Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa
File: AS56235.roa (raw, json)
Hash identifier: u1SFzhDaM+D6UQE4fbcSoW0z9SiGWM4Rv5MoLyBOPK4=
Subject key identifier: B6:88:50:BB:DF:BC:5B:D2:F4:33:FF:4D:E7:85:DA:F7:F9:73:58:83
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 16CE54FCD5AFA1239FD4BC9D3243B8E79B2862A2
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa
Signing time: Tue 10 Dec 2024 05:00:11 +0000
ROA not before: Tue 10 Dec 2024 04:55:11 +0000
ROA not after: Tue 09 Dec 2025 05:00:11 +0000
asID: 56235
IP address blocks: 103.3.44.0/24 maxlen: 24
103.3.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:ce:54:fc:d5:af:a1:23:9f:d4:bc:9d:32:43:b8:e7:9b:28:62:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:11 2024 GMT
Not After : Dec 9 05:00:11 2025 GMT
Subject: CN=B68850BBDFBC5BD2F433FF4DE785DAF7F9735883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:6a:be:fe:57:12:15:0d:92:12:11:ad:4a:
15:35:16:0d:36:3d:1f:66:5e:55:6a:f2:bb:82:ab:
29:1d:c7:7a:9f:fa:5e:e6:ca:c1:22:f3:2e:12:15:
77:54:a8:66:26:a7:2c:48:b8:3b:c5:b7:6f:33:9c:
ea:b5:6a:77:68:ba:53:a1:3d:4e:ec:cc:ae:f1:a0:
1d:89:8c:8c:32:b5:6b:0d:ba:35:b0:26:cf:53:4a:
86:01:3a:8a:52:17:8a:d3:b6:bd:08:a3:49:22:61:
63:be:e6:06:c7:47:db:a4:39:3b:5f:f8:92:7a:7c:
a1:12:d3:db:6b:d6:f1:14:dc:bf:01:94:89:08:0c:
fd:fc:67:07:0a:76:b0:63:cd:f3:36:f0:c3:14:31:
ac:ec:b0:d6:c6:ac:8f:8b:a6:fe:bb:43:57:e1:04:
c7:36:d9:04:fe:71:68:81:ce:5a:c4:97:53:31:0f:
29:cb:6d:48:93:65:4a:c6:c7:16:9f:18:d2:3c:7a:
5e:76:50:20:05:2c:10:a2:89:ae:ff:9d:d9:7a:bc:
16:1e:c9:a3:35:d4:f8:65:fd:78:fe:75:f6:3b:8b:
e6:1f:97:b2:82:2f:73:0c:a9:e1:af:63:b4:cc:e6:
47:c9:a7:8d:98:31:87:cf:cb:4b:b4:26:a2:45:d3:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:88:50:BB:DF:BC:5B:D2:F4:33:FF:4D:E7:85:DA:F7:F9:73:58:83
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.44.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:22:ef:d6:6e:60:93:b6:45:2b:63:e1:2d:9e:17:c6:fa:80:
cc:a9:d8:eb:ab:da:5f:ca:0d:cd:c2:17:01:ea:7b:c7:e6:d4:
a2:39:05:d3:3b:ee:28:04:b0:1a:56:54:da:c8:7d:0c:07:cc:
6e:86:bc:53:11:38:c3:58:5f:ff:48:fe:16:84:af:d2:63:1d:
74:56:9e:1e:73:a4:39:80:79:04:f7:ed:ac:55:cb:d0:8f:ca:
0e:ac:75:43:3a:40:28:e2:c7:4b:30:01:cf:ea:d4:c2:69:f5:
d6:36:35:24:9b:b4:1a:36:a9:ab:a1:4c:c5:17:7b:20:c8:89:
70:86:96:75:2e:9e:c2:d1:60:67:98:27:4a:1a:00:cc:5b:ad:
21:5f:20:74:f1:5c:73:61:d6:f8:7b:5a:20:49:2b:48:ac:0d:
71:7d:15:9a:e9:e4:31:f9:19:6d:24:dd:60:f3:a2:e6:38:2a:
1e:fb:3b:a5:dd:0c:6a:eb:3b:e5:d0:55:bf:47:8f:97:eb:7c:
6c:07:e4:fb:a2:23:d4:94:02:13:07:23:50:f9:cf:7a:f1:2f:
12:19:96:e1:55:89:6a:8e:a7:4c:77:31:b7:c8:c0:5a:9a:32:
04:6e:c9:85:07:8c:ce:4f:b7:c4:b6:f4:97:75:26:85:c4:4c:
a2:97:5f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:49 2025 by rpki-client