Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa
File: AS149402.roa (raw, json)
Hash identifier: ToaZ8iVCvJUJKThYhEgHs8vYZXV+39vasvRezGaKiPI=
Subject key identifier: 2A:41:08:32:1B:E7:5D:43:99:B7:AD:3B:A3:F4:5B:3B:6E:4C:EA:F4
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6CF5AE2702F0F6CEB2BCB6BA702023441B3210FB
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa
Signing time: Fri 13 Dec 2024 03:00:00 +0000
ROA not before: Fri 13 Dec 2024 02:55:00 +0000
ROA not after: Fri 12 Dec 2025 03:00:00 +0000
asID: 149402
IP address blocks: 103.182.48.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f5:ae:27:02:f0:f6:ce:b2:bc:b6:ba:70:20:23:44:1b:32:10:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 13 02:55:00 2024 GMT
Not After : Dec 12 03:00:00 2025 GMT
Subject: CN=2A4108321BE75D4399B7AD3BA3F45B3B6E4CEAF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:5a:41:f1:c2:78:7f:07:97:26:33:60:e6:
92:7c:75:d4:31:a6:bd:ab:17:ca:26:f2:55:e7:85:
52:58:3d:8f:a5:e6:9a:84:3f:7c:37:13:8d:b9:3a:
fc:82:f4:82:d5:ba:f4:95:8d:9e:1a:9a:c5:9d:8f:
f6:22:97:1c:5e:63:55:a5:b8:b4:dd:a0:58:d9:2d:
42:00:95:2b:4e:a5:b0:84:0e:86:ff:a8:f3:1b:52:
91:78:53:a9:22:ec:94:ce:d3:15:af:56:79:d1:66:
86:4f:af:0f:cf:8d:6b:79:a0:22:ba:22:49:3c:1f:
b9:6f:ee:81:3b:63:b7:c4:01:86:3c:f0:1e:26:ac:
aa:f6:5a:d6:8e:85:dc:8a:8d:7d:69:e3:0a:3d:66:
6b:ee:74:dc:1d:9c:31:68:5a:c7:2d:66:d4:d0:26:
17:ab:9f:9b:d5:bd:2e:e6:49:8e:0c:0b:81:fd:df:
4b:5e:13:77:85:45:3f:1a:fb:85:5d:ec:6e:72:34:
8f:57:b1:f9:e7:7c:92:ac:8f:ef:20:ca:f3:6a:a1:
ba:f2:9e:0b:fa:69:40:41:f6:a9:6e:8c:55:ab:37:
8c:c1:6e:05:b7:c1:98:f8:88:b8:4e:3f:ae:4d:cd:
47:c6:d4:1c:4a:8f:77:50:8a:cf:bd:7a:25:c1:f2:
4a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:41:08:32:1B:E7:5D:43:99:B7:AD:3B:A3:F4:5B:3B:6E:4C:EA:F4
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.182.48.0/23
Signature Algorithm: sha256WithRSAEncryption
25:73:f3:86:7f:d0:35:3a:56:49:5a:56:1c:fe:73:f4:5a:70:
b3:91:64:ef:c5:98:97:27:41:4d:19:5a:74:5d:54:21:11:6a:
0b:80:79:4d:cb:73:cd:5c:a5:29:0a:8e:e9:94:b2:69:28:43:
5a:75:f2:c8:49:86:d3:4f:71:fb:af:b9:3d:4f:12:f6:af:de:
25:f3:7e:d3:48:bf:e0:97:54:6d:8a:b9:e7:d3:e9:82:0e:cb:
af:62:2b:d7:30:b2:c2:17:37:0b:08:92:36:03:ed:80:41:8d:
ae:df:1a:af:45:09:5a:d1:2e:3b:65:86:c7:07:3b:3a:9a:4a:
ef:2c:da:82:95:b1:ed:ca:84:8e:40:47:a4:c8:cb:a8:dc:67:
b6:8c:70:a0:51:98:bb:49:9b:f1:6a:01:92:0c:ee:95:e4:b2:
a9:21:89:7c:a3:13:3e:d9:d3:0f:e4:c2:c5:d1:b1:7d:95:9d:
ad:2a:6e:a9:96:8c:27:90:63:66:8e:dd:72:c2:56:e5:d4:17:
3c:45:87:9f:84:08:24:d7:4a:53:c0:86:28:b1:98:94:d5:09:
da:b2:c6:13:f8:54:fc:b7:53:fe:fe:e3:8c:06:96:5f:c6:27:
f3:d4:ba:12:cb:bc:53:3f:da:1c:e8:37:18:b3:d2:2e:39:92:
d8:00:39:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:37 2025 by rpki-client