Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9875.roa
File: AS9875.roa (raw, json)
Hash identifier: t11p4F51n2XgnRGzcd/ZMMToOCYJPlmD9d/WFD0D1Vw=
Subject key identifier: 16:2E:18:0D:41:71:76:E4:37:EA:0A:C8:6E:BA:27:30:65:C8:42:17
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 41BD21E7E7EE22D4DC1B0D092BE73862546E6249
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9875.roa
Signing time: Fri 07 Mar 2025 05:00:00 +0000
ROA not before: Fri 07 Mar 2025 04:55:00 +0000
ROA not after: Fri 06 Mar 2026 05:00:00 +0000
asID: 9875
IP address blocks: 103.93.224.0/22 maxlen: 24
103.93.228.0/22 maxlen: 24
103.94.96.0/22 maxlen: 24
103.159.228.0/23 maxlen: 24
103.159.230.0/23 maxlen: 24
103.159.232.0/23 maxlen: 24
103.159.234.0/23 maxlen: 24
103.167.142.0/23 maxlen: 24
103.167.148.0/23 maxlen: 24
103.168.106.0/23 maxlen: 24
103.168.108.0/23 maxlen: 24
103.168.110.0/23 maxlen: 24
103.168.112.0/23 maxlen: 24
103.169.111.0/24 maxlen: 24
103.169.112.0/23 maxlen: 24
103.169.118.0/23 maxlen: 24
103.169.120.0/23 maxlen: 24
103.169.122.0/23 maxlen: 24
103.169.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:bd:21:e7:e7:ee:22:d4:dc:1b:0d:09:2b:e7:38:62:54:6e:62:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 7 04:55:00 2025 GMT
Not After : Mar 6 05:00:00 2026 GMT
Subject: CN=162E180D417176E437EA0AC86EBA273065C84217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:22:0f:b5:69:3c:f9:ee:2f:04:0d:fc:0b:64:
54:c9:ed:62:c9:16:73:35:8e:93:09:68:14:19:b8:
39:84:a2:08:29:e8:21:34:e7:27:65:cb:50:b3:67:
01:59:04:be:b7:34:94:32:65:65:27:d5:0e:6e:ce:
c1:f0:fb:6b:62:2f:b3:6c:c8:57:ad:b7:26:49:df:
2f:ba:ac:cb:55:86:a5:15:c2:5a:a6:bc:a7:77:53:
14:c9:4e:9d:ae:ac:6f:6c:74:2a:4e:99:a5:82:a6:
0a:82:03:5c:5e:44:14:bd:64:ba:a1:10:4f:ea:11:
48:a8:d1:ff:a7:f2:20:09:ef:ff:ed:4e:11:6d:a0:
a1:bd:b6:c5:1a:7e:2b:f0:39:11:21:5a:06:28:59:
7a:26:32:29:0a:6b:cf:3c:dd:31:b9:cd:f3:56:3b:
43:b6:30:89:e9:bd:d0:40:92:f3:c4:fc:b4:9f:b7:
3b:cb:dc:f9:a0:85:e2:15:83:f3:c7:59:a4:74:dd:
e6:bd:9a:71:3d:82:f4:0e:b3:97:93:08:8e:5c:f3:
9c:18:83:3a:9f:56:61:40:44:23:87:9b:2c:4d:e1:
a4:ed:e0:24:d7:92:37:28:85:6c:e2:8e:01:f9:f3:
82:25:a4:b7:f3:2f:25:f2:91:d6:80:d3:39:bb:ca:
bf:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2E:18:0D:41:71:76:E4:37:EA:0A:C8:6E:BA:27:30:65:C8:42:17
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS9875.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.93.224.0/21
103.94.96.0/22
103.159.228.0-103.159.235.255
103.167.142.0/23
103.167.148.0/23
103.168.106.0-103.168.113.255
103.169.111.0-103.169.113.255
103.169.118.0-103.169.125.255
Signature Algorithm: sha256WithRSAEncryption
83:19:74:b3:68:e9:25:d2:b2:03:49:4f:db:31:8c:e4:5b:ea:
25:e7:4c:6b:68:ea:90:01:fa:2b:b7:fe:c2:e0:6f:96:61:ac:
9b:05:ae:fc:62:1f:12:70:ad:ac:22:b2:ac:a0:85:67:31:d0:
66:75:ec:61:93:8c:ad:a0:19:25:14:21:d0:34:6c:51:dc:f8:
37:3a:46:8b:92:ed:8d:3c:07:6f:d5:2e:99:9b:bb:c0:b3:51:
13:ba:95:ce:5f:ea:60:e8:4f:5c:3a:57:53:99:28:f5:ee:c0:
7e:31:ab:85:3d:ae:87:87:c8:bf:e2:e6:97:15:96:06:0c:53:
ae:e1:43:64:a6:dd:9d:3e:50:71:15:af:20:49:8e:6b:fa:12:
a7:3d:87:54:7b:f1:55:8e:93:89:29:ac:f6:d7:08:14:5a:d4:
50:af:4a:42:d4:03:75:2e:ec:86:3d:94:4b:ae:d5:1a:cf:24:
91:c6:df:79:5c:21:1e:a5:b6:08:32:e2:75:0b:0f:f1:d8:62:
b7:9c:5f:39:da:e6:45:c6:d7:ee:25:22:60:9e:b1:a0:28:7d:
b9:dc:20:66:8f:34:08:3b:e7:21:d1:8b:a1:e9:77:0f:d6:e6:
7a:e4:ab:2a:01:fa:d0:8c:b0:56:8b:8e:7f:4a:5b:26:50:42:
8c:28:66:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:19:52 2025 by rpki-client