Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
File: AS55685.roa (raw, json)
Hash identifier: nq8jlJkbpU3X8y0174ZsqHzYAawlnQFYjpWhiBye5PM=
Subject key identifier: 00:9D:CA:3D:C5:15:BD:37:91:00:84:4A:D1:6B:78:B9:26:59:56:2F
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 43CFD9E12A095D1AB1CAD3C9307473DB6AD5AB02
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
Signing time: Mon 30 Dec 2024 07:00:00 +0000
ROA not before: Mon 30 Dec 2024 06:55:00 +0000
ROA not after: Mon 29 Dec 2025 07:00:00 +0000
asID: 55685
IP address blocks: 103.247.40.0/24 maxlen: 24
103.247.41.0/24 maxlen: 24
103.247.42.0/24 maxlen: 24
103.247.43.0/24 maxlen: 24
202.51.192.0/21 maxlen: 24
202.51.192.0/22 maxlen: 24
202.51.196.0/23 maxlen: 24
202.51.200.0/24 maxlen: 24
202.51.201.0/24 maxlen: 24
202.51.202.0/24 maxlen: 24
202.51.203.0/24 maxlen: 24
202.51.204.0/22 maxlen: 24
202.51.208.0/24 maxlen: 24
202.51.209.0/24 maxlen: 24
202.51.210.0/23 maxlen: 24
202.51.212.0/24 maxlen: 24
202.51.213.0/24 maxlen: 24
202.51.215.0/24 maxlen: 24
202.145.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:cf:d9:e1:2a:09:5d:1a:b1:ca:d3:c9:30:74:73:db:6a:d5:ab:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Dec 30 06:55:00 2024 GMT
Not After : Dec 29 07:00:00 2025 GMT
Subject: CN=009DCA3DC515BD379100844AD16B78B92659562F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:53:f5:c5:c4:6a:76:6e:57:37:01:a5:c1:60:
9e:cd:7b:9f:b5:00:66:63:1a:39:9b:8c:3b:36:2a:
65:8e:f5:0d:ed:d5:1b:e7:85:a0:86:09:d0:72:69:
66:0d:4a:4b:72:41:d1:dc:ce:12:a1:41:ec:bc:31:
f4:3e:da:6a:77:da:39:86:78:26:95:a8:ff:c7:6c:
81:1c:77:69:3b:b8:fa:52:84:9e:b6:d1:15:15:98:
2e:50:7f:8b:7e:22:bd:c0:dd:58:65:ca:6e:68:ba:
da:52:45:0e:eb:d1:37:e9:a7:fd:c2:5f:f7:5c:c1:
5b:d7:c7:7a:23:c6:fd:a1:98:72:d4:27:c7:23:2a:
82:1c:4b:e4:a0:f0:16:63:3a:a4:bb:19:0b:87:9e:
24:af:ba:a8:26:77:35:9b:2c:4f:0f:bd:62:d8:e3:
17:41:a7:9e:76:16:bc:55:8f:16:e3:6b:5e:df:a5:
21:1a:34:a9:6a:7c:04:93:e0:1b:db:fc:c1:f7:99:
bf:98:df:e5:a0:03:8e:0a:86:eb:18:52:30:c1:f1:
9e:ba:dc:d3:88:1f:01:3a:96:f0:df:6e:fe:95:70:
25:39:37:67:37:34:62:09:72:42:90:6d:a9:80:94:
00:1c:e6:98:f8:0e:0d:51:10:8e:eb:ce:61:e9:13:
10:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9D:CA:3D:C5:15:BD:37:91:00:84:4A:D1:6B:78:B9:26:59:56:2F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.40.0/22
202.51.192.0-202.51.213.255
202.51.215.0/24
202.145.4.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:23:17:3a:e9:02:1d:1d:ef:4f:a1:ec:c7:d6:20:d1:37:68:
23:3f:25:5b:06:b6:e3:be:35:6f:ef:8b:1f:58:f9:6d:83:60:
42:f9:a2:30:52:9f:05:80:82:37:75:33:bf:22:61:37:10:67:
fb:49:91:fe:84:06:bd:3f:86:3f:58:84:1e:2c:45:20:21:f8:
18:75:07:8d:ea:07:f2:c1:09:15:04:83:0d:cd:b3:50:8a:36:
af:bc:e9:bd:a3:73:1a:fc:a5:d0:82:62:31:61:b4:a2:f4:d3:
96:7b:88:06:8c:1c:1a:af:d7:dd:07:95:6e:4c:12:8c:f3:c9:
cd:cd:2a:6f:e5:d3:61:8d:5d:71:4a:cc:1a:b5:a6:c4:0c:54:
08:c2:60:5b:f3:8d:28:dd:d4:eb:99:7e:ee:a9:ab:e5:ff:cd:
6f:aa:e5:18:a0:42:23:7c:ae:00:88:35:05:a6:80:10:a4:02:
8a:9a:45:5a:12:b8:60:5c:d4:f7:28:db:ae:09:3d:6c:ab:fe:
40:c1:48:c1:01:0c:7f:b2:b3:d5:a8:2d:85:07:42:6b:00:75:
ca:cc:ff:0c:ba:2e:f3:f4:d2:91:ef:4b:0d:12:61:06:3f:8a:
1e:43:cd:53:77:eb:fb:12:44:73:f3:20:47:7d:21:af:43:58:
b7:7e:c7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 12:34:19 2025 by rpki-client