Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa
File: AS55672.roa (raw, json)
Hash identifier: V97t7vdr4O+1FcvxRVpzJFCHmpDHaMK7GO6VOb1gnYU=
Subject key identifier: 53:32:6E:3E:28:01:AC:C9:D6:90:67:5F:C8:16:88:CD:F0:F3:A4:BE
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2EA0624B5C716A40B18F2DB31A3A6A41F5A0464B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa
Signing time: Tue 10 Dec 2024 05:00:20 +0000
ROA not before: Tue 10 Dec 2024 04:55:20 +0000
ROA not after: Tue 09 Dec 2025 05:00:20 +0000
asID: 55672
IP address blocks: 103.162.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:a0:62:4b:5c:71:6a:40:b1:8f:2d:b3:1a:3a:6a:41:f5:a0:46:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:20 2024 GMT
Not After : Dec 9 05:00:20 2025 GMT
Subject: CN=53326E3E2801ACC9D690675FC81688CDF0F3A4BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:6c:36:01:97:f5:a0:b3:94:98:3a:01:60:
8d:e3:0a:4e:27:11:a6:cf:e9:24:26:d6:cc:83:cb:
6f:f8:9d:4b:47:3e:39:97:92:dc:90:37:dc:19:8c:
98:90:46:ae:5e:83:19:55:f1:81:9b:c0:5a:ef:54:
46:3e:c4:97:14:fe:ea:f8:09:e4:a5:9d:9f:dc:f2:
93:2c:e5:0d:34:15:2b:08:8f:ef:31:32:ae:1f:21:
35:2f:f5:ad:46:ac:df:f8:d2:3a:8a:4a:07:91:6f:
c7:0d:49:33:f7:85:4e:bd:73:7b:3a:13:fc:25:fd:
0e:47:27:2a:26:c6:5b:90:d2:38:d7:7d:5a:70:1b:
c0:a6:21:9c:f1:16:c0:56:a7:a9:47:a2:e9:3a:d3:
d7:0d:18:27:e2:93:2b:95:bc:c6:82:54:b5:1f:f4:
c0:2c:ba:6a:0b:09:c3:08:73:9a:c3:62:e6:93:1f:
4b:32:b8:ec:9a:1e:66:21:d1:ab:fd:9f:21:b2:51:
32:7f:65:21:e4:48:87:df:18:39:f3:af:ef:2c:dd:
b6:58:52:2c:0c:07:eb:6d:5c:4f:63:86:c1:1b:93:
3b:dd:57:75:32:b2:55:5e:ca:88:d4:b4:5b:9e:97:
48:22:78:2a:91:0d:90:93:18:7f:38:c6:b0:7f:d2:
7c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:32:6E:3E:28:01:AC:C9:D6:90:67:5F:C8:16:88:CD:F0:F3:A4:BE
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55672.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.251.0/24
Signature Algorithm: sha256WithRSAEncryption
41:58:aa:3d:47:ca:b8:ed:2a:ac:25:c7:31:90:f0:48:c9:c1:
99:dd:4a:c9:82:29:d6:54:b8:52:6c:99:15:71:33:a9:b7:69:
70:d8:f1:91:9d:3d:d8:2f:9e:d4:8e:40:04:0f:23:18:21:18:
bd:8c:5c:e2:9c:89:27:29:d0:fb:84:d7:90:42:5b:a1:e2:ea:
ae:f8:f8:70:39:75:89:44:00:48:7e:a2:58:42:1f:d8:0f:cb:
36:6f:b8:36:22:d7:b9:e4:cc:1f:0b:e1:b1:55:a4:87:94:f5:
f7:e6:70:66:76:19:05:50:bc:db:42:e6:de:8f:dd:f6:9f:8d:
a6:6e:71:18:8d:77:2a:ef:57:8e:90:01:84:5c:e0:0d:01:48:
76:d7:2e:e5:6d:40:df:24:06:1a:d3:bd:8c:72:aa:b6:b6:a0:
a5:12:22:da:35:51:2b:cf:d2:2b:bc:f9:da:41:33:e0:e3:11:
70:3a:f0:1e:81:ad:56:62:b7:52:a7:09:82:c8:8d:64:d9:24:
6c:5d:12:b0:20:69:7e:74:d1:57:65:66:e7:cd:04:2b:76:3f:
e3:18:eb:4e:c2:f5:c2:83:ec:a2:d0:90:2a:54:e4:97:ae:cb:
58:d2:5f:ab:c6:2b:9e:1c:51:64:ea:f4:ca:bc:d4:ab:ff:13:
63:6a:69:f5
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIULqBiS1xxakCxjy2zGjpqQfWgRkswDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyMFoX
DTI1MTIwOTA1MDAyMFowMzExMC8GA1UEAxMoNTMzMjZFM0UyODAxQUNDOUQ2OTA2
NzVGQzgxNjg4Q0RGMEYzQTRCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALOobDYBl/Wgs5SYOgFgjeMKTicRps/pJCbWzIPLb/idS0c+OZeS3JA33BmM
mJBGrl6DGVXxgZvAWu9URj7ElxT+6vgJ5KWdn9zykyzlDTQVKwiP7zEyrh8hNS/1
rUas3/jSOopKB5Fvxw1JM/eFTr1zezoT/CX9DkcnKibGW5DSONd9WnAbwKYhnPEW
wFanqUei6TrT1w0YJ+KTK5W8xoJUtR/0wCy6agsJwwhzmsNi5pMfSzK47JoeZiHR
q/2fIbJRMn9lIeRIh98YOfOv7yzdtlhSLAwH621cT2OGwRuTO91XdTKyVV7KiNS0
W56XSCJ4KpENkJMYfzjGsH/SfJcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRTMm4+
KAGsydaQZ1/IFojN8POkvjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1NjcyLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAZ6L7MA0GCSqGSIb3DQEBCwUAA4IBAQBBWKo9R8q47SqsJccxkPBI
ycGZ3UrJginWVLhSbJkVcTOpt2lw2PGRnT3YL57UjkAEDyMYIRi9jFzinIknKdD7
hNeQQluh4uqu+PhwOXWJRABIfqJYQh/YD8s2b7g2Ite55MwfC+GxVaSHlPX35nBm
dhkFULzbQubej932n42mbnEYjXcq71eOkAGEXOANAUh21y7lbUDfJAYa072Mcqq2
tqClEiLaNVErz9IrvPnaQTPg4xFwOvAega1WYrdSpwmCyI1k2SRsXRKwIGl+dNFX
ZWbnzQQrdj/jGOtOwvXCg+yi0JAqVOSXrstY0l+rxiueHFFk6vTKvNSr/xNjamn1
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:18:24 2025 by rpki-client