Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa
File: AS149689.roa (raw, json)
Hash identifier: T1IjkkrtDRb/J60foK0QLhzY3CNx53vnjtZVJkah6Us=
Subject key identifier: 5D:87:0A:DF:41:96:D8:31:FD:DA:24:FD:C1:02:77:E1:46:A3:6F:B8
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 26C206AB0DB9A31D55C08ED183A836B4EDA8227B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa
Signing time: Fri 31 May 2024 05:00:00 +0000
ROA not before: Fri 31 May 2024 04:55:00 +0000
ROA not after: Fri 30 May 2025 05:00:00 +0000
asID: 149689
IP address blocks: 103.185.252.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:c2:06:ab:0d:b9:a3:1d:55:c0:8e:d1:83:a8:36:b4:ed:a8:22:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: May 31 04:55:00 2024 GMT
Not After : May 30 05:00:00 2025 GMT
Subject: CN=5D870ADF4196D831FDDA24FDC10277E146A36FB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b2:97:f7:80:0d:4e:a5:97:91:1a:ac:31:2f:
2a:6d:80:a9:b2:ee:fe:61:cc:f7:a0:6d:47:93:70:
dd:41:34:a4:47:05:8c:cd:79:fd:71:18:43:91:a8:
ee:e2:eb:dc:9a:34:da:36:65:e6:81:4b:5c:0a:7b:
25:f6:11:2b:e5:0a:65:03:20:02:88:08:06:a4:ef:
58:66:01:89:0b:2f:e2:2b:e3:0e:dc:9c:3f:3f:ea:
e7:b0:34:4d:3d:75:84:b5:b8:33:4c:df:35:1e:68:
30:2d:2d:84:81:12:27:6c:e1:22:af:9d:e3:5e:bc:
25:47:5f:e3:7a:c6:28:be:18:b2:71:56:50:51:96:
44:09:4a:0a:6a:45:0b:c1:1b:02:3e:79:7e:9a:ef:
52:d8:19:e7:04:6e:e7:f4:73:79:19:84:f9:c3:8a:
67:85:9d:62:de:4f:c8:ab:f3:98:98:00:be:d6:c2:
98:5d:8a:e1:c7:fe:24:1d:6a:63:ae:ff:c0:2f:5b:
97:97:2d:66:56:38:fd:80:d5:39:00:87:f7:a6:49:
a7:00:95:1c:62:c3:1b:7a:0a:e3:9c:ed:0a:56:0c:
74:e8:af:13:0e:5a:71:6c:23:d0:5d:07:34:b3:71:
e2:00:16:74:bb:43:bf:17:31:e9:a7:08:b5:89:ac:
30:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:87:0A:DF:41:96:D8:31:FD:DA:24:FD:C1:02:77:E1:46:A3:6F:B8
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149689.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.185.252.0/23
Signature Algorithm: sha256WithRSAEncryption
59:5a:6a:56:d3:3e:f1:7d:8f:d2:86:b4:19:c8:ba:e1:81:17:
eb:33:50:c8:6d:de:3a:e8:3a:7c:6b:5a:f1:c2:01:1b:1d:92:
87:50:04:64:1c:c5:6a:d3:62:17:9c:40:05:6c:41:fb:d7:0d:
e9:af:d8:b1:65:5b:57:ee:46:0f:4b:19:94:08:b5:86:92:5e:
9f:bf:6f:68:8b:7b:db:19:24:9f:88:b2:3e:0b:09:67:b6:2d:
fc:87:39:61:e2:4a:49:2f:72:22:ab:3d:8b:be:8c:10:f0:b0:
ef:7d:fc:e4:2b:41:a0:77:ef:90:fe:df:6a:ed:09:61:20:64:
4a:7b:95:0d:c7:63:47:37:29:ee:da:1f:26:c2:26:67:e6:26:
d8:bf:43:b1:70:cc:20:92:36:74:bc:30:c4:06:c6:d6:81:de:
26:14:9d:3b:ca:2e:69:6a:87:34:bc:83:bf:e7:fe:64:75:a0:
23:a0:8f:a7:30:0a:63:55:02:69:28:1f:1f:da:d5:51:b5:a2:
71:28:5c:d9:8b:1c:f6:6a:f6:84:87:6b:f8:4c:ec:2e:7b:2a:
6e:0a:6a:95:2f:68:a7:ea:0b:b4:9c:ca:45:3a:f2:f1:1d:01:
5c:c5:f9:2b:57:5f:99:03:75:b4:c5:9e:cb:db:87:d4:0b:ef:
68:19:79:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:32 2025 by rpki-client