Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa
File: AS149736.roa (raw, json)
Hash identifier: qicFSMgFz0utXyKlpX4MuiNR0vyP+tIa7qpZTUdDzIo=
Subject key identifier: A6:58:80:11:3A:73:4A:16:4E:0F:78:07:04:59:EF:EE:A1:C8:78:33
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 611AC572248B13A4C44CAE519DAC3B7FFB4DBBC6
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa
Signing time: Thu 15 Aug 2024 04:00:00 +0000
ROA not before: Thu 15 Aug 2024 03:55:00 +0000
ROA not after: Thu 14 Aug 2025 04:00:00 +0000
asID: 149736
IP address blocks: 103.188.172.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:1a:c5:72:24:8b:13:a4:c4:4c:ae:51:9d:ac:3b:7f:fb:4d:bb:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 15 03:55:00 2024 GMT
Not After : Aug 14 04:00:00 2025 GMT
Subject: CN=A65880113A734A164E0F78070459EFEEA1C87833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0e:8c:44:75:6f:64:12:3b:64:9c:47:e7:94:
99:4f:34:8e:65:31:e2:d7:26:ec:50:f2:a7:e2:10:
a9:4d:a1:67:c9:59:46:4c:18:2c:79:a8:0e:39:1f:
3d:17:89:32:60:1f:95:a9:0c:32:3d:b0:a3:85:72:
78:f1:3f:4c:67:4b:a0:b7:74:0f:32:21:7a:d6:ce:
9c:22:59:6e:0b:fc:65:eb:b6:42:77:ce:b2:2f:83:
8c:27:4c:66:9d:c3:ff:6e:75:d7:5b:ee:ec:76:bb:
aa:2f:90:28:26:80:b3:9c:fd:c9:b1:ff:f2:56:44:
12:f2:9c:d3:4a:b3:a6:1b:d4:dc:98:19:08:83:39:
76:8e:05:b7:98:0d:69:c6:eb:29:de:a5:95:cb:8e:
3a:78:64:04:74:c2:83:0b:da:dc:24:88:cd:7f:7a:
f9:72:a5:c0:a5:58:93:09:b0:fc:57:f3:36:b7:be:
b2:92:c3:05:8b:23:bc:8d:98:23:90:42:fc:dd:6c:
11:9f:1f:85:20:ab:0a:5c:4e:8e:a6:6b:7d:88:64:
a3:43:58:0e:c1:28:cd:88:b9:92:c9:7d:da:7e:fb:
6a:d8:ab:2d:79:23:e6:55:ff:21:66:df:9d:f4:ee:
4a:7a:57:3c:8f:89:0d:f0:8a:04:68:72:88:b2:3f:
ca:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:58:80:11:3A:73:4A:16:4E:0F:78:07:04:59:EF:EE:A1:C8:78:33
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.188.172.0/23
Signature Algorithm: sha256WithRSAEncryption
99:ee:d2:5d:30:08:9e:78:84:fb:3b:cf:1e:d8:a6:e9:42:c1:
e4:b3:81:09:53:3b:09:1e:7e:7d:87:10:6d:fd:66:cc:6f:c6:
3b:4f:4e:fc:60:5b:8f:a4:ea:37:56:30:21:4c:43:0b:bc:08:
45:f9:ef:50:fb:cb:2c:97:8f:7b:01:3f:4b:41:27:65:63:1d:
be:72:4f:cc:3c:c0:47:31:92:88:ec:cd:cb:15:dc:12:c6:3c:
37:ba:f3:ff:19:97:ad:57:af:80:ed:ef:39:34:f9:80:a4:0f:
f8:66:bd:c8:c8:db:2a:db:31:bf:69:3f:18:58:e9:72:6a:e1:
9e:e1:c3:f0:06:f1:a5:13:91:b8:63:e4:78:cd:52:3b:15:9c:
d5:1c:00:7d:d0:2e:c4:7e:c8:36:0c:a7:72:b5:50:99:04:ee:
7f:90:ad:c2:1c:2c:a7:d9:aa:e7:b9:72:37:10:6a:cd:dc:16:
43:42:de:dc:66:b3:6d:bc:84:bf:e7:9d:9b:a9:45:1c:90:f8:
cb:22:fb:cc:52:70:51:c8:3a:e7:86:31:06:d5:4a:9a:64:a5:
0d:0d:8d:84:3c:fa:66:4b:5a:f4:d1:bc:12:75:0a:d6:2f:88:
3b:7b:3c:c0:b9:b1:32:96:3b:52:7b:54:cf:cc:90:74:ae:e1:
cd:c9:58:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:52 2025 by rpki-client