Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa
File: AS151567.roa (raw, json)
Hash identifier: q63Z/RApfwo3uNVi6NESCoBfr2vkl4NywvWM2tywJD4=
Subject key identifier: 0B:67:9F:26:66:5E:91:BD:5E:57:E8:76:C8:A9:DC:CD:BB:05:4B:CF
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5CDAC413CDA0B818EF08092A4E840BEB63C8F329
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa
Signing time: Mon 12 Aug 2024 05:00:00 +0000
ROA not before: Mon 12 Aug 2024 04:55:00 +0000
ROA not after: Mon 11 Aug 2025 05:00:00 +0000
asID: 151567
IP address blocks: 103.38.104.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:da:c4:13:cd:a0:b8:18:ef:08:09:2a:4e:84:0b:eb:63:c8:f3:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Aug 12 04:55:00 2024 GMT
Not After : Aug 11 05:00:00 2025 GMT
Subject: CN=0B679F26665E91BD5E57E876C8A9DCCDBB054BCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:80:df:f2:35:4d:22:41:ea:c6:bc:37:db:a8:
89:46:d1:73:36:ff:44:85:18:bd:8f:52:88:1f:56:
ee:ab:f8:a4:62:75:fd:13:d7:e6:a4:8e:91:f8:60:
70:1e:98:ac:88:f1:cc:5c:fa:b7:8d:d8:48:08:bf:
01:f5:67:b9:93:f5:88:31:d4:ce:ca:71:ee:6a:9f:
15:47:c9:b7:47:e7:01:3c:16:87:ff:90:5a:89:00:
d3:15:ca:2b:03:33:f4:30:3a:a0:73:0e:d7:65:b1:
ad:01:ec:65:6b:d4:02:70:90:9b:ba:c8:a5:86:4e:
82:c3:42:00:8f:d4:b6:4b:e3:14:d8:03:1b:9d:a7:
41:0c:4a:96:98:e7:ea:f5:96:7f:b6:6a:cb:ae:b1:
c1:2b:75:c2:d8:77:32:f9:39:03:a5:37:48:d4:cb:
8c:b4:d1:00:a2:a3:79:05:7f:18:33:1b:b8:b2:86:
af:00:dd:c8:ee:4c:b9:49:d4:4d:9f:0b:39:2c:91:
0d:c4:7e:4d:bf:f9:9a:fe:e5:e7:e5:92:38:a9:4e:
e3:50:cc:49:4b:4a:6a:28:fe:6f:a1:8e:d8:55:96:
00:30:01:5e:63:98:4e:96:33:2f:1b:3c:6d:35:97:
e7:9a:a4:60:1d:60:b0:ec:2c:54:72:66:e0:bd:86:
61:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:67:9F:26:66:5E:91:BD:5E:57:E8:76:C8:A9:DC:CD:BB:05:4B:CF
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.38.104.0/23
Signature Algorithm: sha256WithRSAEncryption
58:ef:27:8a:8d:19:c5:5b:5e:c4:a7:d9:13:ea:a5:59:b5:cc:
57:61:18:fb:9f:68:57:d3:bb:c6:f8:f9:3f:5e:b7:30:52:b4:
20:49:1a:df:20:fe:1f:34:21:76:e2:31:1a:8f:69:a6:6c:1b:
39:d8:8c:09:02:34:d6:64:d6:f4:10:bc:93:90:e8:a5:62:cd:
af:5b:64:7d:59:9f:01:29:87:23:b7:3a:fd:af:28:4f:59:80:
81:3b:ca:73:dd:d6:1b:ac:0f:11:39:97:59:27:e2:ed:15:df:
c0:25:0c:e2:d8:27:1d:ab:51:49:27:68:2d:db:ab:6d:01:15:
b5:69:55:b3:c1:7e:53:a6:8e:8a:52:d9:ad:a3:55:69:3a:d9:
91:f9:48:a3:46:d3:5e:23:cd:8e:f0:13:3d:93:c3:32:68:15:
a7:34:ee:55:1e:d6:d6:46:80:f4:2a:4b:06:ce:ce:54:39:39:
80:c3:a8:3e:5d:43:0e:6d:c9:55:69:c1:c9:42:d6:45:4c:97:
8a:e0:21:55:b5:c3:89:c9:cd:15:16:c1:67:f1:7d:f7:dd:0e:
38:b6:80:de:6b:61:c0:f2:a8:ed:d2:3d:6c:d5:e5:5c:76:f7:
41:e2:da:85:99:02:91:c3:1b:33:8e:52:27:8c:48:ac:e5:de:
27:bf:6b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:28 2025 by rpki-client