Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa
File: AS56236.roa (raw, json)
Hash identifier: TfSjqjNlYy+zQaFPkqQaqs9xQp6PGNqECJPBmBH97Fc=
Subject key identifier: 1E:6B:C4:9C:CD:B9:0D:D0:58:71:7B:D1:A1:53:1B:E2:A6:AE:44:69
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 4ECEAA6D35AC6CAC86FC53E4301F7271878D9B24
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa
Signing time: Tue 10 Dec 2024 05:00:09 +0000
ROA not before: Tue 10 Dec 2024 04:55:09 +0000
ROA not after: Tue 09 Dec 2025 05:00:09 +0000
asID: 56236
IP address blocks: 103.3.70.0/24 maxlen: 24
2001:df5:3600::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ce:aa:6d:35:ac:6c:ac:86:fc:53:e4:30:1f:72:71:87:8d:9b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:09 2024 GMT
Not After : Dec 9 05:00:09 2025 GMT
Subject: CN=1E6BC49CCDB90DD058717BD1A1531BE2A6AE4469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ec:2a:e9:ed:c2:c4:41:50:c6:f2:d1:06:e7:
fd:3d:a0:db:a7:d6:b9:82:62:30:d7:c4:b8:15:81:
8f:82:7e:dc:c3:02:bc:20:4a:75:2f:06:3f:1b:64:
1a:b8:2a:85:1c:49:f6:0f:ee:46:09:72:7b:2e:be:
2e:1f:72:9d:e8:70:5b:8c:ff:35:1b:12:63:08:61:
07:2d:50:6b:40:eb:f9:fd:2d:8c:b4:35:b9:a4:8a:
76:5a:8b:a5:c5:54:e3:a9:62:11:bf:fa:f7:77:10:
71:af:0d:ff:75:aa:c7:c9:68:af:ac:1a:65:09:7c:
8b:e4:bc:dd:13:93:ee:93:0d:7e:ab:ad:fb:fb:b9:
f0:62:01:a4:96:1d:6d:bd:c1:52:c7:a0:cb:62:1d:
23:6c:b5:48:09:e0:2c:a3:2b:cc:69:da:5e:64:46:
d1:8e:b0:54:10:6c:fd:68:b4:53:17:38:65:9c:1e:
95:70:2e:4b:73:60:56:08:e1:c8:ac:d8:bd:00:6b:
48:0f:86:d7:e0:b7:2d:b0:4c:ff:c8:df:57:4a:d2:
c8:bc:18:02:1a:15:c0:9b:17:a6:4c:f1:dd:91:fb:
15:2a:1c:06:ac:7a:de:85:36:47:60:24:36:70:f6:
7c:f6:67:9a:e8:bc:55:b3:b9:63:3d:4b:7b:60:60:
1c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6B:C4:9C:CD:B9:0D:D0:58:71:7B:D1:A1:53:1B:E2:A6:AE:44:69
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.3.70.0/24
IPv6:
2001:df5:3600::/48
Signature Algorithm: sha256WithRSAEncryption
7b:c6:ea:de:08:8c:67:d4:cf:7e:bc:4c:64:5b:16:fb:5c:e5:
45:31:14:81:ef:fc:73:bf:13:bc:e4:85:8d:3c:03:ad:9f:b3:
47:d2:cc:91:03:46:80:ee:bc:15:0a:7c:ec:af:90:ab:c1:ae:
3b:09:52:59:ec:11:6a:1d:a3:ae:cc:97:55:df:79:a9:cc:0b:
8f:cf:66:27:03:1e:40:7d:56:5c:8e:78:59:d0:aa:50:21:34:
43:48:b2:3d:9c:79:24:70:b5:d9:1b:1a:76:f2:98:a4:1a:6b:
9c:ba:8a:0c:73:2a:81:71:f9:00:86:d0:88:3c:d1:3f:65:41:
90:9c:b1:f0:b0:75:9e:37:31:7e:7f:9a:31:be:7e:23:13:52:
e2:8b:15:dd:18:0e:c6:92:a6:4b:1e:81:23:6a:9d:c8:3e:aa:
97:0f:51:37:4a:96:93:39:64:1c:9f:95:5d:e4:3d:2d:4c:03:
b4:3d:13:f2:52:30:8c:f2:ee:46:b9:cd:2d:57:29:de:ff:ec:
18:4d:17:0b:32:d1:70:a8:54:0e:07:b0:41:78:b5:1a:85:c9:
51:4a:64:8e:19:48:e5:f1:e0:5c:4a:d7:e2:62:f9:96:f3:4b:
76:2c:0b:c5:ca:2c:04:81:21:54:c4:27:ed:68:15:89:ea:8a:
e9:ed:0d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:43 2025 by rpki-client