Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149366.roa
File: AS149366.roa (raw, json)
Hash identifier: l1rN8Rl6MWTlULsPmprYVJl43lC/zZeVxk7znlFfhig=
Subject key identifier: 6C:37:3F:1B:3E:7F:2B:9E:17:84:29:B3:03:CA:C6:51:2B:DD:DF:C8
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3D4C0D067DC9F77ADCF635096B4874AD3C9ECA04
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149366.roa
Signing time: Fri 27 Dec 2024 05:00:00 +0000
ROA not before: Fri 27 Dec 2024 04:55:00 +0000
ROA not after: Fri 26 Dec 2025 05:00:00 +0000
asID: 149366
IP address blocks: 103.180.189.0/24 maxlen: 24
2001:df0:6140::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:4c:0d:06:7d:c9:f7:7a:dc:f6:35:09:6b:48:74:ad:3c:9e:ca:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 27 04:55:00 2024 GMT
Not After : Dec 26 05:00:00 2025 GMT
Subject: CN=6C373F1B3E7F2B9E178429B303CAC6512BDDDFC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ce:0e:ff:77:f0:b3:49:13:e8:01:e9:cc:62:
63:e2:ba:6f:ad:34:5b:60:de:3e:08:66:ae:ff:90:
9e:5c:88:d0:dd:6d:c9:17:4a:c0:87:ba:17:7a:60:
35:f5:84:6d:36:4a:c9:66:0a:e5:0d:c6:b6:da:4a:
d3:6a:90:27:71:ec:8f:20:20:b4:7a:cc:3f:d3:75:
30:99:b1:ba:ec:34:dd:ba:97:40:13:ae:2c:ec:48:
8e:7b:5c:5d:55:a0:92:3a:c8:55:b6:2f:03:6d:5b:
92:0b:ec:44:3b:84:6e:1e:14:7d:a3:86:53:84:3a:
b3:7a:25:61:42:f2:b1:06:99:1d:8c:c0:ca:e3:1b:
3e:41:b7:4f:9e:e3:c9:05:b3:1d:c3:95:3a:91:69:
28:eb:45:a3:e9:3f:ef:f6:6f:ab:12:58:16:4f:0b:
71:4b:79:4f:b8:87:3e:f0:17:82:5f:75:66:08:03:
56:69:2b:41:fb:35:21:8f:ed:73:a3:a9:38:2b:5b:
16:2f:9c:70:95:e6:32:9f:9c:a2:c1:f6:f2:ed:01:
e4:54:21:f0:8a:77:ce:fb:57:aa:40:68:98:91:f9:
44:60:45:3b:2d:02:19:c9:fd:d9:51:5c:da:e7:b7:
de:a5:ec:77:ea:d4:ce:78:ea:11:2e:97:fd:0a:90:
63:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:37:3F:1B:3E:7F:2B:9E:17:84:29:B3:03:CA:C6:51:2B:DD:DF:C8
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149366.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.180.189.0/24
IPv6:
2001:df0:6140::/48
Signature Algorithm: sha256WithRSAEncryption
2b:22:0e:29:12:96:f0:12:c0:fd:97:61:d0:86:51:87:1b:3d:
69:71:85:b1:d9:4a:68:7f:c1:6e:94:1d:af:74:b8:cc:a8:39:
f1:a6:cf:a0:f0:63:fc:7d:c2:60:d1:81:08:de:1a:25:e0:3a:
26:4c:21:f3:13:bb:1b:fa:38:f2:df:f7:78:ce:fd:e9:47:15:
fc:d2:1c:b2:7e:46:50:03:44:48:4e:be:03:72:e4:e4:0c:68:
c5:aa:0f:1f:9d:2c:80:16:96:86:c7:de:0d:11:cd:ca:44:af:
66:17:ea:fd:ee:53:cb:91:64:b0:df:30:ce:28:66:fb:cd:1f:
04:98:e6:ff:9c:76:5f:bc:b8:cf:c7:e6:7f:98:37:95:8b:23:
a6:6c:44:d7:13:50:e9:3a:8e:05:a2:4e:11:30:4c:d7:12:86:
bc:a3:40:36:6d:ee:97:95:2d:8c:ff:79:dd:1e:41:a6:77:6c:
75:df:e9:15:6a:8e:8f:2e:cb:d4:1e:8c:63:c0:fb:90:a6:a1:
0a:84:36:fd:3d:0b:9e:88:02:ce:38:37:ba:52:8e:9b:47:d6:
46:93:fa:cf:de:00:f9:eb:be:ed:2c:a5:b3:8b:da:42:19:4f:
d5:17:4a:87:79:6c:a2:c3:2e:4c:7d:b4:7d:59:59:bf:2a:62:
66:23:8b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:59 2025 by rpki-client