Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa
File: AS151522.roa (raw, json)
Hash identifier: jwaZi0RBfZGQ7J/6tdruUuVdzaXeTRB48/SxnTYCdeM=
Subject key identifier: 1D:E7:73:D5:FD:76:0C:C3:9E:6E:6B:77:F5:DD:C7:51:58:BA:EF:27
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1AFD65297C40CE0DE545D45834E53A116A1494A0
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa
Signing time: Fri 18 Oct 2024 04:00:00 +0000
ROA not before: Fri 18 Oct 2024 03:55:00 +0000
ROA not after: Fri 17 Oct 2025 04:00:00 +0000
asID: 151522
IP address blocks: 103.234.124.0/23 maxlen: 24
2001:df3:c40::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:fd:65:29:7c:40:ce:0d:e5:45:d4:58:34:e5:3a:11:6a:14:94:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 18 03:55:00 2024 GMT
Not After : Oct 17 04:00:00 2025 GMT
Subject: CN=1DE773D5FD760CC39E6E6B77F5DDC75158BAEF27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:e4:bb:2b:2c:dd:0a:06:55:c1:80:0b:79:
6b:1b:41:69:f2:34:99:0f:f6:1a:7c:ae:2c:93:21:
d0:4b:10:5e:5b:3d:95:b5:6a:17:35:40:c9:4d:6c:
31:04:5b:79:b8:df:8c:26:f4:ec:15:9a:de:6c:45:
f1:66:45:84:d9:57:0d:cb:21:b8:fb:4f:d5:61:4b:
9b:24:a7:bd:d5:d2:55:2e:ad:fc:1d:b1:92:ae:2a:
58:fe:1e:be:0e:6a:fe:28:91:0b:56:27:b8:90:d3:
a9:44:a3:88:b4:a1:4c:00:73:9e:6a:cb:5d:31:1f:
b9:ae:da:3f:d1:dd:3b:a3:15:e0:6b:cb:84:58:67:
53:0c:06:c3:63:36:32:79:97:66:d0:38:f3:78:91:
32:d6:ba:73:3c:b9:fe:18:23:d9:63:cf:58:d2:8a:
db:d8:fb:9e:c7:ed:da:f6:70:30:3e:3a:02:3f:bc:
03:af:c6:fc:a0:5d:1d:26:af:41:f6:6a:22:05:2e:
e9:a6:93:bc:f4:a2:94:ff:e9:d7:cf:d6:74:63:fb:
82:9b:9c:0b:64:b5:5a:9b:0b:1d:56:cc:97:2e:ca:
27:83:83:43:2f:1b:6c:37:ac:34:e2:ad:f8:b0:dc:
bd:ba:28:1d:f3:21:ea:37:4f:4a:4d:40:48:9a:34:
e8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E7:73:D5:FD:76:0C:C3:9E:6E:6B:77:F5:DD:C7:51:58:BA:EF:27
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151522.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.234.124.0/23
IPv6:
2001:df3:c40::/48
Signature Algorithm: sha256WithRSAEncryption
19:b5:79:a9:a6:a6:93:41:a4:53:ec:e0:cd:bc:bd:71:6e:c1:
5d:aa:eb:f9:87:2b:7b:10:6a:3b:22:bf:12:ec:37:0d:ed:c2:
4a:16:97:35:bd:aa:07:75:31:af:ab:8d:59:5d:2c:10:0e:7c:
06:7e:9c:55:3a:bd:d1:02:1a:c5:22:de:6c:7e:24:a1:68:48:
f4:ed:a6:09:87:c3:3a:8a:24:fa:a3:fd:58:43:22:8d:71:6e:
c9:1f:f1:f9:f7:3e:af:4d:45:a8:8a:65:54:b0:2d:8d:8c:74:
9e:71:b0:89:39:8a:7e:13:20:a0:3e:17:df:48:ea:ca:18:6f:
88:37:00:37:dc:c4:8b:c5:83:00:a1:ca:36:81:79:89:46:4d:
d5:be:b5:59:73:c3:a0:e9:fa:bd:67:f0:8c:ca:30:f0:47:bd:
02:3d:a1:95:03:88:36:62:00:89:55:02:97:7e:7b:70:93:2c:
bd:6b:05:80:aa:f0:1d:5b:ce:91:2b:24:73:3b:6e:f7:26:4f:
2a:d6:f8:e9:33:fa:9d:3c:d3:d0:6c:4c:0f:b0:8a:20:91:be:
56:66:2b:d5:9a:c8:d3:0f:2f:8c:58:12:fe:d0:6c:e9:f8:ae:
72:7f:5b:f5:8f:bb:60:86:f8:8f:49:ad:24:2b:41:a4:e1:d9:
c5:5a:92:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:38 2025 by rpki-client