A:51:94:8B:F5:A2:20:67:1B:CB:70
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142385.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.43.0/24
IPv6:
2001:df2:ad40::/48
Signature Algorithm: sha256WithRSAEncryption
67:16:62:b4:ea:b1:94:98:97:18:fe:16:9a:62:85:21:73:68:
36:32:f2:34:71:49:c5:0c:65:35:fe:b5:dd:94:24:12:c7:97:
73:7d:f7:4a:ed:26:97:ee:03:dc:b8:45:75:8c:75:8c:4d:26:
d0:73:82:16:e5:a5:cd:b7:db:9d:4b:d5:16:9f:ae:b0:3f:63:
fb:71:e7:47:1e:69:6e:b5:c8:a8:25:0b:d2:58:d9:dd:03:57:
9c:c1:e7:7d:48:02:93:81:c4:a3:23:ae:5e:01:6e:b6:d1:c9:
58:be:4e:4e:b5:9a:8d:6f:38:90:a8:71:32:a9:8f:13:be:6b:
50:ce:10:5b:c3:73:f0:fa:80:a1:b5:e2:f2:1f:55:7f:ca:39:
21:45:80:5e:f6:04:2b:2e:0d:ba:a7:66:c3:59:5b:5e:c2:ea:
29:d8:b8:0c:46:51:3d:6a:ef:c4:13:d6:de:f0:8c:c3:70:b5:
2f:93:13:65:55:ec:f7:9c:0f:71:e6:05:49:35:13:31:22:46:
18:58:18:6a:6e:8d:69:c1:28:c9:cd:8e:5e:86:cb:1b:3e:1e:
27:22:8f:90:3b:59:6a:87:bb:fe:a0:13:ec:4c:e2:aa:10:94:
50:7d:88:9e:c1:5b:16:0f:65:73:ab:e8:e2:97:71:ab:3c:05:
79:0f:43:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:09:28 2025 by rpki-client