Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa
File: AS149368.roa (raw, json)
Hash identifier: vPdBvmdEj3psnACkvlXiuHv5tlq080RVB8EqCib32Gg=
Subject key identifier: 65:47:F1:FF:B2:04:7F:3E:06:5A:7E:39:43:B4:42:F9:D4:9D:09:E5
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2B0E4C7F40C0E01D9A5C0BA48111EF0252633734
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa
Signing time: Thu 12 Dec 2024 03:00:00 +0000
ROA not before: Thu 12 Dec 2024 02:55:00 +0000
ROA not after: Thu 11 Dec 2025 03:00:00 +0000
asID: 149368
IP address blocks: 103.180.198.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:0e:4c:7f:40:c0:e0:1d:9a:5c:0b:a4:81:11:ef:02:52:63:37:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 12 02:55:00 2024 GMT
Not After : Dec 11 03:00:00 2025 GMT
Subject: CN=6547F1FFB2047F3E065A7E3943B442F9D49D09E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ef:db:d7:a2:c0:c3:67:d1:93:95:0a:48:87:
ff:1e:a5:c8:42:8a:58:d8:4c:ef:9d:af:ec:31:35:
79:02:b4:51:93:e8:ff:bd:93:04:9c:c0:48:fd:af:
d0:6e:15:99:1a:02:d0:f8:19:44:3b:9e:07:89:96:
90:fd:8d:41:0b:b0:a2:24:6f:4b:01:1f:1e:55:66:
39:e6:11:fa:76:4c:ea:3a:2e:fb:e0:e2:fb:03:8d:
95:ae:8e:1d:6b:16:3c:2e:d0:3a:e3:6a:ea:9a:1a:
e4:ec:98:0f:27:7d:ef:72:46:ea:a7:19:35:43:a3:
cb:55:e7:06:7f:57:80:53:17:7b:63:40:04:80:c6:
dc:50:6e:11:1f:c9:e7:2b:67:7e:3f:d3:39:89:1c:
ca:c4:33:af:45:19:55:94:ca:e7:d8:ca:eb:13:8b:
2b:d8:0d:2f:df:96:68:0a:1b:24:34:86:96:62:ed:
ce:5c:93:06:f5:63:af:56:f4:7a:0d:ae:0f:d1:e9:
f9:e9:83:fb:7e:c8:ef:2d:0f:17:8c:3f:a2:73:fd:
cc:5f:a4:9e:da:69:86:e1:05:f4:92:6f:a8:75:73:
10:75:fd:1b:34:49:6d:ac:ed:32:13:c6:13:e0:8b:
52:3b:93:da:90:f5:3b:43:e7:d7:88:e3:a2:93:7d:
01:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:47:F1:FF:B2:04:7F:3E:06:5A:7E:39:43:B4:42:F9:D4:9D:09:E5
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.180.198.0/23
Signature Algorithm: sha256WithRSAEncryption
98:9b:4c:5e:44:da:12:12:28:77:5b:d9:39:d2:ba:78:c3:4f:
ba:22:5b:9d:30:7a:98:15:77:bd:dd:fc:95:62:2d:c0:fe:4d:
b2:49:3d:05:ab:b2:9d:21:0b:5c:76:9d:f5:3c:14:c4:c9:94:
ca:d1:21:25:91:ca:21:80:cc:39:27:52:72:8d:da:36:0c:f5:
ba:41:b6:c2:21:05:40:9a:57:fa:52:28:3a:51:aa:e4:58:03:
11:bd:c3:08:e8:85:1a:2c:70:1e:7d:26:d7:bc:8d:18:16:8a:
cb:a8:d4:99:c9:34:1d:17:9c:40:11:b9:9b:f9:a0:fd:fc:ce:
98:0a:6c:3e:3a:eb:f4:05:d9:6b:4d:86:2e:2d:fe:38:93:ba:
dd:3d:b1:d8:ea:a8:49:3d:67:fd:be:ce:db:57:9f:67:f3:d0:
0d:39:0d:98:c6:cd:1e:c4:cf:ee:f2:1e:11:d9:5a:a1:83:d7:
53:32:76:46:2b:e2:a9:34:4d:a9:39:ae:58:da:a5:82:17:4f:
20:89:7a:32:b1:68:62:85:40:bf:1c:e9:36:ef:4b:a9:0f:03:
25:e7:6d:0d:0d:68:fc:21:7a:49:88:17:97:35:93:95:2e:ac:
00:87:c9:de:b5:3a:d2:4a:af:2e:a7:a4:8f:2b:4c:13:95:ec:
6e:59:5f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:17 2025 by rpki-client