Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
File: AS55685.roa (raw, json)
Hash identifier: TVdyENfqBxojFm9VhQwOCAksNnINvcwc9nu/ouFXKkc=
Subject key identifier: B7:00:BD:D2:1D:F1:B4:57:0A:05:86:F3:BF:43:16:77:45:8E:F3:05
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1F6B99F495CC2D28B976DECF7597FC094B4F7F62
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
Signing time: Thu 13 Mar 2025 03:47:14 +0000
ROA not before: Thu 13 Mar 2025 03:42:14 +0000
ROA not after: Thu 12 Mar 2026 03:47:14 +0000
asID: 55685
IP address blocks: 103.247.40.0/24 maxlen: 24
103.247.41.0/24 maxlen: 24
103.247.42.0/24 maxlen: 24
103.247.43.0/24 maxlen: 24
202.51.192.0/21 maxlen: 24
202.51.192.0/22 maxlen: 24
202.51.196.0/23 maxlen: 24
202.51.200.0/24 maxlen: 24
202.51.201.0/24 maxlen: 24
202.51.202.0/24 maxlen: 24
202.51.203.0/24 maxlen: 24
202.51.204.0/22 maxlen: 24
202.51.208.0/24 maxlen: 24
202.51.209.0/24 maxlen: 24
202.51.210.0/23 maxlen: 24
202.51.212.0/24 maxlen: 24
202.51.213.0/24 maxlen: 24
202.51.215.0/24 maxlen: 24
202.51.216.0/24 maxlen: 24
202.51.217.0/24 maxlen: 24
202.145.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:6b:99:f4:95:cc:2d:28:b9:76:de:cf:75:97:fc:09:4b:4f:7f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 13 03:42:14 2025 GMT
Not After : Mar 12 03:47:14 2026 GMT
Subject: CN=B700BDD21DF1B4570A0586F3BF431677458EF305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8a:3b:eb:83:32:83:1d:3f:3e:04:74:3f:24:
92:6f:3d:05:9c:ce:9f:85:ee:6c:72:c9:0f:89:79:
75:93:17:99:8e:65:31:42:91:d7:7b:0d:bc:14:67:
68:6d:dd:fe:43:cd:9d:d4:b8:47:44:5d:e3:ff:9d:
c3:2c:b2:54:07:09:42:22:a1:ec:9b:b0:c1:df:39:
82:f7:51:bb:eb:ac:92:5d:2a:e6:a5:fd:ab:dd:e3:
ea:bb:27:31:0c:fc:08:51:04:43:51:0a:3b:48:e6:
e4:10:cb:1d:dd:a2:1b:76:e0:83:66:d2:71:c1:a3:
08:6f:d3:da:18:80:0f:d0:36:e5:2c:19:5d:bc:65:
e7:b6:51:c1:29:95:bb:85:28:24:26:fb:38:e6:f3:
b4:6a:99:82:ad:e8:55:19:21:21:c8:86:43:0c:f5:
bc:5f:08:c3:ae:06:5a:1c:f3:39:54:7c:e4:e9:b9:
b8:01:38:b5:fc:45:e3:54:b9:15:d3:fd:a7:0e:60:
e5:18:5d:d7:6f:fb:65:aa:89:df:2a:3f:c7:d5:56:
ef:bd:8c:11:9c:e9:7a:95:97:c9:c7:91:09:d4:b3:
54:a1:32:25:9f:eb:11:f4:4a:b7:0e:9a:bb:10:72:
85:54:02:fe:7f:a4:84:80:af:41:13:5d:16:0c:c6:
aa:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:00:BD:D2:1D:F1:B4:57:0A:05:86:F3:BF:43:16:77:45:8E:F3:05
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.40.0/22
202.51.192.0-202.51.213.255
202.51.215.0-202.51.217.255
202.145.4.0/23
Signature Algorithm: sha256WithRSAEncryption
55:19:34:a8:fa:df:cf:a3:f4:99:ba:8e:c2:d2:22:03:1a:c0:
5a:be:a2:1c:55:2c:52:29:86:74:c7:3c:cf:15:b9:c9:a6:66:
c0:ab:4e:77:1e:3a:bf:8f:82:98:2a:c4:78:a1:1a:fc:14:0d:
c7:44:b1:62:d8:fc:a0:fd:e8:6b:81:ca:ba:b2:68:8c:d2:b5:
17:0a:ea:a1:6d:e1:85:16:64:d0:45:19:21:2e:28:eb:80:79:
1d:9e:37:82:d2:41:48:b7:07:8f:6b:5d:f3:ff:97:07:f2:f1:
ea:8e:66:20:cf:0a:41:e3:7c:59:aa:d3:f2:30:8b:77:b8:97:
13:b3:a1:d2:a9:ce:51:47:36:ca:85:ea:9f:56:03:7f:56:e4:
a2:be:ea:19:c4:37:cd:5a:dd:45:0d:19:79:48:12:6a:25:00:
02:63:5e:db:63:57:9d:8b:0d:4a:81:2c:ae:84:2e:1b:9d:3d:
ea:cb:b6:3a:c9:e8:7c:f1:cb:e0:4b:3b:db:e1:98:5a:2f:06:
e9:ee:84:01:af:6c:68:05:57:8a:ab:0c:bf:91:52:60:d1:fb:
29:fd:5f:e4:15:0d:c9:b8:99:49:33:20:ff:50:2c:9e:25:a8:
dd:f0:1d:94:45:96:e6:a0:62:37:10:62:92:ec:f9:fd:2e:bf:
a7:1f:3f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:27 2025 by rpki-client