Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
File: AS56246.roa (raw, json)
Hash identifier: zW+6uTrz7DpjLo4ikwgfGGqzZQY9gfXstHteahk44sA=
Subject key identifier: C4:90:E0:B4:53:F2:AF:E6:73:A9:09:0E:A7:E8:58:48:24:EB:16:60
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5E0FDF930E50E38E1E76EF8B175C56B22D794C3B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
Signing time: Tue 07 Jan 2025 07:53:28 +0000
ROA not before: Tue 07 Jan 2025 07:48:28 +0000
ROA not after: Tue 06 Jan 2026 07:53:28 +0000
asID: 56246
IP address blocks: 103.143.222.0/24 maxlen: 24
103.143.223.0/24 maxlen: 24
103.152.234.0/23 maxlen: 24
114.198.240.0/21 maxlen: 24
114.198.243.0/24 maxlen: 24
114.198.244.0/24 maxlen: 24
114.198.245.0/24 maxlen: 24
116.68.166.0/24 maxlen: 24
116.68.170.0/24 maxlen: 24
116.68.171.0/24 maxlen: 24
116.68.172.0/24 maxlen: 24
116.68.174.0/24 maxlen: 24
116.68.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:0f:df:93:0e:50:e3:8e:1e:76:ef:8b:17:5c:56:b2:2d:79:4c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 7 07:48:28 2025 GMT
Not After : Jan 6 07:53:28 2026 GMT
Subject: CN=C490E0B453F2AFE673A9090EA7E8584824EB1660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:ef:e0:4c:bd:cb:e5:a5:a2:df:a3:9f:7c:
2d:91:88:07:59:3d:48:84:89:c9:a7:fd:70:98:ff:
da:66:e8:df:cf:89:58:db:37:59:b6:27:d5:d7:f3:
09:bf:44:05:14:37:0b:a9:6c:ae:02:d3:2a:e2:fc:
d7:b6:72:96:69:94:e5:b9:53:96:b9:21:db:ff:34:
3f:26:f7:a4:a7:c4:1a:d4:e7:b9:f6:f7:b8:7f:71:
61:f5:7f:7e:6b:a3:cf:00:7a:42:a2:2b:5b:85:d3:
8a:53:a3:5d:2b:17:6d:cf:b9:73:89:47:d1:6c:74:
19:11:2f:75:3d:94:0b:58:93:01:63:ee:5c:94:df:
4d:6d:62:af:4e:f6:01:bc:5e:44:58:7d:32:00:7f:
5f:be:7c:f1:c4:61:79:5a:29:2b:17:c9:4c:08:0d:
53:6b:7e:b2:81:d2:e6:78:ab:52:1f:64:10:09:36:
58:60:3b:e3:9f:59:1e:bd:8e:88:ae:22:80:50:0e:
df:cc:b0:80:e1:0a:ba:cd:86:4f:8c:68:b6:be:25:
6f:9c:13:20:c3:4c:71:36:e6:d7:11:65:78:a8:42:
c9:7a:1b:ac:da:e5:f3:db:fa:52:0e:f6:34:5c:41:
f3:07:d9:c4:68:1d:a9:69:35:33:29:6c:c5:1f:94:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:90:E0:B4:53:F2:AF:E6:73:A9:09:0E:A7:E8:58:48:24:EB:16:60
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.222.0/23
103.152.234.0/23
114.198.240.0/21
116.68.166.0/24
116.68.170.0-116.68.172.255
116.68.174.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:f6:88:51:86:85:d9:12:99:3b:d2:42:d3:be:9e:59:92:cd:
62:27:d7:b4:50:b4:9b:90:05:80:a1:78:49:a7:19:73:25:27:
d6:b5:5e:3f:45:03:69:1f:0c:a5:e7:fa:ad:3c:94:40:a7:5a:
12:23:8f:51:9e:0a:ab:6e:e4:19:80:f2:ad:b9:91:80:6a:79:
c8:2f:0f:2f:e3:c3:60:88:39:3d:be:48:0a:56:b7:f3:00:ff:
59:c5:a5:2f:57:74:24:7d:e4:b7:e7:71:8e:37:3f:42:fa:58:
1b:35:fa:6d:83:3a:d7:d1:35:9c:c8:36:92:ce:eb:55:74:61:
c4:bf:48:de:26:6f:fc:c2:cd:24:48:1c:05:3d:11:23:6c:80:
f4:aa:e1:03:74:0c:31:66:c4:11:33:30:90:00:a3:c5:7f:67:
76:0a:17:7c:3d:fb:88:f0:f7:1f:4f:e0:ce:14:41:b3:32:21:
af:46:c3:89:e7:82:d4:46:ea:42:b4:89:0f:a3:f8:2e:08:24:
e4:28:7d:9b:cb:bd:49:2e:98:d0:b9:ca:c7:11:47:b2:7d:87:
36:bc:b0:b5:f6:00:7e:d7:4e:4f:a5:cb:74:32:dc:0c:b4:f3:
9d:d8:e7:bc:8b:f2:12:73:0d:a1:d9:1e:8e:43:95:49:58:c6:
bf:3e:29:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:54 2025 by rpki-client