Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa
File: AS147084.roa (raw, json)
Hash identifier: /yrAqNGHB0t+ADRPOBHls8TuKNC5jmDxgFx4zJFjrqU=
Subject key identifier: 0C:48:2F:D7:43:87:CF:FC:A2:F2:31:29:EA:EA:E6:85:29:9D:52:B8
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2216A1A92AB033E4E92F4FB2988F0B130816EA5C
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa
Signing time: Wed 02 Oct 2024 03:00:00 +0000
ROA not before: Wed 02 Oct 2024 02:55:00 +0000
ROA not after: Wed 01 Oct 2025 03:00:00 +0000
asID: 147084
IP address blocks: 103.63.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:16:a1:a9:2a:b0:33:e4:e9:2f:4f:b2:98:8f:0b:13:08:16:ea:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 2 02:55:00 2024 GMT
Not After : Oct 1 03:00:00 2025 GMT
Subject: CN=0C482FD74387CFFCA2F23129EAEAE685299D52B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:08:ff:46:69:e0:31:34:b8:45:e4:35:14:3d:
ac:ff:e3:61:0b:7b:6d:d6:92:91:2f:74:3d:65:ee:
a0:22:52:c9:80:bd:80:a2:23:b5:f4:f9:c7:5c:36:
7b:23:8d:be:2d:8c:29:ae:cf:6c:c7:80:39:72:d7:
c6:ac:a8:cc:7e:62:ee:b7:98:d6:e9:98:d5:17:3e:
c3:a4:45:1c:7a:aa:4d:ff:ed:03:a1:2f:7e:16:53:
35:79:84:70:c0:45:94:a9:ee:df:c6:fd:93:d0:db:
be:71:57:af:8f:01:ee:10:21:fa:f0:b0:03:d2:bf:
9a:ff:b9:d0:e0:d0:48:62:e7:04:5d:77:c1:d2:89:
60:2b:1d:bf:87:8a:ea:cd:a4:bc:4b:c5:f3:d9:5a:
18:f3:1a:b1:39:47:3b:6a:a0:e5:0b:6b:2d:ac:f7:
32:0e:e1:fe:4c:68:2e:91:8e:0b:83:2f:8d:4b:9d:
f6:10:05:ca:ff:db:c9:bb:0e:45:97:39:01:81:72:
59:64:22:9e:3a:5f:fb:50:4b:60:bf:e3:c1:b4:e6:
f9:47:4d:03:24:63:b0:c2:af:d8:57:22:b3:51:6f:
0f:27:c6:49:7f:7a:06:46:36:e5:01:6b:40:3a:f5:
f5:c2:ef:7f:7b:65:99:96:ca:bd:0a:2f:06:64:12:
e3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:48:2F:D7:43:87:CF:FC:A2:F2:31:29:EA:EA:E6:85:29:9D:52:B8
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147084.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.63.191.0/24
Signature Algorithm: sha256WithRSAEncryption
50:26:13:ee:46:af:8b:d1:ab:65:55:63:7c:63:cd:d0:b3:51:
71:5c:23:71:0f:18:7e:b9:93:43:31:e1:03:69:03:b9:a1:05:
4e:61:d3:f8:0e:2b:7f:e8:09:bd:db:42:b1:c7:da:0e:2b:a0:
0f:62:63:c1:1c:72:99:c1:b8:a0:3e:bf:1b:47:de:0b:d1:e4:
d2:43:00:8b:33:ce:16:b2:ce:9e:04:28:fd:c6:a0:9c:d7:3a:
52:40:08:31:fd:a4:78:62:3a:56:b1:dd:ab:e8:59:12:12:70:
89:ed:3f:78:b2:0b:af:21:dd:9b:ec:cb:21:a8:81:de:29:0a:
77:02:d5:78:8b:23:63:60:6f:61:e9:13:d4:0f:55:cf:d9:e9:
f5:6b:d3:cb:67:c0:7f:29:db:72:c1:9b:bd:43:d6:ad:ea:89:
81:1e:61:34:3f:00:e4:a6:60:9f:35:43:cf:b2:73:b1:c0:bd:
8e:4d:d4:64:f5:fe:9d:41:20:60:0c:ca:5d:54:45:ad:46:84:
66:4f:8a:08:41:6c:99:7f:d2:e1:32:f8:f8:be:0f:76:42:05:
d6:42:fd:34:d8:fd:81:6b:38:db:42:d1:dd:8b:26:0e:92:90:
2f:d1:d8:78:01:11:ea:72:fe:87:39:1a:da:9d:c3:16:f7:9a:
e3:ff:cd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:19 2025 by rpki-client