Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa
File: AS58822.roa (raw, json)
Hash identifier: 683nrwMtSBwOR3NG2i8h0xFCZ6Ec6ntuxfMLe03es7w=
Subject key identifier: 41:85:5B:F4:99:E7:41:48:72:B8:7F:EE:E2:8A:84:CF:9A:FD:48:AD
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 04E9A5BC2AD55C3FE5CFF49F891595FF743F887F
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa
Signing time: Tue 10 Dec 2024 05:00:22 +0000
ROA not before: Tue 10 Dec 2024 04:55:22 +0000
ROA not after: Tue 09 Dec 2025 05:00:22 +0000
asID: 58822
IP address blocks: 103.242.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e9:a5:bc:2a:d5:5c:3f:e5:cf:f4:9f:89:15:95:ff:74:3f:88:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 10 04:55:22 2024 GMT
Not After : Dec 9 05:00:22 2025 GMT
Subject: CN=41855BF499E7414872B87FEEE28A84CF9AFD48AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8a:19:82:e0:da:2d:c7:52:79:4d:31:92:08:
85:18:74:eb:5a:0a:b3:32:5f:1e:c0:34:f5:24:5b:
37:64:68:fd:87:39:72:23:51:13:5f:e5:57:40:59:
31:5e:86:39:68:b2:80:bd:80:9a:40:12:5e:68:10:
9c:30:08:40:84:18:7a:b8:e5:d1:1d:dd:0b:93:9d:
63:71:65:14:b9:64:f6:09:c4:31:50:7a:49:63:fd:
af:db:ab:bf:93:7c:6f:0c:82:41:0b:78:61:33:cb:
c8:9d:4a:c4:97:e9:d7:74:2f:f6:62:1d:e6:bc:83:
6d:21:c1:7d:17:57:71:18:e1:e1:6f:57:dc:b7:6f:
d2:f1:dc:da:67:f9:e2:72:27:0d:7a:91:5f:6f:20:
d1:92:a8:75:51:71:5e:42:a7:b9:05:e1:2c:4a:5a:
d3:bd:bc:0f:38:d7:35:3e:b0:fd:fd:b3:74:11:eb:
d0:2c:c7:13:2f:1f:a6:7f:39:a6:64:b5:3f:55:54:
a7:0a:cb:66:e6:0c:0a:e0:83:63:2f:ac:13:95:2b:
e5:2f:c0:7c:57:f3:30:c7:d4:16:43:c9:26:a3:d3:
2e:9d:14:05:18:f3:26:8d:de:3a:bc:fe:db:31:a4:
5a:b0:e7:5c:2b:76:a3:8f:e1:06:5f:ce:1e:2c:86:
bb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:85:5B:F4:99:E7:41:48:72:B8:7F:EE:E2:8A:84:CF:9A:FD:48:AD
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.242.124.0/23
Signature Algorithm: sha256WithRSAEncryption
60:26:59:30:5d:c2:7c:e8:1b:db:ef:a3:05:20:31:70:10:3d:
cc:53:22:2c:bf:66:03:37:93:12:dd:b3:44:99:73:5d:83:c5:
07:6e:ef:57:28:85:7c:44:70:f2:38:ad:94:6d:21:d6:fd:6b:
1d:68:44:35:cf:82:66:42:9f:0b:17:fc:7d:ca:5c:d7:85:2b:
49:f7:f3:4f:83:b1:a3:a0:4e:d4:46:61:39:32:8c:ec:7d:d6:
65:be:c2:51:7b:83:bf:51:cc:ce:d2:5b:aa:51:85:ac:00:28:
00:f8:42:b6:e5:98:d0:2e:63:85:fb:1c:d4:d3:87:24:1f:a7:
3d:eb:2f:e3:19:6d:e7:1a:10:28:e9:b2:f4:31:06:e9:14:de:
9f:8a:20:83:e3:4e:6e:56:3e:f4:72:7c:7c:35:e2:1c:ac:54:
d1:73:c2:f3:3f:b1:07:76:0e:81:2f:58:3f:a5:8b:f5:34:d7:
ec:9e:9f:45:e3:79:b4:3b:a1:8f:c1:2c:60:cf:00:5c:2e:6b:
19:82:7e:74:a8:e6:ce:20:9a:65:33:e1:7e:13:4f:c4:98:7b:
5c:c1:43:0d:4f:30:39:35:8d:b6:8f:34:0d:f2:c7:77:30:4d:
17:c7:47:ff:b5:97:50:02:89:cd:f5:52:40:6f:5f:0b:ea:d0:
c7:7b:a9:fc
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUBOmlvCrVXD/lz/SfiRWV/3Q/iH8wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUyMloX
DTI1MTIwOTA1MDAyMlowMzExMC8GA1UEAxMoNDE4NTVCRjQ5OUU3NDE0ODcyQjg3
RkVFRTI4QTg0Q0Y5QUZENDhBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANOKGYLg2i3HUnlNMZIIhRh061oKszJfHsA09SRbN2Ro/Yc5ciNRE1/lV0BZ
MV6GOWiygL2AmkASXmgQnDAIQIQYerjl0R3dC5OdY3FlFLlk9gnEMVB6SWP9r9ur
v5N8bwyCQQt4YTPLyJ1KxJfp13Qv9mId5ryDbSHBfRdXcRjh4W9X3Ldv0vHc2mf5
4nInDXqRX28g0ZKodVFxXkKnuQXhLEpa0728DzjXNT6w/f2zdBHr0CzHEy8fpn85
pmS1P1VUpwrLZuYMCuCDYy+sE5Ur5S/AfFfzMMfUFkPJJqPTLp0UBRjzJo3eOrz+
2zGkWrDnXCt2o4/hBl/OHiyGu8UCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRBhVv0
medBSHK4f+7iioTPmv1IrTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3
azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv
LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD
OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI
KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3
RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo
V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4ODIyLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQBZ/J8MA0GCSqGSIb3DQEBCwUAA4IBAQBgJlkwXcJ86Bvb76MFIDFw
ED3MUyIsv2YDN5MS3bNEmXNdg8UHbu9XKIV8RHDyOK2UbSHW/WsdaEQ1z4JmQp8L
F/x9ylzXhStJ9/NPg7GjoE7URmE5MozsfdZlvsJRe4O/UczO0luqUYWsACgA+EK2
5ZjQLmOF+xzU04ckH6c96y/jGW3nGhAo6bL0MQbpFN6fiiCD405uVj70cnx8NeIc
rFTRc8LzP7EHdg6BL1g/pYv1NNfsnp9F43m0O6GPwSxgzwBcLmsZgn50qObOIJpl
M+F+E0/EmHtcwUMNTzA5NY22jzQN8sd3ME0Xx0f/tZdQAonN9VJAb18L6tDHe6n8
-----END CERTIFICATE-----
Generated at Tue Apr 8 13:04:01 2025 by rpki-client