Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa
File: AS147141.roa (raw, json)
Hash identifier: Lj/ZK+YSOP5Un3ov2ayGHg1UbQCKO6gtu5tJwnUEyWU=
Subject key identifier: D3:1C:82:40:C1:E9:FB:76:1F:60:E5:88:51:50:46:24:19:B2:1C:12
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 28DA920210B789FCA0C00BF4AB43D38BE5A3B995
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa
Signing time: Mon 15 Jul 2024 08:00:00 +0000
ROA not before: Mon 15 Jul 2024 07:55:00 +0000
ROA not after: Mon 14 Jul 2025 08:00:00 +0000
asID: 147141
IP address blocks: 103.176.94.0/24 maxlen: 24
103.176.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:da:92:02:10:b7:89:fc:a0:c0:0b:f4:ab:43:d3:8b:e5:a3:b9:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 15 07:55:00 2024 GMT
Not After : Jul 14 08:00:00 2025 GMT
Subject: CN=D31C8240C1E9FB761F60E5885150462419B21C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:57:6c:f9:77:b4:b4:18:46:9c:d8:54:a7:c7:
af:df:8b:51:f3:d6:4c:1b:8f:77:d5:77:b6:54:28:
51:2a:97:e4:43:a0:eb:42:f2:8d:64:6a:33:b1:ac:
6b:a6:64:f8:ba:d8:fb:bb:46:e2:73:67:e8:2a:cb:
a9:60:bf:59:4c:5d:03:1a:fd:e5:8a:aa:9b:51:33:
fe:30:72:f5:2a:61:2b:16:c8:03:1f:35:af:91:67:
c0:0f:90:e4:11:1a:6b:cc:6e:78:9a:4d:76:2a:0b:
1e:c4:c1:e0:96:1b:13:1e:1f:b2:18:2a:df:9c:a3:
b2:7b:7b:a6:c1:b2:8c:7a:fa:18:b9:f9:33:97:03:
ea:fe:73:d2:da:c3:37:49:9e:04:d5:60:0f:1a:e9:
ea:43:cf:ab:55:1f:66:67:ef:9a:3d:d4:dc:96:ed:
d1:2e:5f:b2:0a:38:80:af:a7:f1:d4:db:14:08:5f:
80:d4:6b:47:e8:89:ee:6f:20:2b:bf:41:0e:32:a2:
43:c1:36:ca:1d:99:c6:24:10:ea:7a:da:e7:4b:ca:
3a:a0:a3:0c:88:ed:ca:b8:18:15:48:28:df:f0:6a:
75:ac:19:9f:8f:47:8a:4b:ec:51:33:58:56:ea:e6:
12:2a:06:2a:74:e3:8b:e7:63:24:89:8a:2a:08:13:
84:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1C:82:40:C1:E9:FB:76:1F:60:E5:88:51:50:46:24:19:B2:1C:12
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147141.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.94.0/23
Signature Algorithm: sha256WithRSAEncryption
80:41:3a:ec:55:70:00:c3:0d:8d:5e:7a:7c:e0:a6:eb:3f:c1:
86:f1:cb:ff:f0:93:36:28:62:91:4f:0a:6c:cb:ef:43:96:58:
88:ec:72:ca:d3:ec:fe:db:1d:58:5f:24:fc:51:b4:01:4b:32:
0e:aa:69:72:66:d2:54:a7:54:0d:94:60:87:c2:ed:a4:f3:bf:
fb:34:10:2c:39:aa:59:f1:ad:38:55:11:9c:d8:3b:2d:29:26:
e2:6a:aa:5f:4c:c0:ef:51:ef:f8:7d:66:d1:e3:28:6d:23:6e:
25:8d:33:03:0e:fb:0c:39:6f:18:78:28:da:5c:95:1b:c4:84:
48:4c:9e:f2:83:18:2a:c9:d6:04:fe:f7:10:45:04:c0:20:18:
36:30:cb:d6:fa:72:7f:5f:0b:23:12:c7:1f:08:16:9d:6c:78:
2f:77:50:28:e3:a7:a7:92:bc:02:97:ec:c4:79:12:a5:08:3d:
3b:5f:84:72:b4:2a:90:ea:cf:00:ee:f9:8f:c2:51:82:2b:df:
eb:12:34:22:43:11:f4:83:e5:16:a6:04:22:4f:5b:06:ee:41:
ae:da:6e:19:4b:24:84:12:26:48:dd:fe:a3:11:02:fe:7b:b4:
2e:ef:df:39:2b:cc:59:bd:ed:d8:01:29:5d:ba:44:43:f5:49:
3f:e0:69:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:50 2025 by rpki-client