Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa
File: AS151538.roa (raw, json)
Hash identifier: mH/C+V8ERx+DkqbGkfLQWko6RmE1GWSr1H/Gdqq55aE=
Subject key identifier: 38:F0:68:DF:93:64:64:7E:48:78:A3:F4:3F:71:16:68:24:A2:C4:22
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 281DA10FB3761403CE79400C3E840E038561970D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa
Signing time: Mon 15 Jul 2024 03:00:00 +0000
ROA not before: Mon 15 Jul 2024 02:55:00 +0000
ROA not after: Mon 14 Jul 2025 03:00:00 +0000
asID: 151538
IP address blocks: 103.248.8.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:1d:a1:0f:b3:76:14:03:ce:79:40:0c:3e:84:0e:03:85:61:97:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 15 02:55:00 2024 GMT
Not After : Jul 14 03:00:00 2025 GMT
Subject: CN=38F068DF9364647E4878A3F43F71166824A2C422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d7:ca:3d:d3:2b:fa:6c:ec:41:3e:c6:5f:79:
0e:38:5f:12:d2:03:c6:c4:4c:d8:76:9c:80:f7:38:
c4:af:91:33:0d:13:50:3f:1c:5d:e1:0d:3d:64:59:
b3:6d:30:4c:9a:f4:f5:f6:fc:ee:bb:68:16:95:a2:
5e:03:7d:60:8d:bd:cd:4b:f6:1c:5b:25:6b:4a:41:
98:e3:c5:1c:04:d7:73:9e:a4:00:db:e3:3a:3b:af:
22:39:40:cf:d2:06:40:6b:0a:b0:c8:ad:a6:d0:b5:
0f:f5:5e:1f:ce:45:52:f8:a1:d9:e7:fb:92:4c:50:
29:d1:22:9b:a2:3c:19:33:da:45:a6:c8:30:27:9a:
88:13:12:a9:40:59:9f:e2:fa:6a:41:77:05:e1:f4:
1a:b2:09:e1:5e:ea:41:46:9c:2b:e8:d7:b6:d7:72:
31:92:fd:65:eb:86:bf:3b:df:e2:79:54:ac:e6:8e:
b8:02:87:f3:a5:bf:23:4a:4f:60:a3:15:78:4e:27:
38:d2:5a:5c:5f:cb:b3:58:7e:d4:e5:78:88:21:01:
b9:8c:c3:43:5f:50:d9:ea:2e:da:80:19:e5:9f:28:
7a:33:aa:a4:65:ad:c4:c8:d2:eb:48:3b:f1:f8:6c:
8a:26:57:55:7d:cb:07:a2:c8:d1:df:9d:13:0e:cb:
ee:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F0:68:DF:93:64:64:7E:48:78:A3:F4:3F:71:16:68:24:A2:C4:22
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.8.0/23
Signature Algorithm: sha256WithRSAEncryption
70:ca:1d:d1:9f:c5:52:e8:f1:95:7a:a8:87:d3:fe:63:97:af:
13:8f:3f:1b:d0:b2:92:a2:17:67:a2:ba:d8:97:5b:52:d0:4f:
1f:cc:ae:ff:ba:7f:7b:b4:30:dd:96:48:1c:50:81:58:90:e8:
69:48:6b:05:d1:0e:90:50:6d:38:fc:47:5c:7e:40:a9:bd:ed:
a2:28:b8:6b:33:d7:3f:07:0e:d7:a2:72:e1:53:86:c1:5e:70:
3a:89:3b:76:56:e5:97:bf:90:09:6d:73:48:73:f8:7b:76:c1:
6f:24:68:79:84:3e:be:e8:78:7c:0b:54:ee:da:ee:83:f4:11:
3c:60:9a:e2:38:93:ca:5b:6b:1d:15:14:1e:32:59:58:60:c0:
56:4f:e1:62:27:fb:6f:8a:54:a2:2f:77:cc:23:73:ce:4e:71:
d7:a9:c5:fd:6c:82:2e:91:f0:a7:d3:dc:86:c6:06:57:a7:df:
e4:f7:c8:96:de:3c:29:be:02:5c:af:74:a1:98:ce:f3:5b:31:
95:15:a2:27:8c:07:df:7d:45:9b:6a:96:5f:ae:d4:5f:47:aa:
5b:44:e9:f6:8a:aa:fc:8d:20:25:50:5e:d4:68:8a:36:be:5d:
e3:a0:a5:14:1f:09:1d:57:17:48:7f:a7:ea:37:6c:4e:b6:d6:
d3:aa:fe:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:13 2025 by rpki-client