Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa
File: AS151005.roa (raw, json)
Hash identifier: hoX/cLfAr0faB1u0mEoh9p0f9c/IswQ7SXQjXl1RWvg=
Subject key identifier: EC:EA:03:01:BC:CD:4D:2A:06:69:A2:E8:4D:A3:DF:7A:51:E4:F8:D5
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0C02F4DA40ACAB73C672EEF1E1B57AC1BC530CD9
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa
Signing time: Wed 16 Oct 2024 09:00:00 +0000
ROA not before: Wed 16 Oct 2024 08:55:00 +0000
ROA not after: Wed 15 Oct 2025 09:00:00 +0000
asID: 151005
IP address blocks: 103.124.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:02:f4:da:40:ac:ab:73:c6:72:ee:f1:e1:b5:7a:c1:bc:53:0c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 16 08:55:00 2024 GMT
Not After : Oct 15 09:00:00 2025 GMT
Subject: CN=ECEA0301BCCD4D2A0669A2E84DA3DF7A51E4F8D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c7:a6:2b:4d:49:ef:29:37:a3:46:51:63:30:
a1:f0:60:f0:bb:ec:58:4c:45:0b:e3:4b:57:28:6c:
8e:1f:1c:89:69:3d:e3:78:37:28:8f:24:76:c9:ce:
58:83:e1:25:8d:53:f3:7f:b8:1b:1c:89:30:cd:ed:
58:cb:1b:47:82:fb:ef:a3:3e:d9:d1:42:3b:29:af:
ae:3a:2a:1a:b6:e0:49:c2:05:fe:6b:61:c1:e4:8f:
a5:1c:53:23:97:18:6b:f0:7a:b4:93:4a:a1:14:c7:
19:4b:2f:11:18:e8:a2:e4:9b:20:7e:34:04:0b:58:
27:46:95:a3:23:c1:f0:03:bb:72:8b:46:91:3c:dc:
12:d7:43:04:35:57:f4:fb:16:9e:5a:c4:18:29:57:
d6:a8:f1:24:53:57:ff:e6:67:a0:6b:ae:44:72:9c:
6d:7b:c3:0b:6d:ce:ec:10:c8:b0:fa:49:da:a2:50:
6f:83:bf:8c:8f:74:42:31:cc:ad:39:0f:fa:c2:98:
4d:19:62:23:f9:8a:77:01:ca:04:1c:15:f8:8d:f4:
5e:70:b2:76:68:c9:9c:22:e1:4a:7d:1f:43:09:1d:
47:ae:d0:3d:e4:3c:25:6a:e7:f7:9e:fd:63:da:44:
7a:5b:91:85:e7:e3:ef:2c:51:5a:db:91:f7:7f:b9:
db:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EA:03:01:BC:CD:4D:2A:06:69:A2:E8:4D:A3:DF:7A:51:E4:F8:D5
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151005.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.20.0/23
Signature Algorithm: sha256WithRSAEncryption
96:c3:66:29:7b:64:c4:6b:fd:98:0b:78:29:cb:9e:d0:e0:1b:
6e:02:33:25:c3:e4:c0:96:d0:74:85:dd:30:44:83:4d:c6:30:
10:85:6d:b5:56:4d:0a:3a:23:21:fd:d9:e7:77:01:3a:be:d8:
8f:ae:0b:d2:46:8a:07:d6:a0:10:62:4b:46:f4:73:f4:c4:bf:
8d:a8:e5:88:e8:b6:44:c4:72:4b:2e:ed:55:0c:ca:91:e7:f5:
32:6b:84:0a:ab:5f:62:49:33:84:ba:ac:f1:55:5c:ca:0f:f6:
80:9c:1f:30:8a:10:1a:90:af:74:b1:cf:ec:a9:a7:e3:3e:85:
46:7a:b1:15:3f:9e:5b:69:94:ab:44:a4:17:f4:68:e4:13:e0:
92:77:d7:75:82:6a:d9:e7:09:24:cc:32:e3:ea:38:d0:6c:38:
1f:19:43:4b:0c:90:5d:d9:ef:13:48:a8:ca:da:38:80:a9:fc:
a0:4a:f7:05:04:73:51:df:e3:22:85:38:61:64:44:a8:26:75:
0d:bc:01:d6:86:9c:2b:69:07:9a:a0:f4:21:72:e9:0f:e7:fb:
10:ea:a7:f1:fc:ae:fe:44:4f:aa:13:10:78:04:97:90:a9:8d:
f5:43:bb:4c:85:10:4b:a9:5d:12:da:a4:5b:c5:40:16:38:b7:
a9:a4:38:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:45 2025 by rpki-client