Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa
File: AS149962.roa (raw, json)
Hash identifier: M5jwaON/ygbYekErukvTevkq1sfLT+Y61YzfRU+MvZY=
Subject key identifier: 92:F5:74:EF:36:1E:CE:7F:9D:DC:F5:1F:E8:70:FB:0F:C5:81:1C:A5
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2D4AFDCDAC937CFF8CCCDB8D0B13813C208B5F7B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa
Signing time: Thu 27 Mar 2025 08:00:00 +0000
ROA not before: Thu 27 Mar 2025 07:55:00 +0000
ROA not after: Thu 26 Mar 2026 08:00:00 +0000
asID: 149962
IP address blocks: 103.112.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:4a:fd:cd:ac:93:7c:ff:8c:cc:db:8d:0b:13:81:3c:20:8b:5f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 27 07:55:00 2025 GMT
Not After : Mar 26 08:00:00 2026 GMT
Subject: CN=92F574EF361ECE7F9DDCF51FE870FB0FC5811CA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:b6:c6:ed:1f:a9:cc:01:f0:b3:2d:51:de:
49:fb:6f:d1:2a:b6:1a:6a:77:d1:19:7b:9b:79:07:
d9:f7:a3:43:08:b7:81:31:6b:a6:d6:a7:e4:91:05:
da:ae:0b:e6:9c:71:8b:4a:81:c7:0f:49:b5:fd:e6:
54:40:5f:8c:72:10:58:27:f8:c8:c8:9c:13:0a:06:
bd:c6:04:21:0f:0b:3b:c2:e4:ae:4d:dd:3c:b9:d5:
f8:87:38:b9:79:39:1a:b2:00:37:1f:0f:e5:5d:13:
0e:6f:6c:b0:fe:2e:7b:84:0e:5c:01:1b:77:41:54:
cb:7b:ee:e7:a6:3c:43:d2:58:1e:8a:6e:c3:6f:3d:
54:69:da:ba:de:cd:79:8a:c3:71:4e:40:c5:1c:4f:
fe:30:54:08:f1:51:ad:05:fb:e1:1c:84:93:51:9a:
1c:da:2f:89:9b:9b:2d:ad:2b:1b:4b:12:1e:fb:2c:
cb:48:1a:2c:dd:8d:67:85:31:d3:fc:11:b7:d6:08:
47:fc:91:aa:64:d2:0d:50:54:e7:0e:79:7d:66:4f:
84:12:09:b5:2a:93:21:37:a2:07:fc:b8:7d:cb:02:
a5:b2:fe:6b:60:9b:10:9b:50:3e:98:a3:05:59:97:
af:37:36:eb:f0:16:8f:7b:63:de:d7:a0:ab:72:49:
4f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F5:74:EF:36:1E:CE:7F:9D:DC:F5:1F:E8:70:FB:0F:C5:81:1C:A5
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149962.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.195.0/24
Signature Algorithm: sha256WithRSAEncryption
24:29:46:a9:64:af:b4:d6:53:d0:b2:7b:5c:54:b5:4e:ef:1c:
83:37:5e:5f:30:e8:89:f4:98:4c:97:56:8d:00:af:ce:cf:41:
c0:8c:94:b1:d9:f6:e8:b6:54:80:3a:78:0b:40:37:9d:83:a5:
9c:16:62:95:7e:eb:6d:b9:52:f4:87:fb:3b:aa:d0:3c:5f:bd:
fc:5d:c7:cf:15:7f:55:18:00:7f:78:83:6a:10:57:e1:45:47:
27:c0:a3:c7:5d:aa:9d:05:e1:61:d1:9b:af:ac:52:e8:4a:c3:
b8:1b:50:38:88:e3:d1:f3:9c:8a:18:2e:47:ca:5b:4a:d0:84:
57:91:78:5f:be:3f:75:4f:78:63:be:57:46:31:32:c3:a0:9d:
59:b7:ef:69:e3:22:da:71:ea:fa:a3:59:bf:f2:66:9c:87:8c:
53:4f:e5:f6:e1:1f:2f:26:83:2e:85:23:ca:ab:89:4f:fd:14:
12:3e:a0:a2:76:68:47:99:b9:3e:56:f6:7c:d6:18:b5:d3:f4:
9b:ca:f3:41:db:a8:a0:c2:99:37:4d:0c:28:40:46:99:b9:00:
de:8c:05:f6:fb:56:32:8f:e1:03:82:e1:e3:ce:7d:e6:ec:a0:
e5:20:3d:d1:09:fc:ca:d6:b7:34:88:44:b8:d4:8b:4c:bc:cb:
53:34:df:96
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIULUr9zayTfP+MzNuNCxOBPCCLX3swDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNzA3NTUwMFoX
DTI2MDMyNjA4MDAwMFowMzExMC8GA1UEAxMoOTJGNTc0RUYzNjFFQ0U3RjlERENG
NTFGRTg3MEZCMEZDNTgxMUNBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL7+tsbtH6nMAfCzLVHeSftv0Sq2Gmp30Rl7m3kH2fejQwi3gTFrptan5JEF
2q4L5pxxi0qBxw9Jtf3mVEBfjHIQWCf4yMicEwoGvcYEIQ8LO8Lkrk3dPLnV+Ic4
uXk5GrIANx8P5V0TDm9ssP4ue4QOXAEbd0FUy3vu56Y8Q9JYHopuw289VGnaut7N
eYrDcU5AxRxP/jBUCPFRrQX74RyEk1GaHNoviZubLa0rG0sSHvssy0gaLN2NZ4Ux
0/wRt9YIR/yRqmTSDVBU5w55fWZPhBIJtSqTITeiB/y4fcsCpbL+a2CbEJtQPpij
BVmXrzc26/AWj3tj3tegq3JJTxMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSS9XTv
Nh7Of53c9R/ocPsPxYEcpTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk2Mi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAGdwwzANBgkqhkiG9w0BAQsFAAOCAQEAJClGqWSvtNZT0LJ7XFS1
Tu8cgzdeXzDoifSYTJdWjQCvzs9BwIyUsdn26LZUgDp4C0A3nYOlnBZilX7rbblS
9If7O6rQPF+9/F3HzxV/VRgAf3iDahBX4UVHJ8Cjx12qnQXhYdGbr6xS6ErDuBtQ
OIjj0fOcihguR8pbStCEV5F4X74/dU94Y75XRjEyw6CdWbfvaeMi2nHq+qNZv/Jm
nIeMU0/l9uEfLyaDLoUjyquJT/0UEj6gonZoR5m5Plb2fNYYtdP0m8rzQduooMKZ
N00MKEBGmbkA3owF9vtWMo/hA4Lh48595uyg5SA90Qn8yta3NIhEuNSLTLzLUzTf
lg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:44 2025 by rpki-client